7075ebec0647053009009dcf494f8812

General

Target

7075ebec0647053009009dcf494f8812
Size

68KB
MD5

7075ebec0647053009009dcf494f8812
SHA1

951a521601a85976691e0162d49e243037fe508e
SHA256

16647459ca2cf695b9a1a7c264d68b311e26e92141bf8c0c055ae8446fadbc21
SHA512

7d08ab7fc90d68b145faaeb4aa28aed5d6dee6a4ad9ba8f4860e426e44129dbe0f8a99e850962e5b88ade426856aceff1ec97a352383882f8a3fb18ff14d865f
SSDEEP

1536:/zAM6SadgxEhPiaEnbkU/y3j9houQQEHMcZ6wN+0:4hdgxEh1En63geww0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7075ebec0647053009009dcf494f8812

Files

7075ebec0647053009009dcf494f8812
.exe windows:4 windows x86 arch:x86

b85e3df11272b9bf936f031a1ff4f737

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
WaitForMultipleObjects
GetLocalTime
GetProcAddress
WideCharToMultiByte
GetModuleHandleW
SetWaitableTimer
GetCurrentThreadId
SetEvent
GetVersion
FindFirstChangeNotificationW
Sleep
LoadLibraryA
LoadLibraryW
ResetEvent
GetUserDefaultLangID
LoadResource
lstrlenW
GetFileAttributesExW
GetFileSize
CreateThread
GetDriveTypeW
SetCurrentDirectoryW
WritePrivateProfileStringW
GlobalFree
GetModuleFileNameW
GetPrivateProfileStringW
GetFileAttributesW
CloseHandle
GetTickCount
FindResourceW

user32

EnableWindow
TrackPopupMenu
GetSystemMetrics
LoadImageW
GetWindowRect
AppendMenuW
GetMessageW
TranslateMessage
RedrawWindow
RegisterHotKey
SendMessageW
ReleaseDC
SetWindowTextW
SystemParametersInfoW
FillRect
LoadIconW
OffsetRect
RegisterClassExW
GetWindowThreadProcessId

gdi32

SetMapMode
CreateDCW
SetDIBits
SetBkColor
GetStockObject
DeleteDC
CreateICW
MoveToEx

advapi32

RegDeleteValueW
LookupAccountSidW
InitializeSecurityDescriptor
LookupPrivilegeValueW
RegQueryValueExW
StartServiceW
SetSecurityDescriptorDacl

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b85e3df11272b9bf936f031a1ff4f737

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 56KB - Virtual size: 54KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 928B

.text
Size: 56KB - Virtual size: 54KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 928B