71b61c8d31ac45a41518c57414cfc249

Sharing

Copy URL Twitter E-mail

General

Target

71b61c8d31ac45a41518c57414cfc249
Size

113KB
MD5

71b61c8d31ac45a41518c57414cfc249
SHA1

22625d448e8f410db0cfe5b1b8683afc4128ad45
SHA256

58826d06a4c606eb7aba202cf543af8bf4ff8d8574d72550a8af3cb5403464dd
SHA512

1246913cd13079a9cb75a502d439d191e58aff14c9b853ca92303c9408a71410d84878d0dc25a754ac5bd211e0a9765fa566597ac6b8e503add064400677491d
SSDEEP

1536:kdEaEDvq/n20hhmFvWS3ADNa0Prqw87rFrYFTQ+KDZzBvaGFEDL+6L/lOOS:cebqe06WSQZbFFPKDZOO+/lOX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71b61c8d31ac45a41518c57414cfc249

Files

71b61c8d31ac45a41518c57414cfc249
.exe windows:4 windows x86 arch:x86

e6794e88879c43eb58fe5e0dbba3097c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateThread
FindFirstFileA
ExitThread
GetFileSize
GetLastError
Sleep
CreateProcessA
CopyFileA
GetConsoleMode
OpenFile
DeleteFileA
CreateDirectoryA
GlobalFree
CopyFileW
GetCPInfo
ReadFile

advapi32

RegReplaceKeyA
RegOpenKeyExW
RegEnumKeyA
RegQueryInfoKeyW
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegFlushKey
RegDeleteKeyW
RegGetKeySecurity
RegReplaceKeyA
RegCreateKeyExA
RegReplaceKeyW
RegEnumKeyA
RegDeleteKeyA
RegQueryInfoKeyA
RegEnumKeyExA
RegQueryInfoKeyW
RegOpenKeyA
RegLoadKeyW
RegQueryValueW
RegEnumKeyExW
RegDeleteValueW
RegEnumValueW
RegLoadKeyA
RegOpenKeyExA
RegQueryValueExW
RegOpenKeyExW

comctl32

ImageList_Merge
ImageList_LoadImageA
ImageList_AddIcon
ImageList_GetImageInfo
ImageList_GetIcon
ImageList_Destroy
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_DragEnter
ImageList_DragShowNolock
InitCommonControls
ImageList_AddMasked

user32

AppendMenuA
CalcMenuBar
LoadCursorA
GetCursor
AppendMenuW
InsertMenuA
GetDC
CreateIcon
IsWindow
EndDialog
GetMenu
LoadMenuA
InsertMenuA
DialogBoxParamA
GetWindowTextA
IsMenu
GetDlgItem
GetDC
AppendMenuA
DrawIcon
GetFocus
CopyIcon
CreateIcon
CopyRect
GetWindowTextA
DrawIconEx
GetCursor
CreateIcon
IsMenu
DialogBoxParamW
CopyIcon
GetFocus
AppendMenuA

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 136B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 684B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6794e88879c43eb58fe5e0dbba3097c

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

user32

Sections

.text Size: 27KB - Virtual size: 26KB

.data Size: 81KB - Virtual size: 80KB

.bbs Size: - Virtual size: 58KB

.idata Size: 2KB - Virtual size: 2KB

.tls Size: - Virtual size: 136B

.rdata Size: 512B - Virtual size: 684B

.rsrc Size: 1024B - Virtual size: 516B

.text
Size: 27KB - Virtual size: 26KB

.data
Size: 81KB - Virtual size: 80KB

.bbs
Size: - Virtual size: 58KB

.idata
Size: 2KB - Virtual size: 2KB

.tls
Size: - Virtual size: 136B

.rdata
Size: 512B - Virtual size: 684B

.rsrc
Size: 1024B - Virtual size: 516B