7884974dfc90edef38ccae2e4548da33

Sharing

Copy URL Twitter E-mail

General

Target

7884974dfc90edef38ccae2e4548da33
Size

72KB
MD5

7884974dfc90edef38ccae2e4548da33
SHA1

dfe7fcf97b22555d1a9267f9cc289ef818dc5841
SHA256

7dea5990a4a0d625914057ce9a370bf47f32db022cceee57a344df96741767e5
SHA512

c12787f5b93399d4e3b4b08547b63dda0fcd89b1e86d8623149d6b8f856ae76b833f394f177397fa9be72e27b53b1b4a6acf58de3fae458da1d9b5c7d1db6fa7
SSDEEP

1536:v6t2wzvhw76G4DBcKm/LT2M2H17PbBgfgUeaXZp5udEe6Ugi:vScGG4Nzm/LT2M2H17PbBgfgUeaXZp5g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7884974dfc90edef38ccae2e4548da33

Files

7884974dfc90edef38ccae2e4548da33
.exe windows:4 windows x86 arch:x86

fe35cd6d05ec720dc5a58d7f95bb3b6b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalMemoryStatus
WritePrivateProfileStringA
SetFileAttributesA
GetFileAttributesA
lstrcmpA
LoadResource
FindResourceA
FindFirstFileA
LockResource
CreateDirectoryA
FindNextFileA
RtlZeroMemory
lstrcatA
MoveFileA
lstrcpyA
_lclose
_lread
GetFileSize
RemoveDirectoryA
_lopen
DeleteFileA
CloseHandle
WriteFile
CreateFileA
GetTempFileNameA
WriteProfileStringA
lstrcpynA
FormatMessageA
lstrlenA
LocalReAlloc
LocalFree
LocalAlloc
GetCommandLineA
GetCurrentDirectoryA
SetCurrentDirectoryA
ExitProcess
GetModuleHandleA
GetWindowsDirectoryA
GetPrivateProfileStringA
lstrcmpiA
FindClose
SetLastError
MultiByteToWideChar
GetLastError
CopyFileA

advapi32

RegQueryInfoKeyA
RegEnumKeyA
RegLoadKeyA
RegUnLoadKeyA
RegEnumValueA
RegOpenKeyExA
RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyA
RegSetValueExA
RegOpenKeyA
RegQueryValueExA

user32

EndDeferWindowPos
LoadMenuA
GetParent
MessageBoxA
AppendMenuA
SetWindowPos
MapWindowPoints
GetWindowRect
InvalidateRect
TranslateMessage
GetMessageA
GetDlgItem
BeginDeferWindowPos
SetWindowTextA
SetWindowLongA
SetFocus
GetWindowLongA
GetMessagePos
EnableMenuItem
CreatePopupMenu
DeferWindowPos
GetLastActivePopup
GetCursorPos
EnableWindow
DrawEdge
GetClientRect
SetMenu
AdjustWindowRectEx
wsprintfA
IsDlgButtonChecked
GetWindowTextA
CheckDlgButton
EndDialog
PtInRect
DialogBoxParamA
CheckRadioButton
GetActiveWindow
LoadStringA
LoadIconA
PostMessageA
WinHelpA
CharNextA
DispatchMessageA
FindWindowA
SetForegroundWindow
IsIconic
ShowWindow
DestroyMenu
DefWindowProcA
TrackPopupMenu
SendMessageA
CallWindowProcA

comctl32

ImageList_SetOverlayImage
PropertySheetA
ImageList_LoadImageA
ImageList_Destroy

shell32

ord34
ord31
ord37
ord59
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
ShellAboutA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fe35cd6d05ec720dc5a58d7f95bb3b6b

Headers

File Characteristics

Imports

kernel32

advapi32

user32

comctl32

shell32

ole32

Sections

.text Size: 32KB - Virtual size: 29KB

.data Size: 8KB - Virtual size: 7KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 24KB - Virtual size: 36KB

.text
Size: 32KB - Virtual size: 29KB

.data
Size: 8KB - Virtual size: 7KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 24KB - Virtual size: 36KB