7b5e1c9da050806de342a7dc8733dbe0

General

Target

7b5e1c9da050806de342a7dc8733dbe0
Size

109KB
MD5

7b5e1c9da050806de342a7dc8733dbe0
SHA1

f29a48eed2b34afa8d0dc538435a07fde785c17c
SHA256

5eaedb760d04d3ae0835313f5396b817089c0b218a604f6a93e4aef55deb83e8
SHA512

af551a9d1e37d4ab06924b9c4b98675885d2c673978fdd9c86ef021a3cfb5281bfafcae6f364bd0e4c57716f513a129ee5d596fd23cce3ba3974472357cbab0c
SSDEEP

3072:Ja3xZRTsVbBp9ZF7q7+juwbDRdYa4f434xNT0XCcZHP8:EhZZ4BbHDjvDXYams4fwZE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b5e1c9da050806de342a7dc8733dbe0

Files

7b5e1c9da050806de342a7dc8733dbe0
.exe windows:5 windows x86 arch:x86

6242c7d5c131d528806a9944ec63474a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__lc_codepage
_adjust_fdiv
_acmdln
__getmainargs
fseek
_exit
rand
_open_osfhandle
__set_app_type
__p__commode
_strlwr
_except_handler3
__p__fmode
strcat
sqrt
_XcptFilter
_ismbblead
fwrite
exit
_beginthreadex
__setusermatherr
_strcmpi
_initterm
fprintf

kernel32

IsDBCSLeadByte
GetTickCount
LCMapStringW
GetStdHandle
GetTimeZoneInformation
RaiseException
GetStartupInfoA
SetFileAttributesW
GetEnvironmentVariableA
GetCurrentProcessId
VirtualProtect
GetModuleHandleA
GetEnvironmentStrings
SetCurrentDirectoryA
GlobalUnlock
GetPrivateProfileStringA
GetExitCodeProcess

user32

GetSysColorBrush
SendDlgItemMessageA
EnumThreadWindows
GetClassNameA
MapWindowPoints
GetSystemMetrics
GetWindowTextA
DrawTextA
SetScrollPos
SetRect
CharNextA
GetIconInfo
PostMessageA

advapi32

RegQueryValueA
DeleteService
LookupPrivilegeValueA
RegEnumKeyExW
AllocateAndInitializeSid
CryptDestroyHash
RegOpenKeyExA
ControlService
RegDeleteValueW
RegDeleteValueA
SetSecurityDescriptorOwner
LookupPrivilegeValueW
GetSecurityDescriptorDacl
RegEnumValueW
OpenSCManagerW
GetTokenInformation
RegCreateKeyExW
RegQueryValueExW
RegDeleteKeyA

oleaut32

SafeArrayRedim
GetErrorInfo
SafeArrayCreate
SysReAllocStringLen
SysFreeString
SafeArrayPtrOfIndex
VariantCopyInd
SetErrorInfo
SafeArrayGetUBound
SysStringLen

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6242c7d5c131d528806a9944ec63474a

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

advapi32

oleaut32

Sections

.text Size: 57KB - Virtual size: 57KB

.data Size: 17KB - Virtual size: 16KB

.rsrc Size: 33KB - Virtual size: 33KB

.text
Size: 57KB - Virtual size: 57KB

.data
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 33KB - Virtual size: 33KB