7e1d3bbbc889341b4c709898a6240a0f

Sharing

Copy URL Twitter E-mail

General

Target

7e1d3bbbc889341b4c709898a6240a0f
Size

95KB
MD5

7e1d3bbbc889341b4c709898a6240a0f
SHA1

222a6dfc8200659a049025d32696325d992ce6d0
SHA256

82862deb2aebf2078a7f04fe58b22b4cc64318bf871b4eb02dbc9821685e768b
SHA512

e01407fc621347b0b05629f39baea6147b6c9edeba31c916e702f638bff3c3c7404f6f112a3dc361b9df226835393dc20eb470d90c2fc1bc7e9305d99f911371
SSDEEP

1536:/Aem3BPRoWFzCQe6CORrglq5vukSCO41cnXejNsEFdcD1XO1YgsKTxHPmwqH0U7M:Yem3BP+WFzC3AR8u2kz18XuN1FOOm4th

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e1d3bbbc889341b4c709898a6240a0f

Files

7e1d3bbbc889341b4c709898a6240a0f
.exe windows:4 windows x86 arch:x86

1b405efc9c74f9ed6cb7071286fc33a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DrawIndirect
ImageList_EndDrag
ImageList_AddIcon
ImageList_LoadImage
ImageList_Draw
ImageList_GetImageCount
ImageList_DragLeave
ImageList_GetDragImage
ImageList_LoadImageW
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_AddMasked
ImageList_Remove
ImageList_GetIcon
ImageList_Replace
ImageList_Destroy
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_Merge

user32

CopyRect
LoadCursorA
DialogBoxParamA
AppendMenuA
GetDC
GetWindowTextA
AppendMenuW
DrawTextW
GetWindowTextLengthA
GetFocus
DialogBoxParamW
CopyImage
DrawTextA
CreateIcon
GetCursor
GetMenu
EndDialog
AlignRects
CloseWindow
DrawIconEx
DrawIcon
EndDialog
GetWindowTextA
InsertMenuA
GetDlgItem
GetCursor
CopyIcon
DrawIconEx
AlignRects
LoadMenuA
CreateIcon
AppendMenuW
CopyImage
CalcMenuBar
AppendMenuA
GetMenu
DrawTextW
IsMenu
GetDC
GetFocus

kernel32

lstrlenA
GetFileType
GlobalAlloc
DeleteFileA
lstrcmpA
SetLastError
lstrcmpiA
GetCommandLineA
GetFileSize
GetLastError
GetStdHandle
GetFileAttributesA
GetStringTypeW
FreeLibrary
HeapFree
GetDateFormatA
lstrcatA
GetStringTypeA
HeapAlloc
GetModuleHandleA

advapi32

RegEnumKeyExW
RegEnumValueA
RegQueryValueExA
RegOpenKeyW
RegGetKeySecurity
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExW
RegEnumKeyW
RegEnumValueW
RegQueryValueW
RegFlushKey
RegCreateKeyExA
RegCreateKeyExW
RegOpenKeyExW
RegLoadKeyA
RegQueryValueA
RegLoadKeyW
RegDeleteKeyW

Sections

.iBFb
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.eswRmD
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.OBbT
Size: 6KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zHKiS
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b405efc9c74f9ed6cb7071286fc33a8

Headers

File Characteristics

Imports

comctl32

user32

kernel32

advapi32

Sections

.iBFb Size: 14KB - Virtual size: 13KB

.eswRmD Size: 68KB - Virtual size: 68KB

.OBbT Size: 6KB - Virtual size: 90KB

.zHKiS Size: 2KB - Virtual size: 2KB

.iBFb
Size: 14KB - Virtual size: 13KB

.eswRmD
Size: 68KB - Virtual size: 68KB

.OBbT
Size: 6KB - Virtual size: 90KB

.zHKiS
Size: 2KB - Virtual size: 2KB