7c2e90eae04afb2cde1e195a9c4ac9ab

Sharing

Copy URL

Twitter E-mail

General

Target

7c2e90eae04afb2cde1e195a9c4ac9ab
Size

208KB
MD5

7c2e90eae04afb2cde1e195a9c4ac9ab
SHA1

d59484aef721b2fb5e3bdc70875079a556b97097
SHA256

1e3dedc43019f6188bfe32d181b15a341067ea5bba96c6d9c8c32e7cd644b02c
SHA512

59db9ed60409b69ef85c59c09ed60933fcb2d140317ff458f8f7888d2a646de35a4da7780ef8dee61f878496d214231c21849103208f5856848f8d1f57f6778a
SSDEEP

3072:2/SpUqrqYrpWzaMTp2Bb0cbe2cE7Wq7octKT/1XZD+xdcmH9ttBRAtRW0ccK:xUWpCHTps0+vcE7G9XZD+xdcmnqtguK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c2e90eae04afb2cde1e195a9c4ac9ab

Files

7c2e90eae04afb2cde1e195a9c4ac9ab
.exe windows:5 windows x86 arch:x86

9215739e51bfd57ad989f002995d33db

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\djdpCjrjzWerg\myityYe\VKTsodo\nrOLaeptbVyosj\wgpNEulgJhZz.pdb

Imports

user32

ClipCursor
RegisterClassW
IsRectEmpty
DestroyCaret
GetDialogBaseUnits
IsCharAlphaNumericW
LoadCursorW
ActivateKeyboardLayout
CascadeWindows
GetSystemMetrics
UnionRect
DrawFrameControl
CharUpperW
ShowWindow
OffsetRect
ArrangeIconicWindows
GetKeyboardLayout
GrayStringW
GetUserObjectInformationW
BeginPaint
DestroyCursor
ChildWindowFromPoint
SetMenu
GetWindowTextW
GetAltTabInfoW
SetUserObjectInformationW
IsZoomed
MapVirtualKeyA
LoadMenuA
RegisterWindowMessageW
SetTimer
ShowWindowAsync
CopyAcceleratorTableW
GetSubMenu
GetKeyboardType
GetDlgCtrlID

kernel32

lstrlenA
lstrlenW
SetNamedPipeHandleState
PulseEvent
VerifyVersionInfoW
LoadLibraryW
SetFileAttributesW
LCMapStringW
GlobalGetAtomNameW
CreateSemaphoreA
SizeofResource
lstrcmpiW
LoadLibraryA
FlushViewOfFile
WriteFile
GlobalUnlock
GetCommTimeouts
GetSystemWindowsDirectoryA
SetLastError

version

VerQueryValueA

msvcrt

memcpy

gdi32

GetMapMode
PathToRegion
GetObjectW
CreateCompatibleDC
GetBkMode
RectVisible
EnumFontFamiliesW
OffsetRgn
ResizePalette
PatBlt
GetStockObject
CreateCompatibleBitmap
SetBitmapBits
CreateFontIndirectA
PtVisible
CreateBitmapIndirect

comctl32

ImageList_ReplaceIcon
PropertySheetW
PropertySheetA
CreateToolbarEx
CreatePropertySheetPageW
CreatePropertySheetPageA

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
?SjsjjshuyYShs@@YGKEPA_WG@Z

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.debug
Size: 512B - Virtual size: 117B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bld_1
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bld_2
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bld_3
Size: 1024B - Virtual size: 674B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9215739e51bfd57ad989f002995d33db

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

version

msvcrt

gdi32

comctl32

Exports

Exports

Sections

.text Size: 57KB - Virtual size: 56KB

.debug Size: 512B - Virtual size: 117B

.bld_1 Size: 512B - Virtual size: 320B

.bld_2 Size: 512B - Virtual size: 320B

.bld_3 Size: 1024B - Virtual size: 674B

.data Size: 1KB - Virtual size: 83KB

.rdata Size: 13KB - Virtual size: 12KB

.rsrc Size: 131KB - Virtual size: 131KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 57KB - Virtual size: 56KB

.debug
Size: 512B - Virtual size: 117B

.bld_1
Size: 512B - Virtual size: 320B

.bld_2
Size: 512B - Virtual size: 320B

.bld_3
Size: 1024B - Virtual size: 674B

.data
Size: 1KB - Virtual size: 83KB

.rdata
Size: 13KB - Virtual size: 12KB

.rsrc
Size: 131KB - Virtual size: 131KB

.reloc
Size: 2KB - Virtual size: 1KB