7d40ea0b3db763c03f49a19cfbe465db

General

Target

7d40ea0b3db763c03f49a19cfbe465db
Size

60KB
MD5

7d40ea0b3db763c03f49a19cfbe465db
SHA1

629439e66d698061dfece35da66028018a5cf493
SHA256

39cd5f9d0d383f1c05ae6aa4248b3cc10df4af3ae0b2e5de52eb4be63455f794
SHA512

b90faa65d2515dda14ee05b5aeadb0f249cc0b400c816af5d89455a942456a69f61059bed73be874b9ca19bdfbceca3974c1f7093440766b5fa2ae7fbfa01681
SSDEEP

1536:srKkVl5UsuIMAJmWvDeRQZO7PuRR4jQarqHxod89cbn:0jl5U9IpJmWrwQZO7PARMYodEe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d40ea0b3db763c03f49a19cfbe465db

Files

7d40ea0b3db763c03f49a19cfbe465db
.exe windows:4 windows x86 arch:x86

0eb55d2784319cf33067a11ee1137324

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileW
EnumCalendarInfoW
EnumResourceLanguagesW
ExitProcess
FoldStringA
FormatMessageA
GetDiskFreeSpaceExW
GetEnvironmentVariableW
GetProfileIntA
GetUserDefaultLCID
GetVersion
LocalFileTimeToFileTime
ReadConsoleOutputCharacterA
SetCurrentDirectoryW
SetEnvironmentVariableW
TlsSetValue
VirtualUnlock
WaitCommEvent
WriteConsoleOutputCharacterW
lstrcmpW

advapi32

AddAccessAllowedAce
ClearEventLogW
ConvertSecurityDescriptorToAccessNamedW
CryptDestroyKey
CryptGenKey
CryptSetProviderExW
GetPrivateObjectSecurity
GetServiceKeyNameA
GetTrusteeNameW
GetUserNameA
IsValidSecurityDescriptor
LookupAccountNameW
LookupSecurityDescriptorPartsA
NotifyBootConfigStatus
OpenBackupEventLogW
OpenEventLogW
OpenServiceW
PrivilegedServiceAuditAlarmW
QueryServiceLockStatusW
RegCreateKeyExW
RegReplaceKeyW
RevertToSelf
SetEntriesInAclW

gdi32

AbortPath
ArcTo
ColorMatchToTarget
CreateDCW
DeleteColorSpace
Ellipse
EnumICMProfilesW
ExtFloodFill
ExtTextOutW
GdiGetBatchLimit
GetBoundsRect
GetCharWidth32A
GetDCOrgEx
GetEnhMetaFileBits
GetFontData
GetMapMode
GetOutlineTextMetricsW
GetPaletteEntries
GetPath
GetPixelFormat
GetTextCharacterExtra
GetViewportOrgEx
LPtoDP
PolyBezierTo
SetBrushOrgEx
SetPixel
SetROP2
SetTextJustification
StartPage

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0eb55d2784319cf33067a11ee1137324

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

Sections

.text Size: 4KB - Virtual size: 8KB

.data Size: 52KB - Virtual size: 68KB

.idata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 4KB - Virtual size: 8KB

.data
Size: 52KB - Virtual size: 68KB

.idata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 8KB