7d245d8a8ee1df03fc3121b0cfb8cab9

Sharing

Copy URL Twitter E-mail

General

Target

7d245d8a8ee1df03fc3121b0cfb8cab9
Size

508KB
MD5

7d245d8a8ee1df03fc3121b0cfb8cab9
SHA1

dfdef99faa63c453e3771c547a6c629f9ae4250b
SHA256

71fb6319a35c3ca45bd2ed066ed266748ad7a7a4d433d3c14ffd3ab8ca059f2c
SHA512

6f02119cd7ba938dcf5c4e620b4d31f2c1bc9cf125ec84e4db45d6e7ce133552f52303897c872f5c0a870fadd477fbcd21434e218cc8351c46be181aad7ef113
SSDEEP

12288:/qH0kgilvobYCBtLR/tPPJHUtCUl/1kGvvGO7qTZy:Shlvo8StLnPJUtCwt+OO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d245d8a8ee1df03fc3121b0cfb8cab9

Files

7d245d8a8ee1df03fc3121b0cfb8cab9
.exe windows:4 windows x86 arch:x86

9af23cb544aed8d417ea21a24f1f0f73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

BitBlt
GetStockObject
SelectObject
DeleteObject
SetTextColor
CreateCompatibleDC
GetDeviceCaps
DeleteDC

kernel32

FindClose
GetStartupInfoA
SetUnhandledExceptionFilter
RaiseException
InitializeCriticalSection
SetEnvironmentVariableA
GetSystemTime
UnmapViewOfFile
SetLastError
HeapFree
GetLocalTime
Sleep
CloseHandle
IsDebuggerPresent
IsBadWritePtr
MapViewOfFile
TlsSetValue
GlobalLock
GlobalUnlock
GlobalFree
GetSystemTimeAsFileTime
ReadFile
ReleaseMutex
FreeEnvironmentStringsW
DeleteFileA
ResetEvent
FreeEnvironmentStringsA
GetEnvironmentStrings
LoadResource
LoadLibraryExW
GetCommandLineW
InterlockedCompareExchange
GlobalAlloc
SetStdHandle
HeapDestroy
GetStdHandle
FindNextFileA
CreateFileMappingA
CreateFileW
InterlockedDecrement
FindFirstFileA
WriteConsoleW
HeapReAlloc
LockResource
GetCurrentProcess
CreateEventW
WriteConsoleA
GetVersionExA
lstrcpyA
CreateDirectoryA
GetDiskFreeSpaceA
LoadLibraryA
DeleteCriticalSection
GetStringTypeW
WaitForSingleObject
FormatMessageA
CreateFileA
GetCPInfo
GetStringTypeA
GetFileSize
CreateThread
EnterCriticalSection
TlsFree
SizeofResource
FindResourceA
GetModuleHandleW
GetFileAttributesW
GetCurrentThreadId
GetLastError
GetCurrentThread
TerminateProcess
SetHandleCount
HeapCreate
LocalFree
LocalAlloc
SetErrorMode
LeaveCriticalSection
GetWindowsDirectoryA
GetACP
GetProcAddress
LoadLibraryW
InterlockedIncrement
GetTimeZoneInformation
GetModuleHandleA
GetOEMCP
CreateEventA
GetSystemDirectoryA
lstrcmpA
MultiByteToWideChar
GetModuleFileNameW
CompareStringA
CompareStringW
GetTickCount
InterlockedExchange
UnhandledExceptionFilter
LCMapStringA
GetDriveTypeA
TlsGetValue
LCMapStringW
GetLocaleInfoA
MulDiv
WideCharToMultiByte
GetFileType
GetCurrentProcessId
VirtualAlloc
WaitForMultipleObjects
TlsAlloc
VirtualFree
SetFilePointer
FormatMessageW
GetFileAttributesA
GetModuleFileNameA
GetVersion
VirtualQuery
HeapAlloc
HeapSize
ExpandEnvironmentStringsA
GetProcessHeap
ExitProcess
GetCommandLineA
GetEnvironmentStringsW
GetEnvironmentVariableA
RtlUnwind
FlushFileBuffers
FreeLibrary
QueryPerformanceCounter
WriteFile
GetConsoleMode
GetThreadLocale

advapi32

RegQueryValueExA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA

user32

GetClientRect
LoadCursorA
PeekMessageA
SendMessageA
SetDlgItemTextA
SetTimer
PostQuitMessage
GetWindowRect
EnableWindow
SetForegroundWindow
ShowWindow
EndDialog
SystemParametersInfoA
ReleaseCapture
DispatchMessageA
InvalidateRect
EndPaint
DefWindowProcA
SetWindowPos
ReleaseDC
FillRect
GetDC
MessageBoxA
MapWindowPoints
SetWindowLongA
IsWindow
CallWindowProcA
CreateWindowExA
GetSubMenu
SetFocus
GetSysColor

Sections

.text
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 420KB - Virtual size: 419KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9af23cb544aed8d417ea21a24f1f0f73

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

user32

Sections

.text Size: 80KB - Virtual size: 78KB

.data Size: 420KB - Virtual size: 419KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 80KB - Virtual size: 78KB

.data
Size: 420KB - Virtual size: 419KB

.rsrc
Size: 4KB - Virtual size: 3KB