74e3d2f1d93bae1605f9081f78c93868

Sharing

Copy URL

Twitter E-mail

General

Target

74e3d2f1d93bae1605f9081f78c93868
Size

45KB
MD5

74e3d2f1d93bae1605f9081f78c93868
SHA1

a8b119a5dc508ec5819bc668e5fed473f1a3e2e4
SHA256

75e474f577d9322accb349a85c8f99ececc9bfee5b471c8de457622a6c7084f9
SHA512

1370c14fe7cc71e4659b88c873062f38c281298fe09e687603f7d9ccc44a578a178317cea8e6be120f11e3a43dedbe5f19a5b282adc7e7c91a2d42c65d84fbf3
SSDEEP

768:1JpJX2dEPpdjvkrM5cAAWcd7ZQmaIdD5jtRQfBGT6P:/XX2dEPvvkwFAWcd7ZdzDhRoBGT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74e3d2f1d93bae1605f9081f78c93868

Files

74e3d2f1d93bae1605f9081f78c93868
.exe windows:4 windows x86 arch:x86

4c7e944c769099ef852fde53a158a991

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegReplaceKeyA
GetFileSecurityA
SetPrivateObjectSecurity
RegQueryValueExW
IsValidSid

gdi32

SetPixel
SetPixelFormat
CreatePatternBrush
GdiGetBatchLimit
GetROP2
GetPixel
SetLayout
UpdateICMRegKeyA
EndDoc
DescribePixelFormat
CreateEllipticRgnIndirect
PolyBezierTo
GetGlyphOutlineW
SetColorSpace
CancelDC
SelectObject
CombineRgn
SetColorAdjustment
SetROP2

msvcrt

_wrename
_wfullpath
sin
_environ
_tzname
iswlower
calloc
div
_read
strtoul
ldexp
_fileinfo
printf
_strncoll
__p__timezone
_heapused
_setsystime
_gcvt
strcpy
__p__wenviron
_cputs
_wtmpnam
_setjmp
_onexit
_findnext
cos
iscntrl
_mbsnbcnt
atol
_mbccpy
_creat
ungetc
__iscsymf
_toupper
_initterm
_getche
_putw

user32

DlgDirListComboBoxW
AttachThreadInput
GetMenuStringA
GetThreadDesktop
IsChild
IsCharUpperW
DdeQueryStringA
DrawStateA
SetDoubleClickTime
IsMenu
GetMessageA
ScreenToClient
LoadMenuIndirectA
IsWindow
GetWindowInfo
UnpackDDElParam
CharToOemBuffW
LoadKeyboardLayoutW
GetClassInfoA
DdeDisconnectList
LoadMenuW
GetListBoxInfo
CreateDialogParamW
DlgDirListW
GetDlgCtrlID
IsDialogMessageA
CreateMDIWindowA
SetProcessWindowStation
CreateDialogIndirectParamA
RegisterClassW

kernel32

Sleep
WaitForMultipleObjects
ReleaseMutex
GetCurrentThread
EscapeCommFunction
ExitProcess
CreateFileMappingA
GlobalLock
GetCommandLineW
BuildCommDCBA
CreatePipe
EnumResourceLanguagesW
GetCommandLineA
GetCommandLineW
GlobalAlloc
GetCurrentProcess
VirtualAlloc
GetStartupInfoW
GetModuleHandleW
GetVersionExA
GetCurrentThreadId
GlobalLock
HeapLock
GetLastError
SetHandleCount
FileTimeToSystemTime
GetCurrentProcessId
GlobalFlags
QueryPerformanceCounter
DeleteCriticalSection
GetSystemDirectoryW
VirtualFree
SetErrorMode

Sections

.text
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c7e944c769099ef852fde53a158a991

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

gdi32

msvcrt

user32

kernel32

Sections

.text Size: 8KB - Virtual size: 9KB

.data Size: 17KB - Virtual size: 54KB

.rdata Size: 16KB - Virtual size: 26KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 8KB - Virtual size: 9KB

.data
Size: 17KB - Virtual size: 54KB

.rdata
Size: 16KB - Virtual size: 26KB

.rsrc
Size: 3KB - Virtual size: 3KB