7960cd01f5bed13b92a9009cf70ca547

Sharing

Copy URL Twitter E-mail

General

Target

7960cd01f5bed13b92a9009cf70ca547
Size

102KB
MD5

7960cd01f5bed13b92a9009cf70ca547
SHA1

8b5100b0c1aa6dd317d46f50bfbba830aa211e62
SHA256

73eac84c3a9a1fb9630be272ca53ccfcfb65ce03163178dc0479b748242eb81d
SHA512

6cbd33a0c1fb60ba7efa09b5b563bb6c6666c66cd61ccb9e3ce88ebf3362b4ca701e869a4051befe45d10da86fdfb14cd6c70c0ba0b07b120a46be5e6afb0273
SSDEEP

1536:ADwg7Yy3sdwJdQhHXNajzBIB0HJZZ8OqA3Kyue5/QVowO27IRe:A1AmcJgpU0p9rayue5/wowO+IRe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7960cd01f5bed13b92a9009cf70ca547

Files

7960cd01f5bed13b92a9009cf70ca547
.exe windows:4 windows x86 arch:x86

f8333b1ef7769c17caea819ecf398730

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memmove
log10
cos

kernel32

VirtualAlloc
lstrcmpA
GetFileSize
lstrcatA
MulDiv
SetEvent
GetVersionExA
GetFullPathNameA
LoadResource
FindClose
ExitProcess
GetDiskFreeSpaceA
WideCharToMultiByte
GetCurrentThreadId
SizeofResource
GetLastError
FormatMessageA
SetLastError
lstrlenA
WriteFile
WaitForSingleObject
GetStringTypeW
GetModuleHandleA
SetThreadLocale
SetFilePointer
SetEndOfFile
LoadLibraryExA
EnterCriticalSection
GetACP
LoadLibraryA
InitializeCriticalSection
EnumCalendarInfoA
GetProcessHeap
FreeLibrary
LocalAlloc
CreateEventA
RaiseException
GetLocaleInfoA
VirtualAllocEx
CreateFileA
HeapFree
GetFileType
GetUserDefaultLCID
GetModuleFileNameA
GlobalAddAtomA
VirtualFree
GetOEMCP
GetCurrentThread
GlobalAlloc
MoveFileA
GetSystemDefaultLangID
CreateThread
GetCurrentProcess
GlobalDeleteAtom
lstrcpyA
GlobalFindAtomA
GetEnvironmentStrings
SetErrorMode
ReadFile
LockResource
lstrcpynA
GetProcAddress
LocalFree

user32

IsChild
DrawIconEx
GetDC
IsDialogMessageA
GetDesktopWindow
CharLowerA
GetPropA
FrameRect
CreatePopupMenu
EnumChildWindows
DrawMenuBar
GetMenuItemInfoA
GetScrollInfo
EnumWindows
GetKeyNameTextA
GetActiveWindow
GetCapture
DispatchMessageA
GetSubMenu
EndPaint
GetKeyState
TrackPopupMenu
GetCursor
CheckMenuItem
ShowWindow
GetMenuState
SetWindowLongA
BeginPaint
FillRect
GetIconInfo
ShowScrollBar
DrawEdge
FindWindowA
DispatchMessageW
DefFrameProcA
GetMessagePos
EnableMenuItem
DrawIcon
GetClipboardData
CallNextHookEx
CallWindowProcA
CharNextA
CreateIcon
DrawTextA
GetSysColorBrush
GetClassLongA
GetDCEx
RegisterClassA
GetWindowTextA
SetWindowTextA
GetScrollPos
GetWindow
HideCaret
EqualRect
DeferWindowPos
EnumThreadWindows
GetCursorPos
SystemParametersInfoA
EndDeferWindowPos
DefMDIChildProcA
CreateMenu
SetTimer
GetScrollRange
GetMenuItemID
MessageBoxA

comctl32

ImageList_Create
ImageList_Add
ImageList_GetBkColor
ImageList_DrawEx
ImageList_Read
ImageList_DragShowNolock
ImageList_Destroy
ImageList_Draw
ImageList_Write
ImageList_Remove

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8333b1ef7769c17caea819ecf398730

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

comctl32

Sections

.text Size: 42KB - Virtual size: 42KB

DATA Size: 4KB - Virtual size: 3KB

BSS Size: 52KB - Virtual size: 51KB

.edata Size: 2KB - Virtual size: 1KB

.text
Size: 42KB - Virtual size: 42KB

DATA
Size: 4KB - Virtual size: 3KB

BSS
Size: 52KB - Virtual size: 51KB

.edata
Size: 2KB - Virtual size: 1KB