7259d77773a4e9bf385bb773d13cb2f0

General

Target

7259d77773a4e9bf385bb773d13cb2f0
Size

136KB
MD5

7259d77773a4e9bf385bb773d13cb2f0
SHA1

b194544812018c2ab052c91ba8b1dddbf9b92dab
SHA256

631cea61980812a8f9c3103a6d14b4a9ad5fe7a47a97924fe58f028ce22e0c98
SHA512

0ae829f7136f001e1f061a12d8107021141e50dfe7a176392c49a2d323f7baae983584bcea3d9c168ffa319b0bb07399297d18c4ec315bf076f81a221ba64749
SSDEEP

1536:6gNMjQeevNynRfeykuAj92QNvzmU+RO+X/QLW+cZ7CCNYcJOdsw/b0g56oFIMBFa:oXWNvtZUZIb0TaR8iuL6mWUfoLpDtbK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7259d77773a4e9bf385bb773d13cb2f0

Files

7259d77773a4e9bf385bb773d13cb2f0
.exe windows:4 windows x86 arch:x86

63003127887dd3eaeb012ddb6ffda598

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
FreeLibrary
SetLastError
CloseHandle
GetProcAddress
TerminateProcess
OpenProcess
GetCurrentProcessId
FindFirstFileW
GetLastError
FindClose
RtlUnwind
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
DebugBreak
WideCharToMultiByte
MultiByteToWideChar
LoadLibraryA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
ExitProcess
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
Sleep
WriteFile
GetModuleFileNameA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetModuleFileNameW
VirtualQuery
VirtualAlloc
HeapReAlloc
HeapSize
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEnvironmentVariableW
InitializeCriticalSection
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
CreateFileW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetFilePointer
SetEndOfFile
ReadFile
CreateFileA

advapi32

RegCloseKey
RegOpenKeyExW

Sections

.text
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63003127887dd3eaeb012ddb6ffda598

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 96KB - Virtual size: 93KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 4KB - Virtual size: 176B

.text
Size: 96KB - Virtual size: 93KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 4KB - Virtual size: 176B