7ced617a597cd7f1921dfde55fa1e86d

Sharing

Copy URL Twitter E-mail

General

Target

7ced617a597cd7f1921dfde55fa1e86d
Size

72KB
MD5

7ced617a597cd7f1921dfde55fa1e86d
SHA1

7a398cd70d6ec45d63eb6e5642d2e876770c2d7f
SHA256

0a00df9186e0fddd0d873269c5c8d39655c173b7c648696ec18881723febd79d
SHA512

e79e82570fb6bbe4512bef7d4b14c1abddf2cabc703115f3c5f511587eadf13d68af6f585bc05e454a2db2489603a89c11bf529c5aae1d07b06a6ad8c429be58
SSDEEP

1536:THxCGq6SmI+WPJoahu2oU6XEmY2154dtEgGPW+Nz:on6SyWPeuujfX2215itEgGOaz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7ced617a597cd7f1921dfde55fa1e86d

Files

7ced617a597cd7f1921dfde55fa1e86d
.exe windows:4 windows x86 arch:x86

9af5cef885a38fd37daa672a88c67512

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetFileTime
WriteFile
GetStdHandle
GetCommandLineA
GetFileSize
CopyFileA
GetLastError
GetCPInfo
GetComputerNameA
ReadFile
FindAtomA
OpenFile
OpenFileMappingA
SetLastError
DeleteAtom
ExitThread
GlobalFree

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_DragLeave
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_BeginDrag
ImageList_GetImageRect
ImageList_Copy
ImageList_GetImageInfo
ImageList_AddIcon
ImageList_Remove
ImageList_Read
ImageList_Replace
ImageList_GetIconSize
ImageList_EndDrag
ImageList_LoadImage
ImageList_DrawEx

user32

GetWindowTextLengthA
AlignRects
LoadCursorA
CopyIcon
AppendMenuA
DialogBoxParamA
IsMenu
CreateIcon
GetMenu
CopyImage
CloseWindow
EndDialog
DrawTextW
IsWindow
AppendMenuW
DrawIconEx
DrawTextA

advapi32

RegOpenKeyA
RegQueryValueExA
RegDeleteValueA
RegEnumKeyW
RegEnumKeyExW
RegCreateKeyExA
RegLoadKeyA
RegDeleteKeyA
RegQueryValueA
RegEnumValueW
RegReplaceKeyA
RegEnumKeyExA
RegDeleteValueW
RegOpenKeyW
RegEnumKeyA
RegQueryValueW
RegQueryInfoKeyA
RegDeleteKeyW
RegLoadKeyW
RegGetKeySecurity
RegCreateKeyW

gdi32

BitBlt
CloseMetaFile
ClearBrushAttributes
DeleteObject
GetClipBox
AddFontResourceW
AddFontMemResourceEx
SetTextColor
CloseFigure
GetDCOrgEx
CreateSolidBrush
RestoreDC
GetPixel
AddFontResourceExW
AbortPath
DeleteDC
BeginPath
AddFontResourceA
ClearBitmapAttributes
GetCurrentPositionEx
AddFontResourceExA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9af5cef885a38fd37daa672a88c67512

Headers

File Characteristics

Imports

kernel32

comctl32

user32

advapi32

gdi32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 62KB - Virtual size: 122KB

.reloc Size: - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 62KB - Virtual size: 122KB

.reloc
Size: - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB