7a6d88092a149b74d7e31595005fa2f0

General

Target

7a6d88092a149b74d7e31595005fa2f0
Size

17KB
MD5

7a6d88092a149b74d7e31595005fa2f0
SHA1

2a7c7029518f8fa8ae9e033de1289848742159d4
SHA256

e0438398764cc79786144a3042e3d518188175a17547e32dd47f95083bbec2a0
SHA512

bbd14bd693820e10d4f71ad4d8422829f51b824aff61b1c99378ea68a4dd8573c715832669ace774f08ce51f77c7290fa0da01b44eb98a19f2540de65f7f8e08
SSDEEP

384:dYr05YJpMraF0ge6ahdf1iuLG+SS+q87TRv:dY8Y/oaU6ahdwNDZN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a6d88092a149b74d7e31595005fa2f0

Files

7a6d88092a149b74d7e31595005fa2f0
.exe windows:59840 windows x86 arch:x86

036f18c41f8e34f4896baf4e7602ea82

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
LeaveCriticalSection
HeapAlloc
VirtualAlloc
GetCommandLineW
Sleep
EnterCriticalSection
HeapFree
CreateFileW
WaitForSingleObject
GetCurrentProcess
VirtualAlloc
GetTickCount
GetProcessHeap
GetProcessHeap
HeapFree
FreeLibrary
HeapDestroy
GetStartupInfoA
WriteFile
VirtualAlloc
GetStartupInfoW
CreateFileW
LoadLibraryA
HeapDestroy
GetVersionExA
WaitForSingleObject
HeapReAlloc
InterlockedIncrement
UnhandledExceptionFilter
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcess
SetEvent
WriteFile
GetStartupInfoW

user32

DestroyIcon
SetTimer
GetDC
LoadImageW
RegisterClassExW
IsDlgButtonChecked
EndPaint
WinHelpW
GetWindow
GetWindow
GetKeyState
OffsetRect
OffsetRect
GetClientRect
GetDlgItemTextW
GetWindow
CharNextW
DestroyMenu
SetRect
ScreenToClient
GetDesktopWindow
CreateWindowExW
GetSystemMetrics
GetDC
IsDialogMessageW
EnableWindow
FindWindowW

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

036f18c41f8e34f4896baf4e7602ea82

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 5KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 5KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB