79bce0bdfec79ac1d0dfb265fb159d4d

Sharing

Copy URL Twitter E-mail

General

Target

79bce0bdfec79ac1d0dfb265fb159d4d
Size

104KB
MD5

79bce0bdfec79ac1d0dfb265fb159d4d
SHA1

2a311eb39bc1d7ce3462ad6dcbe5a8c8c45f4949
SHA256

e2cfc5732aaee425bf38cb04ddcab4fdc0c4b8512085da02700e598b7bd4e6b8
SHA512

09ff3540e54dbcadf5972b6c7da8a8c2f0962f05b244c41ff07c28f1ec97b6b8b1015a19f10c366245d6b258afca96600e339b23208bf1465949b226ac4529a5
SSDEEP

1536:RuzLcghTZO4ePnRDM6B3LRZAq3WSAERUSsSC8lU+8Re:wxhVO95M6lzWITN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
79bce0bdfec79ac1d0dfb265fb159d4d

Files

79bce0bdfec79ac1d0dfb265fb159d4d
.exe windows:4 windows x86 arch:x86

f6e5d581688319b3aa409bf135c5f494

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamA
GetDC
CloseWindow
BlockInput
AppendMenuA
GetCursor
EndDialog
CalcMenuBar
CopyIcon
GetWindowTextLengthA
LoadCursorA
CopyRect
GetFocus
LoadMenuA
CloseWindow
DrawIconEx
LoadCursorA
EndDialog
IsWindow
AppendMenuA
DialogBoxParamW
GetDC
BlockInput

gdi32

AddFontResourceTracking
GetDCOrgEx
AddFontMemResourceEx
BeginPath
CancelDC
AddFontResourceA
AddFontResourceExA
RestoreDC
BitBlt
CloseMetaFile
ExcludeClipRect
GetPixel
SetTextColor
CopyMetaFileA
GetClipBox
ExtTextOutA
AddFontResourceW
ExtTextOutA
RestoreDC
GetBrushOrgEx
CloseMetaFile
AddFontMemResourceEx
ClearBrushAttributes
CopyMetaFileA
AddFontResourceExW
AbortPath
GetDCOrgEx
SetTextColor
DeleteObject
GetPixel
DeleteDC
GetCurrentPositionEx
ClearBitmapAttributes
CloseFigure
ExcludeClipRect
GetPixel
AddFontResourceW
ExtTextOutA
GetClipBox
CancelDC
DeleteObject
ClearBrushAttributes
CloseFigure
SetTextColor
GetDCOrgEx
GetPixel
BeginPath
CloseMetaFile
ClearBitmapAttributes
BitBlt
AddFontMemResourceEx
AbortPath
GetDCOrgEx
AddFontResourceTracking
CloseFigure
DeleteObject
AddFontResourceExW
ExtTextOutA
CreateSolidBrush
AddFontResourceW
GetBrushOrgEx
GetClipBox
ClearBrushAttributes
CancelDC
BeginPath
CloseMetaFile
GetPixel
CancelDC
GetPixel
AddFontResourceExA
CloseFigure
GetPixel
DeleteObject
GetCurrentPositionEx
ClearBitmapAttributes
AbortPath
AddFontResourceTracking
BitBlt
AddFontResourceW
AddFontMemResourceEx
GetBrushOrgEx
DeleteDC
AddFontResourceA
ExtTextOutA

kernel32

GetFileSize
Sleep
DeleteAtom
ExitThread
ReadFile
CreateThread
GetFileTime
GlobalFree
GetStdHandle
GetCommandLineA
DeleteFileA
GetComputerNameA
CopyFileA
CopyFileExW
GetLastError

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6e5d581688319b3aa409bf135c5f494

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 8KB - Virtual size: 6KB

.data Size: 68KB - Virtual size: 65KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 4KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 48KB

.text
Size: 8KB - Virtual size: 6KB

.data
Size: 68KB - Virtual size: 65KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 4KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 48KB