79077f5344f308b74c28200246abe643

General

Target

79077f5344f308b74c28200246abe643
Size

88KB
MD5

79077f5344f308b74c28200246abe643
SHA1

901456e1f91f922008dfc05e5ed6f36037e7b9a6
SHA256

c251e80c3a88fdd0f1493afb913393123a227fa6d9995cd75b56eeaf5fccba64
SHA512

e5ec5b2a759cfd176ed5494a4ffcd98be9db905feb3056051f9ad97c0b5ee207b7df1883b158b9390bed6d21841ddebb38fc59fedf87a9fab94e64cae22eb535
SSDEEP

1536:YeoBhA/bgxT8l/yTW6E3uRMnOHiz2nMOyglFh1JmnMOyglFh1J1Gsb0kuo:9b8T4uKOCUY1GsQG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
79077f5344f308b74c28200246abe643

Files

79077f5344f308b74c28200246abe643
.exe windows:4 windows x86 arch:x86

1f1508d5d2f6879d0cbc51c31d566c02

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
VirtualAlloc
DisableThreadLibraryCalls
CreateHardLinkW
GetModuleHandleW
ExitProcess
FindFirstFileExW
BeginUpdateResourceA
FreeResource
InterlockedDecrement
MoveFileWithProgressA
LoadLibraryA
OutputDebugStringA
GetModuleHandleA
MapViewOfFile
GetLastError

msvcrt

wcsxfrm
__unDName
_rmdir
strtol
acos
isspace
fputc
_write
_mbstok
_ismbcupper
_findfirst64
_findfirsti64
system
wcstombs
localeconv
_mbsicmp
toupper
memcpy
fwrite
isupper
ispunct
isalnum
_wmktemp
_mbclen

user32

GetParent
GetPropW
GetSysColor
ModifyMenuA
TranslateMessage
AdjustWindowRect
GetNextDlgTabItem
LoadStringW
IsClipboardFormatAvailable
GetAncestor
SetForegroundWindow
OemToCharW

gdi32

Polygon
GetTextExtentPoint32W
GetDeviceCaps
GetDIBits
SetDIBits
GetObjectW
LineTo
SetMapMode
CreatePatternBrush
GetTextFaceW
SetDIBitsToDevice
SelectObject
SetTextColor
GetTextMetricsW
MoveToEx
CreateCompatibleBitmap
EqualRgn
GetCurrentObject

opengl32

glVertex3iv
glColor4uiv
glGetTexParameteriv
glVertex2d
glTexCoord3iv
glCopyTexSubImage1D

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 142B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f1508d5d2f6879d0cbc51c31d566c02

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 22KB - Virtual size: 22KB

.rsrc Size: 36KB - Virtual size: 35KB

.reloc Size: 512B - Virtual size: 142B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 22KB - Virtual size: 22KB

.rsrc
Size: 36KB - Virtual size: 35KB

.reloc
Size: 512B - Virtual size: 142B