7788284592be349c6c5a6fb3bd5c8085

Sharing

Copy URL Twitter E-mail

General

Target

7788284592be349c6c5a6fb3bd5c8085
Size

179KB
MD5

7788284592be349c6c5a6fb3bd5c8085
SHA1

568f2a08111a1cd726cd391aa39969faef91459c
SHA256

a8e01dcc39a3dc72170d1db4bfd26db14764a66e45b6b5dd31039e9e9945361b
SHA512

8d7b9f90e5e316bc3f4933d1f9da17588b4f94ca8cdf42132ad0dae032bfab563662cf3b32bdc97de7e9a160a6fe153d0cc8d9d9e7b7201aed2932b58e0bfd3d
SSDEEP

3072:Gu1stt0FlkeiHnIrMQXMJM82iH3kgCEY6PwdYyAYD/vptzD749Qt8:Gu1sttSOe+naV9W0gCcYdEYD/vj71

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7788284592be349c6c5a6fb3bd5c8085

Files

7788284592be349c6c5a6fb3bd5c8085
.exe windows:5 windows x86 arch:x86

fd1f057b0704a70bc80854b908024383

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Gab32gos15sop44\Reel622sect4412\Migg3jigtis632of\Bow6brag4usthy71223\Toft2022edhs403.pdb

Imports

psapi

QueryWorkingSet

user32

DialogBoxParamW
BringWindowToTop
EnableScrollBar
LoadStringW
AttachThreadInput
AdjustWindowRectEx
PtInRect
HiliteMenuItem
GetMenuState
RemovePropW
CharNextA
InsertMenuItemW
InvalidateRgn
DrawTextA
InSendMessage
GetWindowRect
GrayStringW
RegisterWindowMessageW
DefWindowProcW
GetWindowTextW
CreateMenu
GetClassLongA
GetScrollInfo
SetCursorPos
RemoveMenu
FindWindowA
SetClassLongW
CallWindowProcA
GetWindowLongW
SetWindowTextW
SetRect
GetFocus
GetKeyboardLayout
GetWindowDC
CreateCaret
ChildWindowFromPointEx
UpdateWindow
InSendMessageEx
EnumChildWindows
DragObject
IsWindowEnabled
DefWindowProcA
LoadCursorA
GetForegroundWindow
SetLastErrorEx
MessageBoxExW
CharNextW
DialogBoxIndirectParamA
LookupIconIdFromDirectory
mouse_event
DeleteMenu
GetSysColor
DefFrameProcA
TrackPopupMenu
MessageBoxW
TabbedTextOutW
wvsprintfA
MonitorFromRect
DialogBoxParamA
OpenIcon
ShowScrollBar
RegisterClassW
GetUpdateRgn
ShowCursor
wsprintfW
GetKeyState
ShowWindow
GetMenuCheckMarkDimensions
GetScrollPos
InvertRect
EndPaint
GetClipCursor
CreateWindowExA
SetMenuItemBitmaps
GetShellWindow
DispatchMessageW
GetUpdateRect
LoadIconA
DestroyAcceleratorTable
GetClassLongW
DestroyCursor
IsChild
BeginDeferWindowPos
DrawIcon
GetKeyboardLayoutNameW
DrawTextExW
GetDlgItemInt
CheckRadioButton
CharPrevW
InsertMenuW
CascadeWindows
DrawTextW
SetWindowRgn
GetTopWindow
AdjustWindowRect
SetDlgItemTextA
LoadBitmapW
DefDlgProcA
ModifyMenuW
GetClassInfoExW
GetMessageExtraInfo
InternalGetWindowText
SetRectEmpty
RegisterWindowMessageA
GetSubMenu
CharUpperW

