7c1f9678dc6b12eeddb4f77c298bea7a

General

Target

7c1f9678dc6b12eeddb4f77c298bea7a
Size

113KB
MD5

7c1f9678dc6b12eeddb4f77c298bea7a
SHA1

41369bbac5a5a37dcf55fd768d25235ce7e2d219
SHA256

e51bf212c2ed59e9be2603cb6060451f2f37d505acaf53966148c6988bffaefb
SHA512

4055f32b57f68e7a280dd34c90d44e3aa28e794b397ef3cc56c84136dc3287549f6084810bc35e00b663ecaa53e371f67eaa516335d9acff6f47eb778ff57c3d
SSDEEP

3072:+02u3oxSiDcDOJgjigAdy1D+BnT8zrxzPQP:8tDcDOJgjdAw1D+BnT81PQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c1f9678dc6b12eeddb4f77c298bea7a

Files

7c1f9678dc6b12eeddb4f77c298bea7a
.exe windows:4 windows x86 arch:x86

e6dfd0afb97aa2e7bda08ed58cdd6f0b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
GetSystemMetrics
CharNextA
TranslateMessage
GetParent

gdi32

GetTextMetricsA
SetStretchBltMode
LineTo
CreateFontIndirectA
SetTextColor
SetPixel
SelectPalette
RectVisible
GetStockObject
GetObjectA
RestoreDC
SelectObject
SetTextAlign
CreatePen
CreateCompatibleDC
PatBlt
DeleteObject
DeleteDC
CreatePalette
GetDeviceCaps
SaveDC
GetPixel
CreateSolidBrush
GetClipBox
SetMapMode

kernel32

GlobalFindAtomA
CopyFileA
GetModuleHandleA
lstrcmpA
lstrcmpiW
SetCurrentDirectoryA
lstrlenW
RemoveDirectoryW
GetStartupInfoA
GetDriveTypeA
GetThreadLocale
GetCurrentThreadId
lstrlenA
GetConsoleOutputCP
lstrcmpiA
MulDiv
RemoveDirectoryA
DeleteFileW
GetUserDefaultLangID
GetProcessHeap
GetCurrentProcessId
IsDebuggerPresent
GetCurrentProcess
GetOEMCP
GetCommandLineW
GetTickCount
GetVersion
GetWindowsDirectoryA
GlobalFindAtomW
GetACP
VirtualAlloc
GetCurrentThread
VirtualFree
DeleteFileA
GetModuleHandleW
GetCommandLineA

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6dfd0afb97aa2e7bda08ed58cdd6f0b

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 78KB - Virtual size: 78KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 78KB - Virtual size: 78KB

.rsrc
Size: 13KB - Virtual size: 12KB