7901c34317e7972ba656aa1fe8968114

Sharing

Copy URL

Twitter E-mail

General

Target

7901c34317e7972ba656aa1fe8968114
Size

320KB
MD5

7901c34317e7972ba656aa1fe8968114
SHA1

24206a3970661d82676ea72c6ba7791da007cf37
SHA256

77a85c6610486ae5a57f9563343b95ebe882859d8d5a30e03e438b30a1cad83c
SHA512

c64e394c2dbad0a8191be55ec6fd1546105ddfbe4d37d9e02085a851b89e38ecc123ace5422cc95330c9f6d505fb48832354f74e5af21aabbffd13bea6fc565c
SSDEEP

6144:3HSBQp8o3bcJ3iut5G5Z/IF/JHt9FCmIhoo0YlImAtjXtbPs:0xnSutg5JIF/bTCmuL0YlImAtj9bP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7901c34317e7972ba656aa1fe8968114

Files

7901c34317e7972ba656aa1fe8968114
.exe windows:4 windows x86 arch:x86

34f3e5fa8fd338c54b1778549f53a7fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\aepim\bytvtg\uhsz\gshtvzhhea\eenzok\sesoio.pdb

Imports

user32

GetKeyboardLayoutList
ChangeClipboardChain
DlgDirListComboBoxW
DestroyCursor
CallWindowProcA
RegisterWindowMessageW
GetWindowTextLengthW
SetRect
InvalidateRect
UnhookWindowsHookEx
RegisterClassA
CreateIconFromResourceEx
CreateIcon
RegisterClassExA
ScreenToClient
AppendMenuA
DlgDirSelectExA
ToAscii

comdlg32

GetOpenFileNameA
ChooseFontA

shell32

DragQueryFileAorW
DragFinish

gdi32

GetGraphicsMode
CreateDCA
EndPath
StrokeAndFillPath
GetCharWidthFloatW
SetTextColor
FlattenPath
StartDocA
FixBrushOrgEx
CreateDIBSection
GetCharWidthA
UpdateICMRegKeyW
GetGlyphOutlineA
CreateCompatibleDC
PolylineTo
OffsetClipRgn

kernel32

DeleteCriticalSection
GetCurrentProcessId
EnumSystemCodePagesW
HeapSize
IsBadWritePtr
WriteFile
GetConsoleMode
FlushFileBuffers
ReadConsoleA
GetEnvironmentStringsW
GlobalAddAtomA
GetDateFormatA
GetCommandLineA
GetEnvironmentStrings
GetCPInfo
GetTimeZoneInformation
CompareStringA
WriteProfileStringA
GetFileType
HeapAlloc
GetCompressedFileSizeA
TlsSetValue
CreateDirectoryExA
lstrlen
RtlUnwind
GetTickCount
GetDiskFreeSpaceW
CloseHandle
HeapFree
SetThreadContext
GetModuleHandleA
InterlockedExchange
LeaveCriticalSection
MoveFileExW
FlushConsoleInputBuffer
GetCurrentThreadId
lstrcmpW
CompareStringW
GetProfileStringW
GetStdHandle
GetStringTypeA
LCMapStringW
HeapDestroy
GetLastError
GetOEMCP
GetCompressedFileSizeW
GetProcAddress
GetACP
TlsFree
VirtualProtect
TlsGetValue
LCMapStringA
DeleteAtom
SetFilePointer
GetCurrentThread
WaitForDebugEvent
SetEnvironmentVariableA
GetSystemInfo
GetProfileIntA
VirtualFree
FreeEnvironmentStringsW
GetUserDefaultLCID
GetStringTypeW
ReadFile
TerminateProcess
SetStdHandle
GetThreadTimes
CopyFileA
OpenMutexA
InterlockedDecrement
SetHandleCount
OutputDebugStringW
HeapCreate
GetCurrentProcess
EnumSystemLocalesA
GetModuleFileNameA
GetVersionExA
EnterCriticalSection
HeapLock
InitializeCriticalSection
FindNextFileA
MultiByteToWideChar
QueryPerformanceCounter
VirtualQuery
UnhandledExceptionFilter
CreateMutexA
ReadConsoleOutputCharacterA
GetTimeFormatA
LoadLibraryA
SetLastError
VirtualAlloc
GetSystemTimeAsFileTime
WritePrivateProfileStructW
GetLocaleInfoA
GetLocaleInfoW
EnumResourceNamesW
FreeEnvironmentStringsA
TlsAlloc
OutputDebugStringA
FreeLibraryAndExitThread
RtlFillMemory
ExitProcess
IsValidCodePage
IsValidLocale
GetStartupInfoA
WideCharToMultiByte
OpenProcess
WaitForSingleObjectEx
CreateEventW
lstrlenA
HeapReAlloc
DeleteFileW
WriteProfileSectionA

comctl32

ImageList_DrawIndirect
ImageList_GetImageCount
CreateUpDownControl
ImageList_GetFlags
ImageList_Destroy
ImageList_BeginDrag
ImageList_SetDragCursorImage
ImageList_DragShowNolock
CreateToolbar
ImageList_SetFlags
ImageList_SetFilter
InitCommonControlsEx

advapi32

RegOpenKeyW
InitializeSecurityDescriptor
LookupAccountNameA
CryptSetKeyParam

Sections

.text
Size: 136KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34f3e5fa8fd338c54b1778549f53a7fb

Headers

File Characteristics

PDB Paths

Imports

user32

comdlg32

shell32

gdi32

kernel32

comctl32

advapi32

Sections

.text Size: 136KB - Virtual size: 133KB

.rdata Size: 68KB - Virtual size: 65KB

.data Size: 96KB - Virtual size: 96KB

.rsrc Size: 16KB - Virtual size: 13KB

.text
Size: 136KB - Virtual size: 133KB

.rdata
Size: 68KB - Virtual size: 65KB

.data
Size: 96KB - Virtual size: 96KB

.rsrc
Size: 16KB - Virtual size: 13KB