775be4beb7cb3ebed0a4adfabd5535f0

General

Target

775be4beb7cb3ebed0a4adfabd5535f0
Size

17KB
MD5

775be4beb7cb3ebed0a4adfabd5535f0
SHA1

9584d641d9a323a61c17bd032050eb145ffb0fed
SHA256

7cb6918ef396dace22a8621bcaf16f228e3d23fd14decba2c2017373afcbedc3
SHA512

f2d891b5fe9e3892fdabc930e79706c7476dce1d55e110017e11d11e2e9f8e74c4a14063c2d2862980fb63dc2b4477e2e904d8c7c3b54216fe1d3770dfe47646
SSDEEP

384:0JqXhCP0irqA0g9mpwAKedL3PGti4qF605+0lJ7utrAnXfDf:0So0iULPnl1DnPD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
775be4beb7cb3ebed0a4adfabd5535f0

Files

775be4beb7cb3ebed0a4adfabd5535f0
.exe windows:4 windows x86 arch:x86

03b72a89f5de3e0f6f50bd1df3a52896

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA

kernel32

GetLogicalDrives
GetModuleFileNameA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetProcAddress
GetVersionExA
GetVolumeInformationA
GetWindowsDirectoryA
GlobalMemoryStatus
LoadLibraryA
GetDriveTypeA
LocalFree
MultiByteToWideChar
ReadFile
SetFilePointer
Sleep
WideCharToMultiByte
lstrcatA
lstrcmpA
lstrcmpiA
GetDiskFreeSpaceA
lstrlenA
FreeLibrary
FindNextFileA
FindFirstFileA
FindClose
ExitProcess
CreateFileA
CopyFileA
CloseHandle
LocalAlloc
lstrcpyA

wsock32

gethostbyname
connect
gethostname
recv
send
socket
closesocket
WSAStartup

advapi32

IsValidSid
GetUserNameA
RegCloseKey
RegCreateKeyA
RegEnumKeyExA
RegQueryValueExA
RegSetValueExA
GetSidIdentifierAuthority
GetSidSubAuthority
GetSidSubAuthorityCount
LookupAccountNameA

shell32

SHGetSpecialFolderPathA
ShellExecuteA

ole32

CoTaskMemFree

rasapi32

RasGetEntryPropertiesA
RasGetEntryDialParamsA
RasEnumEntriesA

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

03b72a89f5de3e0f6f50bd1df3a52896

Headers

File Characteristics

Imports

user32

kernel32

wsock32

advapi32

shell32

ole32

rasapi32

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 130KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 130KB