771820f320d4c51959486672427ea79c

Sharing

Copy URL Twitter E-mail

General

Target

771820f320d4c51959486672427ea79c
Size

142KB
MD5

771820f320d4c51959486672427ea79c
SHA1

39324e6e0851fb0584c304acbcaedb37fd6302e3
SHA256

6578d7a3ff21b3e1583d5760935011b793f4ae0ddd5dfeefc9808f15d0a34b83
SHA512

232064d7141af592921c07c0beb6c08e5e0a33f674e2f0a8565e976534dd22aeca7365bb6eb324f37a08ec92f1d42f18dd7af1763ba57a0141fcc4a7ca1c89c3
SSDEEP

3072:CCDUpj7jDx+dPSTGBEwKtBXqenPWgviEr4458nYKi5LL+:CCDUVPDxmfyugv76E5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
771820f320d4c51959486672427ea79c

Files

771820f320d4c51959486672427ea79c
.exe windows:4 windows x86 arch:x86

5cd03188ca9bdb175f4e835a567da356

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
GetBkMode

user32

GetKeyNameTextA
RegisterClipboardFormatA
GetWindowTextA
IsWindow
GetMenuItemCount
LoadCursorA
PostQuitMessage
LoadBitmapA
RemoveMenu
SendMessageW
SetActiveWindow
DestroyIcon
DispatchMessageA
DrawIconEx
LoadIconA
IsCharUpperA
ActivateKeyboardLayout
GetLastActivePopup
OemToCharA
IsDialogMessageA
IsWindowVisible
InvalidateRect
IsDlgButtonChecked
CharNextW
IsMenu
EnumThreadWindows
GetMenu
FillRect
SetWindowsHookExA
KillTimer
GetDesktopWindow
IsWindowEnabled
MessageBoxA
SetScrollPos
GetSysColorBrush
OffsetRect
DispatchMessageW
GetWindowDC
GetMenuStringA
RedrawWindow
GetClassInfoA
EnableMenuItem
GetWindowTextLengthA
SetPropA
DefMDIChildProcA
ShowWindow
ScrollWindow
GetMenuState
GetIconInfo
GetDC
UnhookWindowsHookEx
PostMessageA
GetMessagePos
GetKeyboardLayoutNameA
DestroyMenu
ChildWindowFromPoint
MessageBeep
EqualRect
GetScrollRange
DefFrameProcA
BeginPaint
InsertMenuItemA
GetKeyboardLayout

shell32

SHGetFileInfoA
SHGetDiskFreeSpaceA

kernel32

GetACP
SetThreadLocale
GetThreadLocale
GetOEMCP
ResetEvent
LoadLibraryA
GetFileSize
VirtualAllocEx
GetStdHandle
SetLastError
HeapFree
GlobalFindAtomA
GetFullPathNameA
LoadResource
GetCommandLineA
GlobalAlloc
WriteFile
CloseHandle
VirtualQuery
GetDiskFreeSpaceA
ExitProcess
WideCharToMultiByte

Exports

Exports

_JTg9_tEa
zFjQD
mz8mACkDWj@8
R4BeyVN62_S9ZH
_g98T58xGiTT
XWkGZm_m5Mfiqt@24
_FDJf2QDgLsSmw9
_rmNt6cn4
_E5dPIT
prATDgU
_wqvL_2vro9gi8@4

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 423B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cadata
Size: 512B - Virtual size: 275B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5cd03188ca9bdb175f4e835a567da356

Headers

File Characteristics

Imports

gdi32

user32

shell32

kernel32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 10KB - Virtual size: 97KB

.data Size: 111KB - Virtual size: 110KB

.edata Size: 512B - Virtual size: 423B

.cadata Size: 512B - Virtual size: 275B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 10KB - Virtual size: 97KB

.data
Size: 111KB - Virtual size: 110KB

.edata
Size: 512B - Virtual size: 423B

.cadata
Size: 512B - Virtual size: 275B

.rsrc
Size: 8KB - Virtual size: 8KB