7cb9c1f467d80cb55b88b341e67df29a

General

Target

7cb9c1f467d80cb55b88b341e67df29a
Size

18KB
MD5

7cb9c1f467d80cb55b88b341e67df29a
SHA1

5591703accbf6a77d2556627fbe45d0fcd829cd2
SHA256

148cc6f9decb9762a62b95323ff34a82a8b7dca04b74a2703c7da01b1084467b
SHA512

45dda9ae690df95a6e0ce428ba9aeae83e57ad5835641c06198a949984ffc9ec99c6b1effe558c32e8bdeb745997a91a112fa0836560de196736acdc3fa2762a
SSDEEP

384:gkTjSk/yeqcfjXH177cyNKcNfL3Ih2zEIT3MFMy7A6sjS+:7Tn/Bj3B7cyDV8/IT3M2y7mjS+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7cb9c1f467d80cb55b88b341e67df29a

Files

7cb9c1f467d80cb55b88b341e67df29a
.dll windows:4 windows x86 arch:x86

031779dff1a4ab183c18f57b65a83695

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MulDiv
GetTickCount
CloseHandle
WriteFile
ReadFile
CreateFileA
lstrcatA
lstrcmpA
SetFilePointer
CreateEventA
GetModuleFileNameA
MultiByteToWideChar
RtlUnwind
GetModuleHandleA
GetProcAddress
GetTempPathA
GetTempFileNameA
HeapReAlloc
HeapFree
GetProcessHeap
lstrlenA
HeapAlloc
GlobalAlloc
GlobalFree
lstrcpynA
lstrcpyA
InterlockedExchange
GetLastError
ResetEvent
GetConsoleWindow
SetEvent
VirtualQuery

user32

wsprintfA
CallWindowProcA
DestroyWindow
EnableWindow
GetWindowLongA
RegisterWindowMessageA
SetWindowLongA
SetDlgItemTextA
MessageBoxA
SetWindowTextA
SendMessageA
GetDlgItem
GetFocus
IsWindowVisible
GetWindow
CharLowerBuffA
ShowWindow
GetClientRect
GetWindowRect
CreateWindowExW

advapi32

RegOpenKeyA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegEnumValueA

wininet

InternetOpenA
InternetConnectA
HttpOpenRequestA
InternetCrackUrlA
FindCloseUrlCache
InternetCloseHandle
InternetSetFilePointer

version

GetFileVersionInfoSizeA

Exports

Exports

a
b
c

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

031779dff1a4ab183c18f57b65a83695

Headers

File Characteristics

Imports

kernel32

user32

advapi32

wininet

version

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 1KB