kernel32

GetDateFormatA
GetVersion
RegisterWaitForSingleObject
GetNumberFormatA
FindNextFileW
FileTimeToDosDateTime
FindResourceExW
GetStringTypeExW
SetThreadAffinityMask
GetBinaryTypeA
GetPriorityClass
VirtualFree
GetThreadLocale
GetTempPathA
AreFileApisANSI
GetProcAddress
DisconnectNamedPipe
VirtualAlloc
CloseHandle
FileTimeToLocalFileTime
CreateEventA
SetCommBreak
GetTickCount
GetComputerNameW
GetShortPathNameW
GetSystemDirectoryA
GetUserDefaultLCID
GlobalHandle
GetCompressedFileSizeW
TransactNamedPipe
LocalFree
GlobalFlags
SleepEx
GetFileType
VerifyVersionInfoW
GetModuleHandleW
IsBadReadPtr
EnterCriticalSection
CreateMutexA
VirtualProtect
SystemTimeToFileTime
CreateFileW
GetStartupInfoA
WaitForMultipleObjects
GlobalDeleteAtom
EnumResourceNamesA
CreateFileA
GetSystemDefaultLangID
GetThreadTimes
GetUserDefaultUILanguage
EscapeCommFunction
SetSystemTime
SetFileApisToOEM
LockResource
lstrlenA
GetFileAttributesW
GetCurrentThreadId
CopyFileW
LoadLibraryExW
SetCommTimeouts
lstrcatA
LoadResource
HeapValidate
GetThreadContext
SetWaitableTimer
DuplicateHandle
SetFileAttributesA
WaitForSingleObjectEx
GetCommModemStatus
CreateWaitableTimerW
SetHandleInformation
CreateFileMappingA
LocalUnlock
lstrcpynW
GetLastError
WaitForMultipleObjectsEx
UnmapViewOfFile
GetCommState
FindClose
FoldStringA
FormatMessageW
DeviceIoControl
GetLocalTime
WideCharToMultiByte
GetHandleInformation
MoveFileA
IsBadWritePtr
LoadLibraryExA
FindFirstChangeNotificationW
ReleaseMutex
LockFile
CancelIo
FindFirstFileW
IsDBCSLeadByte
AddAtomA
CreateDirectoryA
FileTimeToSystemTime
GlobalFree
lstrcatW
LocalReAlloc
GetTimeFormatW
SetFilePointer
GlobalMemoryStatusEx
LCMapStringW
SizeofResource
LeaveCriticalSection

rtutils

TracePrintfW

Exports

Exports

DeleteMemoryOld
FormatConfigExW
IsNotKeyNameW
GlobalPointerW
CallProject
InstallSizeEx
FormatAppNameNew
GeneratePointerW
DecrementCharW
IsValidProfileOld
IsNotPointEx
InstallDirectory
CloseFileNew
ProjectOld
LoadProjectW
ValidateFolderPathW
FindHeaderW
PutConfigA
FormatMutantEx
RemoveFullNameExA
ShowDate
EnumPenW
EnumTaskA
CallModuleExA
CallDateTimeA
IsValidObjectExW
GlobalAppNameOriginal
CallWidthW
ValidateMonitorA
CallPenW
IncrementProcessExA
CloseAnchorExW

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Reel
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Re82
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Sty
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Hap426
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Racy
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Alp
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Lax503
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd1f057b0704a70bc80854b908024383

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

psapi

user32

kernel32

rtutils

Exports

Exports

Sections

.text Size: 136KB - Virtual size: 136KB

.Reel Size: 6KB - Virtual size: 10KB

.Re82 Size: 23KB - Virtual size: 22KB

.Sty Size: 512B - Virtual size: 128B

.Hap426 Size: 512B - Virtual size: 128B

.Racy Size: 512B - Virtual size: 128B

.Alp Size: 512B - Virtual size: 128B

.Lax503 Size: 512B - Virtual size: 296B

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 136KB - Virtual size: 136KB

.Reel
Size: 6KB - Virtual size: 10KB

.Re82
Size: 23KB - Virtual size: 22KB

.Sty
Size: 512B - Virtual size: 128B

.Hap426
Size: 512B - Virtual size: 128B

.Racy
Size: 512B - Virtual size: 128B

.Alp
Size: 512B - Virtual size: 128B

.Lax503
Size: 512B - Virtual size: 296B

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 6KB - Virtual size: 5KB