7677c730107a8044767f012640e27edf

Sharing

Copy URL Twitter E-mail

General

Target

7677c730107a8044767f012640e27edf
Size

30KB
MD5

7677c730107a8044767f012640e27edf
SHA1

273f8adb13bca46bb7e357c8b25acb0329503e77
SHA256

e5c1fd0dedfed2db469038eeb451387ea57b6de8a90ecc0dfc67b154964f7678
SHA512

3683bbe0c014be517235e25014ee2ddf5621c6aa7a670243d295c52fa314581ff96d0e9c4f745d5b8dfa8b30a873317f7cf53e6d1ec78271559d89cc470b4ef3
SSDEEP

768:zNjSOnKQr+YNgAXieI5RpoOso4ZWGBam:5GOnbUqcnpojjZP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7677c730107a8044767f012640e27edf

Files

7677c730107a8044767f012640e27edf
.exe windows:4 windows x86 arch:x86

42448374fc3427b8ed3e743604c8d8a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadWritePtr
GetLastError
GetModuleFileNameA
CopyFileA
GetVersionExA
CreateProcessA
WriteFile
Sleep
GetTempPathA
CloseHandle
lstrcatA
lstrcpyA
lstrlenA
GetVolumeInformationA
CreateFileA
DeviceIoControl
UnmapViewOfFile
GetProcAddress
GetSystemDirectoryA
LoadLibraryA
MultiByteToWideChar
CreateFileMappingA
MapViewOfFile
GetTempFileNameA
SetFilePointer
SetEndOfFile
GetFileSize
GetFullPathNameA

user32

wsprintfA

advapi32

RegQueryValueExA
OpenSCManagerA
OpenServiceA
RegCreateKeyA
RegSetValueExA
RegOpenKeyExA
RegCloseKey
CreateServiceA
RegCreateKeyExA
CloseServiceHandle

shell32

SHGetSpecialFolderPathA

msvcp60

?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

shlwapi

PathGetDriveNumberA

msvcrt

__CxxFrameHandler
strncpy
sprintf
_strdup
strstr
strncat
free

wininet

InternetOpenUrlA
InternetOpenA
InternetCloseHandle
InternetGetConnectedState
HttpQueryInfoA
InternetReadFile

Sections

.flat
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42448374fc3427b8ed3e743604c8d8a6

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

msvcp60

shlwapi

msvcrt

wininet

Sections

.flat Size: 18KB - Virtual size: 17KB

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 2KB - Virtual size: 2KB

.flat
Size: 18KB - Virtual size: 17KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 2KB - Virtual size: 2KB