7cf1c0d0a574e6d268d7daefc6b988c7

General

Target

7cf1c0d0a574e6d268d7daefc6b988c7
Size

28KB
MD5

7cf1c0d0a574e6d268d7daefc6b988c7
SHA1

76aebc524920ec44cf00669aaa8ae091a814487a
SHA256

6c6d463a253cc038747ba9f0db9f6cb758cb08f9404fd84b62ebbead34fabdf5
SHA512

572ef8cf8e331296635bdc26f82fe9d058b6eb101b5cc58a30847ab59a20ee92f65db8509332f3c7d50a362db5b5c4af8c2cd3f111e9a7e5ce354ff884b327a7
SSDEEP

192:TwHJYQ6czJG0vUre9ZiO49HtamWcmo6ffoyPg:sHeQ6cd1wtHtf2ok3o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7cf1c0d0a574e6d268d7daefc6b988c7

Files

7cf1c0d0a574e6d268d7daefc6b988c7
.dll windows:4 windows x86 arch:x86

7b4f24187fd80e1ec298a39fb93fab0e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord5289
ord5307
ord3953
ord2982
ord3147
ord4698
ord5714
ord3259
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord4465
ord5302
ord4079
ord4080
ord4622
ord4424
ord3738
ord561
ord825
ord815
ord6467
ord800
ord941
ord860
ord4274
ord2512
ord2554
ord4486
ord6375
ord2725
ord2396
ord5300
ord3346
ord3922
ord5199
ord1089
ord3825
ord5731
ord3079
ord3831
ord540
ord600
ord1578
ord1176
ord1575
ord1116
ord1577
ord1182
ord1168
ord1243
ord1197
ord269
ord826
ord1253
ord342
ord1255
ord1570

msvcrt

sprintf
__CxxFrameHandler
_onexit
??2@YAPAXI@Z
__dllonexit
malloc
free
_initterm
_adjust_fdiv
??1type_info@@UAE@XZ

kernel32

SetCurrentDirectoryA
GetProcAddress
FreeLibrary
LoadLibraryA
lstrcpynA
lstrcpyA
GetCurrentDirectoryA
LocalFree
LocalAlloc
lstrlenA
lstrcatA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

Exports

Exports

DevSetupMain
SetRecvModeMain

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 632B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b4f24187fd80e1ec298a39fb93fab0e

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

advapi32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 776B

.reloc Size: 4KB - Virtual size: 632B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 776B

.reloc
Size: 4KB - Virtual size: 632B