7b24ea06b84605f74bfbc95a5d1a29fb

Sharing

Copy URL Twitter E-mail

General

Target

7b24ea06b84605f74bfbc95a5d1a29fb
Size

372KB
MD5

7b24ea06b84605f74bfbc95a5d1a29fb
SHA1

5838fd6ec9f89f050fcfc4d733716d0a44d8767c
SHA256

5b39a886d9ba3ef138163febdbd572644d4979c3b7ca3fd1dd4ed3340ca91741
SHA512

6099e13e51be8fa0448a4b700fa1209f16b439a2ef0eb1d034040f6dfc9e9ee63044f561a2ab4d71dfc4372f23ba8938793cdc12654fda625d7cff65081adc84
SSDEEP

6144:VDiRNw2Wz7H1Nil/EQg2bOqwU/r5j1Wr8q6StFKIQM9ZigX:VuRNw2WHHHil/EQg2byUT58dV9Zie

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b24ea06b84605f74bfbc95a5d1a29fb

Files

7b24ea06b84605f74bfbc95a5d1a29fb
.exe windows:4 windows x86 arch:x86

b52fb1affb50e841ce5ab6e2cd7eba85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\KOZ\AZROI\TSK\EDJFVRJ.PDB

Imports

kernel32

LocalHandle
SetUnhandledExceptionFilter
GetModuleFileNameA
WriteConsoleOutputW
lstrlenA
GetLastError
GetAtomNameA
WideCharToMultiByte
CreateMutexA
GetFileType
FillConsoleOutputCharacterW
CommConfigDialogA
GetEnvironmentStringsA
HeapFree
HeapReAlloc
LocalUnlock
FlushConsoleInputBuffer
GetModuleHandleA
InterlockedDecrement
GetTickCount
MultiByteToWideChar
ReadConsoleInputW
GetOEMCP
GetVersion
GetSystemTime
GetModuleFileNameW
lstrlenW
GetStartupInfoW
VirtualAlloc
FlushFileBuffers
WaitForSingleObjectEx
DuplicateHandle
LoadLibraryA
FreeEnvironmentStringsW
GetCommandLineA
GetTimeZoneInformation
FlushViewOfFile
WriteFileEx
UnhandledExceptionFilter
GetFileAttributesExW
GetCurrentThreadId
CreateToolhelp32Snapshot
InterlockedIncrement
GetStringTypeA
GetStdHandle
GetLocaleInfoA
OpenProcess
VirtualProtectEx
GetPrivateProfileSectionW
GetCurrentThread
InitializeCriticalSection
HeapDestroy
GetCurrentDirectoryW
LCMapStringA
GetEnvironmentStrings
GetStringTypeW
GetEnvironmentStringsW
GetProfileStringA
WriteFile
SetFilePointer
LCMapStringW
RtlUnwind
HeapCreate
EnterCriticalSection
GlobalAlloc
ReadFile
TlsAlloc
TlsFree
WaitForDebugEvent
AddAtomA
WriteConsoleOutputCharacterA
GetDriveTypeA
GetCommandLineW
ExitProcess
InterlockedExchange
GetProcAddress
TlsSetValue
HeapAlloc
GetDateFormatA
CloseHandle
GetFullPathNameW
GetCurrentProcess
QueryPerformanceCounter
GetLocalTime
SetStdHandle
WritePrivateProfileStringW
SetLastError
DeleteFileW
OpenMutexA
SetConsoleOutputCP
DeleteCriticalSection
GetFileSize
GetCPInfo
LocalShrink
GetSystemTimeAsFileTime
FileTimeToDosDateTime
GetNumberFormatA
LoadLibraryExA
CompareStringA
FreeEnvironmentStringsA
LocalAlloc
EnumResourceLanguagesA
FillConsoleOutputCharacterA
LockFileEx
ReadConsoleInputA
EnumDateFormatsExA
GetProcessAffinityMask
CreateEventA
VirtualFree
TlsGetValue
SetHandleCount
GetTempPathW
IsBadWritePtr
SetEnvironmentVariableA
GetStartupInfoA
TerminateProcess
CompareStringW
LeaveCriticalSection
GetCurrentProcessId
VirtualQuery

comctl32

InitCommonControlsEx
DrawInsert

user32

EnumDesktopsA
LoadMenuIndirectW
ShowOwnedPopups
SendMessageTimeoutW
AppendMenuA
LoadKeyboardLayoutW
SendMessageTimeoutA
LookupIconIdFromDirectoryEx
ShowWindowAsync
ChangeClipboardChain
UnloadKeyboardLayout
ChildWindowFromPoint
GetAncestor
EditWndProc
RegisterWindowMessageA
RegisterClassA
TrackMouseEvent
CharPrevW
AppendMenuW
DrawStateW
GetMenuItemInfoA
GetWindowTextW
CopyImage
DrawStateA
EnumDisplaySettingsA
GetMenuStringA
RegisterClassExA
SetUserObjectInformationA
SetClassWord
GetWindowDC
IsWindowUnicode
GetClassLongA
ReleaseCapture
CreateWindowExW
ShowCaret
InflateRect
GetInputState
GetKeyNameTextW
SetCapture
ShowScrollBar
MessageBoxW
FrameRect
SetCursorPos
SetScrollRange
CheckMenuRadioItem
ChildWindowFromPointEx
IsCharAlphaNumericW
LoadKeyboardLayoutA
GetCaretBlinkTime
GetWindowLongA
GetDlgItemTextA
CharLowerBuffW
IsClipboardFormatAvailable
DefWindowProcA
GetWindowModuleFileNameA
DlgDirListA
DispatchMessageW
DestroyWindow
IsDlgButtonChecked
GetComboBoxInfo
DdeImpersonateClient
IsDialogMessageW
FillRect
ModifyMenuW
DestroyAcceleratorTable
BlockInput
SendIMEMessageExW
BroadcastSystemMessageA
PeekMessageW
GetCursorInfo
GetPropW
DdeConnect
RegisterDeviceNotificationA
GetMenuContextHelpId
GetProcessWindowStation
EndTask
RemoveMenu
CreateWindowStationW
CreateIcon
ShowWindow
TrackPopupMenuEx
DrawTextExW
ChangeMenuA
SetRect
SetWindowPlacement
GetWindowInfo
CallMsgFilter
RegisterClassW
CheckDlgButton
NotifyWinEvent
GetUserObjectInformationW
DlgDirListComboBoxW
MenuItemFromPoint
SendIMEMessageExA
DdeQueryStringA
GetKeyboardLayoutNameA

Sections

.text
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b52fb1affb50e841ce5ab6e2cd7eba85

Headers

File Characteristics

PDB Paths

Imports

kernel32

comctl32

user32

Sections

.text Size: 152KB - Virtual size: 149KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 96KB - Virtual size: 108KB

.rsrc Size: 52KB - Virtual size: 49KB

.text
Size: 152KB - Virtual size: 149KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 96KB - Virtual size: 108KB

.rsrc
Size: 52KB - Virtual size: 49KB