7b519acd026362872a49899132871073

Sharing

Copy URL

Twitter E-mail

General

Target

7b519acd026362872a49899132871073
Size

236KB
MD5

7b519acd026362872a49899132871073
SHA1

92a8be64926eadfdb93c794ace54adfa96f91d61
SHA256

cb68602c9061f567d624af0d727bd906aaa49caeae6c61b1e8079de69b11e452
SHA512

929a26972ca9da51d33621cbb69cf0bfac939f272a07c166b6b766e49299588d20a02f4898dcfcdc4a67ac9d99f141c6126d3ffdfea7b6e8ac56f094dedfe38c
SSDEEP

3072:axMDADKbAtG1HVx+erzAaJ/h2DW2JXefoisp+OQsehH4q4/:aipHVxtEU4hJXefop+oehHR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b519acd026362872a49899132871073

Files

7b519acd026362872a49899132871073
.exe windows:4 windows x86 arch:x86

7247aa111fc8c26411fa31a9a8f4e6b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPaletteEntries
GetClipBox
GetDCOrgEx
GetDIBColorTable
GetDIBits
CreateCompatibleBitmap
GetRgnBox
GetObjectA

shell32

SHGetSpecialFolderLocation
SHGetFolderPathA
SHGetFileInfoA
SHGetDesktopFolder

oleaut32

RegisterTypeLib
SafeArrayGetUBound

user32

GetClassNameA
EnumChildWindows
LoadKeyboardLayoutA
RegisterWindowMessageA
CallWindowProcA
DrawEdge
SetFocus
SetWindowTextA
SetClassLongA
GetScrollRange
PeekMessageA
SetCapture
EnumWindows
GetSysColorBrush
ShowScrollBar
EnableMenuItem
CallNextHookEx
SetParent
GetDCEx
DestroyCursor
DefFrameProcA
DispatchMessageW
CheckMenuItem
InsertMenuA
EnableScrollBar
SendMessageW
GetMenuStringA
GetClassLongA
GetWindow
GetCursorPos
GetKeyNameTextA
TranslateMDISysAccel
GetMenuItemID
EndPaint
BeginPaint
FindWindowA
CharLowerBuffA
IsDialogMessageA
CharLowerA
GetParent
SetRect
DestroyWindow
GetDlgItem
GetMenuState
SetPropA
OpenClipboard
EnumThreadWindows
ClientToScreen
SendMessageA
GetClientRect
SetScrollRange
SetActiveWindow
GetWindowTextA
ChildWindowFromPoint
DestroyMenu
EqualRect
IsChild
CreatePopupMenu
CharToOemA
DrawFrameControl
GetKeyboardLayoutList
IsWindowVisible
TrackPopupMenu
ScrollWindow
SetTimer
IsIconic
SetMenu
GetLastActivePopup
CloseClipboard
GetKeyboardState
IsWindowEnabled
SetScrollPos
UnhookWindowsHookEx
SetWindowPos
ShowWindow
CreateMenu
GetWindowThreadProcessId
IsWindow
CharNextA
SetMenuItemInfoA
IsDialogMessageW
GetCursor
GetWindowRect
CharNextW
GetActiveWindow
IsZoomed
PtInRect
SetClipboardData
CharUpperBuffA
ShowOwnedPopups
GetTopWindow
TranslateMessage
GetMenuItemCount
DefMDIChildProcA
GetWindowLongA
PostMessageA
LoadIconA
RegisterClipboardFormatA
GetForegroundWindow
MapWindowPoints
UnregisterClassA
MessageBoxA
DispatchMessageA
LoadStringA
GetMessagePos
DestroyIcon
FillRect
GetDesktopWindow
RedrawWindow
DrawIconEx
RegisterClassA
SetWindowPlacement
InsertMenuItemA
KillTimer
MessageBeep
GetCapture
GetKeyboardLayoutNameA
OemToCharA
GetScrollInfo
FrameRect
DeleteMenu
InvalidateRect
GetMenu
DrawMenuBar
SetWindowLongA
PeekMessageW
SetForegroundWindow
SetCursor
GetMenuItemInfoA
OffsetRect
SetWindowsHookExA
GetKeyboardType
InflateRect
GetPropA
LoadCursorA
GetSystemMenu
GetDC
GetScrollPos
GetKeyState
IsWindowUnicode
GetWindowLongW
GetWindowDC

kernel32

MoveFileA
GetProcessHeap
VirtualAlloc
GetACP
GetModuleFileNameA
GetLastError
ExitThread
GetStringTypeA
GetStartupInfoA
lstrcpynA
FreeLibrary
IsBadReadPtr
GetCommandLineA
ReadFile
GetModuleHandleA
LocalReAlloc
ExitProcess
GlobalAlloc
GetProcAddress
LoadLibraryA
HeapAlloc

Sections

CODE
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc5
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 1024B - Virtual size: 713B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 1024B - Virtual size: 670B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc4
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7247aa111fc8c26411fa31a9a8f4e6b1

Headers

File Characteristics

Imports

gdi32

shell32

oleaut32

user32

kernel32

Sections

CODE Size: 72KB - Virtual size: 71KB

DATA Size: 150KB - Virtual size: 149KB

.rsrc5 Size: 5KB - Virtual size: 5KB

.rsrc0 Size: 2KB - Virtual size: 1KB

.rsrc6 Size: 1024B - Virtual size: 713B

.rsrc2 Size: 1024B - Virtual size: 670B

.rsrc4 Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 984B

CODE
Size: 72KB - Virtual size: 71KB

DATA
Size: 150KB - Virtual size: 149KB

.rsrc5
Size: 5KB - Virtual size: 5KB

.rsrc0
Size: 2KB - Virtual size: 1KB

.rsrc6
Size: 1024B - Virtual size: 713B

.rsrc2
Size: 1024B - Virtual size: 670B

.rsrc4
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 984B