7063cf27650d104b698a698f93c7c791

Sharing

Copy URL Twitter E-mail

General

Target

7063cf27650d104b698a698f93c7c791
Size

174KB
MD5

7063cf27650d104b698a698f93c7c791
SHA1

94b836428bf3ad2dbef1fb04b626125dddd65028
SHA256

0caca31139b27ddebef97f7cbeae396397e57001d7ea76492eaed66aac0d7348
SHA512

c8de201ab1b626ced94c38e5d0334b8d98b693bd39ae8248d590edfa5a07a132d657bb973bf073f0f0cac1cb0cc055df177657b1701d9f7d8d5da47f87d2a53c
SSDEEP

3072:WVT5LdyYhZuwTFb/JQwr0k8Lc0vu1RcMiIESusMlZGH3OdzVbuwWik9fwWIvv:WzEmJTFbpQRLc0vGc5qudfKOdzswW99W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7063cf27650d104b698a698f93c7c791

Files

7063cf27650d104b698a698f93c7c791
.exe windows:4 windows x86 arch:x86

292aef5ca90f1dc030ad1744825918d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
CreateFileA
GetLongPathNameW
Sleep
GlobalSize
ReadFile
DisableThreadLibraryCalls
GetProcessHandleCount
GlobalAlloc
WideCharToMultiByte
GlobalFree
CreateFileW
CreateFileMappingA
EnumResourceTypesA
GetTickCount
LocalAlloc
GetFileAttributesA
LocalFree
SetFilePointer
WriteFile
UnmapViewOfFile
MapViewOfFile
CloseHandle

wininet

InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetCloseHandle

user32

wvsprintfA
GetClientRect
CreateWindowExA
SetCapture
EndPaint
EnumDisplayDevicesA
GetWindowTextLengthA
GetWindowRect
EqualRect
SendMessageA
GetActiveWindow
FillRect
SetWindowLongA
CallWindowProcA
RegisterClassExA
CreateAcceleratorTableA
RedrawWindow
SendNotifyMessageA
PostThreadMessageA
GetDesktopWindow
GetClassNameA
IsChild
ReleaseCapture
DefWindowProcA
GetParent
CreateDialogParamA
CopyRect
GetQueueStatus
MsgWaitForMultipleObjects
SetWindowTextA
ShowWindow
BeginPaint
GetWindow
wsprintfA
IsWindow
SetFocus
DispatchMessageA
GetFocus
InvalidateRgn
FindWindowA
SetTimer
GetDC
DestroyWindow
RegisterWindowMessageA
PeekMessageA
SendMessageTimeoutA
InvalidateRect
UnregisterClassA
KillTimer
MoveWindow
GetSysColor
SetRect
PostMessageA
CharNextA
ReleaseDC
SetParent
LoadCursorA
GetDlgItem
DestroyAcceleratorTable
GetWindowLongA
GetWindowTextA
DrawTextA
GetClassInfoExA
SetWindowPos

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

shlwapi

PathFileExistsW
PathCombineW

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

advapi32

CryptAcquireContextA
CryptReleaseContext
RegSetValueExA
CryptGetHashParam
CryptEncrypt
CryptDestroyHash
RegQueryValueExA
RegCreateKeyExA
CryptDestroyKey
CryptHashData
RegDeleteValueA
RegEnumValueA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegQueryInfoKeyA
CryptImportKey
CryptCreateHash
RegDeleteKeyA

gdi32

GetDeviceCaps
DeleteDC
BitBlt
CreateDIBitmap
SelectPalette
CreateSolidBrush
CreateCompatibleBitmap
CreateFontA
CreateDIBSection
SelectObject
SetStretchBltMode
GetDIBits
DeleteObject
ExtEscape
CreateCompatibleDC
GetStockObject
StretchDIBits
RealizePalette
GetObjectA
SetBkMode

ole32

StgOpenStorage
CoCreateInstance
CreateBindCtx
BindMoniker
CreateItemMoniker
CoInitialize
CoGetClassObject
OleLockRunning
CreateStreamOnHGlobal
GetRunningObjectTable
StgCreateDocfile
CoTaskMemFree
CoTaskMemRealloc
CLSIDFromProgID
CoInitializeSecurity
StringFromGUID2
CoUninitialize
OleUninitialize
OleInitialize
CoSetProxyBlanket
CoTaskMemAlloc
StgIsStorageFile
CLSIDFromString

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

292aef5ca90f1dc030ad1744825918d4

Headers

File Characteristics

Imports

kernel32

wininet

user32

setupapi

shlwapi

shell32

advapi32

gdi32

ole32

Sections

.text Size: 101KB - Virtual size: 101KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 66KB - Virtual size: 65KB

.tls Size: 1024B - Virtual size: 88KB

.text
Size: 101KB - Virtual size: 101KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 66KB - Virtual size: 65KB

.tls
Size: 1024B - Virtual size: 88KB