7bda1458bfb281dd7c856cb4c08bd2ca

General

Target

7bda1458bfb281dd7c856cb4c08bd2ca
Size

5.3MB
MD5

7bda1458bfb281dd7c856cb4c08bd2ca
SHA1

5cf080c7333ddf58b6ff4ee0f1e615edb24ee2c6
SHA256

085f39606d7b5e55784eff80ddf8c4c0915b6d97069c2ddd0dd395ee6bdf0105
SHA512

23957ac79b841a0801548304de0710502ee331d073e17f8a1e444eb65cab2527c712b90385ef9a9b09206baf239e2d831c31b54cd54b67827ebf331b4bcc1749
SSDEEP

49152:1RhnMpRTmPYdsWUR/xapkEtlOViEVvTk0ioTXzzY51K0UH+omuKaLs:dMfmPYiJapD0iavxioTX3Y5gFgHaLs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7bda1458bfb281dd7c856cb4c08bd2ca

Files

7bda1458bfb281dd7c856cb4c08bd2ca
.exe windows:5 windows x86 arch:x86

180031d2693d853209c12358349e495f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\ACTUALLIST\LOGINFIRST!!!\@RTGWEHW.exe

Imports

oleaut32

VarCyFromI2
VarCySu
VarCyFromR4
VarCyFromI1

user32

GetMenuState
GetClientRect
UnhookWinEvent
GetFocus
GetMenu
IsClipboardFormatAvailable
GetClipboardFormatNameW
ReleaseDC
LoadIconW
PostMessageW
IsDialogMessageW
SetWinEventHook
ShowWindow
GetDC
SendMessageW
EnableMenuItem
GetDlgCtrlID
GetSubMenu
GetMessageW
ChildWindowFromPoint
MessageBoxW
WinHelpW
CharNextW
DrawTextExW
EndDialog
TranslateAcceleratorW
MoveWindow
CheckMenuItem

kernel32

GetModuleHandleA
ReadConsoleA
GetModuleFileNameA

Sections

.rdata7
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

180031d2693d853209c12358349e495f

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

oleaut32

user32

kernel32

Sections

.rdata7 Size: 40KB - Virtual size: 38KB

.data Size: 1.7MB - Virtual size: 1.7MB

.idata Size: 4KB - Virtual size: 1KB

.reloc Size: 3.4MB - Virtual size: 3.4MB

.CRT Size: 4KB - Virtual size: 260B

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 64KB - Virtual size: 60KB

.rdata7
Size: 40KB - Virtual size: 38KB

.data
Size: 1.7MB - Virtual size: 1.7MB

.idata
Size: 4KB - Virtual size: 1KB

.reloc
Size: 3.4MB - Virtual size: 3.4MB

.CRT
Size: 4KB - Virtual size: 260B

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 64KB - Virtual size: 60KB