7cb945c8a66cf7aadb612f1f663f2d81

General

Target

7cb945c8a66cf7aadb612f1f663f2d81
Size

92KB
MD5

7cb945c8a66cf7aadb612f1f663f2d81
SHA1

892460af249270abe759f8ddbe75213297b174d9
SHA256

fceeab75497486c488d14c0d720ffa76e1f05ccede93781e33eef26df1d5b469
SHA512

aa3a80112aaac5e8b0142e7f9772eb31c3556a65d7457bb0b4e0d473cd2e6f379229dcecf93806fc192b1e3808bd8cd8fef8cbc11cc8a3b431c3d5dfd3bf1ac9
SSDEEP

1536:Hn9YBCSyQ2ViQ7fb5mezJE/4urFTpMCpcIJSdih0sHlMWq1OvuZF47x:dcUVNf9e4aFp1pc+/OI6W6ouZFu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7cb945c8a66cf7aadb612f1f663f2d81

Files

7cb945c8a66cf7aadb612f1f663f2d81
.exe windows:4 windows x86 arch:x86

f1f2e053afbfe83013973f8b22066f36

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ReplaceTextA
ChooseFontW

user32

DrawIconEx

kernel32

HeapReAlloc
SystemTimeToFileTime
SetThreadAffinityMask
SetFileApisToANSI
SetDefaultCommConfigA
BeginUpdateResourceA
CloseHandle
EnumSystemLanguageGroupsA
ExitProcess
GetACP
GetAtomNameW
GetCommandLineA
GetEnvironmentStringsA
GetModuleHandleA
GetStartupInfoA
GetThreadPriorityBoost
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapCreate
MapUserPhysicalPages

ole32

CoCreateInstance
CLSIDFromString
StringFromGUID2

dbghelp

vc7fpo
SymSetSearchPath
SymSetContext
SymGetModuleBase
SymGetLineFromName
ImagehlpApiVersion
ImageRvaToSection
FindFileInSearchPath
FindFileInPath
DbgHelpCreateUserDumpW

comctl32

UninitializeFlatSB
FlatSB_ShowScrollBar
FlatSB_SetScrollRange
InitializeFlatSB
ImageList_SetFlags
ImageList_ReplaceIcon
GetMUILanguage
ImageList_LoadImageA
ImageList_GetIcon
ImageList_GetBkColor
ImageList_DrawIndirect
ImageList_DrawEx
ImageList_DragMove
ImageList_Add
FlatSB_GetScrollPos

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1f2e053afbfe83013973f8b22066f36

Headers

File Characteristics

Imports

comdlg32

user32

kernel32

ole32

dbghelp

comctl32

Sections

.text Size: 52KB - Virtual size: 51KB

.data Size: 28KB - Virtual size: 27KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 51KB

.data
Size: 28KB - Virtual size: 27KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB