76cfa7b7f3c99a8759d69388f230a398

General

Target

76cfa7b7f3c99a8759d69388f230a398
Size

194KB
MD5

76cfa7b7f3c99a8759d69388f230a398
SHA1

994a50f16f5813b42e81165c5a54634f9d7bcc9f
SHA256

0358ffded00063ba3f2f2e4da929026a30361277b4bd5dcc202d4c9ec0449236
SHA512

df85c988d9d9e00eb5f4d20742f665510514247c0c8c82c3c6af3a63b5820daa6173196649340b7aca9220ed2a0cd4f6bd923b0b5fe28dea09333b8a51e26b5d
SSDEEP

3072:ce0QXySSsMZmIDJAPaWQuyfMBH24PxZxPGT6HbHzG+V5M7g:JXySSsfSwyYHDPTxbbTGk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76cfa7b7f3c99a8759d69388f230a398

Files

76cfa7b7f3c99a8759d69388f230a398
.exe windows:5 windows x86 arch:x86

060cab23ea15faed6dc9019985c49d88

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsProcessorFeaturePresent
PeekNamedPipe
GetProcessTimes
SetFilePointer
GetSystemTimes
DebugBreak
GetConsoleCursorMode
SleepEx
DuplicateHandle
CloseConsoleHandle
GetFileAttributesExA
GetDefaultCommConfigA
GetEnvironmentVariableA
GetConsoleInputExeNameA
GetExitCodeThread
OpenThread
GetDllDirectoryA
GlobalMemoryStatus
FillConsoleOutputAttribute
OpenWaitableTimerA
GetFileSize
GetNativeSystemInfo
FindNextFileA
GlobalDeleteAtom
VirtualAlloc
GlobalAlloc
OpenProfileUserMapping
GlobalDeleteAtom
GetCommProperties
GetCurrentDirectoryA
BeginUpdateResourceA
_lclose
CloseHandle
GetProcessHeaps
CreateDirectoryExA
CreateEventA
SetLocalPrimaryComputerNameA

user32

DialogBoxParamA
GetWindowPlacement
RegisterClipboardFormatA
CharPrevExA
GetLastActivePopup
CreateMDIWindowA
CopyImage
ClientToScreen
GetMenuItemInfoA
ChildWindowFromPoint
SetWindowsHookExW
GetWindowTextA
PrivateExtractIconExA
CharUpperA
CloseDesktop
BeginPaint
DefDlgProcA
PtInRect
MenuWindowProcA
OemToCharBuffW
CloseWindowStation
GetKeyboardLayoutNameA
AlignRects
SetScrollInfo
GetDCEx
MonitorFromRect
ShowStartGlass
GetDlgCtrlID
GetQueueStatus
ReasonCodeNeedsComment
DeregisterShellHookWindow

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

060cab23ea15faed6dc9019985c49d88

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 44KB - Virtual size: 43KB

.idata Size: 2KB - Virtual size: 12KB

.rsrc Size: 147KB - Virtual size: 147KB

.text
Size: 44KB - Virtual size: 43KB

.idata
Size: 2KB - Virtual size: 12KB

.rsrc
Size: 147KB - Virtual size: 147KB