7be55575922deeb0f56ddfbaec57e78a

General

Target

7be55575922deeb0f56ddfbaec57e78a
Size

68KB
MD5

7be55575922deeb0f56ddfbaec57e78a
SHA1

14e164a63bba85ea429f4237ee20ef99b434c573
SHA256

419fd8a0406c001831cba70be739310ff31d252cc1f838dd313c47926ccf62fe
SHA512

7b0d49ad658c5399b69315bee0ca4f76fa65a2d1fed1d7857a5a43f781180bcf2eceeb632c30f51e37eabc8449ff85de2ad55d58726b429440951fb4584110d0
SSDEEP

1536:kgvXIoK2hZZxwBWOsckkeVULp5LTTTOB+mu2:5XIIhhw1DkhupE+mu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7be55575922deeb0f56ddfbaec57e78a

Files

7be55575922deeb0f56ddfbaec57e78a
.dll windows:4 windows x86 arch:x86

1fb70c0c507d4bea0f9cc5bd6aca0a4f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetDllDirectoryA
VirtualAlloc
ReleaseMutex
SetLocaleInfoA
FillConsoleOutputCharacterA
SetDllDirectoryA
GetVersionExA
PeekConsoleInputA
GetSystemTimes
WriteProcessMemory
CancelTimerQueueTimer
GetCurrentDirectoryA
SetCalendarInfoA
LZOpenFileA
Toolhelp32ReadProcessMemory
lstrlenA
OpenSemaphoreA
lstrcpy
GetModuleHandleA
IsValidLocale
WideCharToMultiByte
GetVolumePathNameA
GetFileSizeEx
GetConsoleCursorInfo
GetStringTypeA
FindCloseChangeNotification
SetFileAttributesA
GetDriveTypeA
ResetEvent
GlobalAlloc
SetFileApisToANSI
GetConsoleTitleA
ClearCommBreak
DebugBreak
GetConsoleWindow
ReadConsoleOutputCharacterA
LockFile
OpenThread
EndUpdateResourceA
lstrcmpiA
InterlockedDecrement
SetFirmwareEnvironmentVariableA
FlushConsoleInputBuffer
GetCurrentThread
ClearCommError
QueryMemoryResourceNotification
GetLocaleInfoA
SetInformationJobObject
LocalReAlloc
MoveFileA
HeapDestroy
VirtualProtectEx
GetCurrencyFormatA
GlobalReAlloc
UnlockFileEx
GetCommTimeouts
CallNamedPipeA
GetCommandLineA
GetCommProperties
GlobalFree
SetThreadContext
GetProcAddress
AddAtomA
SetConsoleNumberOfCommandsA
HeapCreate

wininet

FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW

winmm

timeBeginPeriod
timeGetTime

Exports

Exports

Ceietgvjc
Ryvgosun
AddXgurakjh
IsVnvgsjuvtwo
OpenTyoxrlrrj
GetOfvvvtetkn
Yeaksrbt
Gbwwsnk

Sections

.idata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 56KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fb70c0c507d4bea0f9cc5bd6aca0a4f

Headers

File Characteristics

Imports

kernel32

wininet

winmm

Exports

Exports

Sections

.idata Size: - Virtual size: 1KB

.text Size: 56KB - Virtual size: 181KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 2KB

.idata
Size: - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 181KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 2KB