7bef640ecd2b3f07e7fb23cf25ffc833

General

Target

7bef640ecd2b3f07e7fb23cf25ffc833
Size

123KB
MD5

7bef640ecd2b3f07e7fb23cf25ffc833
SHA1

676f69ada3f1bda5a1f5e92c115150ab78f426f9
SHA256

bd22da9b66d3229233a83fc24e607f77c5235781d51837cdda0eee923a300d26
SHA512

1f2e9fbe90c898468622202f2a9ade1a499bbcdd52f7e1beee7c8101cc4cf7fcd5e0238b58db554f1c9ff49affa744d17b12253c47b351a10396944e2b16c564
SSDEEP

3072:ffScG6S48I5VUgw+wT+pEFLUB9kyiBSvh:ffe4djGmjoi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7bef640ecd2b3f07e7fb23cf25ffc833

Files

7bef640ecd2b3f07e7fb23cf25ffc833
.exe windows:4 windows x86 arch:x86

8c3a1c400f6c7f186390787f96d4343d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsW
CancelDeviceWakeupRequest
ContinueDebugEvent
CreateMailslotW
ExitProcess
GetCalendarInfoA
GetCurrencyFormatA
GetCurrentDirectoryA
GetDateFormatW
GetDevicePowerState
GetFullPathNameW
GetOEMCP
GetSystemDefaultLCID
LocalLock
PeekConsoleInputW
QueryPerformanceFrequency
SetThreadPriority
SignalObjectAndWait
SystemTimeToFileTime
TerminateThread
TryEnterCriticalSection

user32

ActivateKeyboardLayout
AnyPopup
CallNextHookEx
CharUpperW
CreateIconFromResource
DdeQueryConvInfo
DeleteMenu
DrawFrame
DrawFrameControl
DrawTextA
EnumDisplayDevicesW
GetActiveWindow
GetMenuItemInfoA
GetParent
GetPropA
IsCharAlphaNumericW
LookupIconIdFromDirectoryEx
MapWindowPoints
MonitorFromWindow
RegisterHotKey
SendMessageTimeoutA
SetCapture
SetPropW
ShowOwnedPopups
SwapMouseButton
TileWindows
UnlockWindowStation
UnregisterHotKey
wsprintfW

gdi32

AddFontResourceW
AnimatePalette
CloseFigure
CreateEnhMetaFileW
CreateICW
EndPage
EnumEnhMetaFile
Escape
ExtTextOutA
FlattenPath
GetCharABCWidthsFloatA
GetGraphicsMode
GetMetaFileA
GetNearestColor
MaskBlt
PolyPolygon
PolyTextOutA
RemoveFontResourceW
SetTextAlign
UnrealizeObject

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c3a1c400f6c7f186390787f96d4343d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 92KB - Virtual size: 108KB

.xdata Size: 512B - Virtual size: 16KB

.rsrc Size: 20KB - Virtual size: 24KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 92KB - Virtual size: 108KB

.xdata
Size: 512B - Virtual size: 16KB

.rsrc
Size: 20KB - Virtual size: 24KB