7874ed3414f91c596dde9436af9cb1a6

Sharing

Copy URL Twitter E-mail

General

Target

7874ed3414f91c596dde9436af9cb1a6
Size

501KB
MD5

7874ed3414f91c596dde9436af9cb1a6
SHA1

4f229309b8fc57d2a4394962aa65a76f567b108d
SHA256

416caba3760621369e85067c0a0e10a9c85bc93acfc9a6cfda115ddd300704d6
SHA512

287ac5c2638f64d5fbc2ba799a4d240f5726fcc5ce71b260687689f7ef8cbf0ba8a889f6c737a810b85b8c61d9d626d7a551e021bca001c8e7f857213401005f
SSDEEP

12288:CHWhf8udEuNQ/k2YqFhGYwo9twlNjB8HzYR:AUEPFhGYvelZKU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7874ed3414f91c596dde9436af9cb1a6

Files

7874ed3414f91c596dde9436af9cb1a6
.exe windows:4 windows x86 arch:x86

de6f97a22310ff4089e61cffa9d34b8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

gdi32

GetObjectType
SetDIBits
GetTextCharset
GetStockObject
ExtEscape
GetRegionData
GetTextFaceA
CreateDIBPatternBrush
GetTextAlign
DescribePixelFormat
DeleteEnhMetaFile
CreateRoundRectRgn
CreateFontW
BeginPath
CloseEnhMetaFile
GetClipRgn
EndDoc
GetCharWidth32A
GetRandomRgn
GetDeviceGammaRamp
CreateBrushIndirect
GetColorAdjustment
CreateCompatibleBitmap
MaskBlt

kernel32

CreateEventA
GetVersionExA
VirtualQuery
GetLocaleInfoW
GetNamedPipeInfo
GetStartupInfoA
HeapAlloc
GetStringTypeW
WritePrivateProfileStringW
TlsFree
GetTimeZoneInformation
SetConsoleMode
SetHandleCount
ReadFile
TlsGetValue
InterlockedExchange
SetUnhandledExceptionFilter
GetStdHandle
SetLastError
HeapDestroy
EnumSystemLocalesA
IsValidLocale
SetThreadLocale
IsBadWritePtr
TerminateProcess
GlobalAlloc
LCMapStringA
CreateFileW
SystemTimeToFileTime
LoadLibraryA
GetUserDefaultLCID
UnhandledExceptionFilter
GetCurrentThread
GetCommandLineA
WriteFile
GetTimeFormatA
GetModuleHandleA
QueryPerformanceCounter
DeleteCriticalSection
HeapCreate
CreateMutexA
FlushFileBuffers
CloseHandle
SetStdHandle
HeapSize
LCMapStringW
VirtualAlloc
GetLastError
IsValidCodePage
GetTickCount
InitializeCriticalSection
TlsAlloc
CompareStringW
GetCurrentThreadId
EnumSystemCodePagesA
OpenMutexA
GetShortPathNameA
VirtualAllocEx
lstrcat
SetLocalTime
DeleteFiber
GetCurrentProcess
WriteConsoleOutputCharacterA
HeapReAlloc
GetEnvironmentStrings
GetLocaleInfoA
VirtualFree
ReadConsoleInputA
HeapFree
GetOEMCP
GetLogicalDriveStringsA
ExitProcess
TlsSetValue
GetModuleFileNameA
SetFilePointer
CompareStringA
OpenEventA
GetCurrentProcessId
WideCharToMultiByte
VirtualProtect
GetEnvironmentStringsW
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
GetDateFormatA
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetStringTypeA
EnterCriticalSection
RtlUnwind
LeaveCriticalSection
GetProcAddress
GetCPInfo
MultiByteToWideChar
OpenSemaphoreA
GetACP
lstrcpyn
GetSystemInfo
GetFileType
EnumCalendarInfoW

user32

CreateWindowStationA
OemToCharW
MapDialogRect
CharPrevExA
ReplyMessage
MessageBeep
RegisterClassExA
CharNextA
SetMenuItemInfoW
RegisterClassA
GetMessageExtraInfo
SetSysColors
WinHelpA
GetWindowLongA
MapVirtualKeyExW
DdeInitializeA
IsCharUpperW
IsZoomed
EnumDisplaySettingsExA
GetMenu
DrawIconEx
DdeAccessData
GetWindowTextLengthW

shell32

SHGetSettings

Sections

.text
Size: 318KB - Virtual size: 318KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de6f97a22310ff4089e61cffa9d34b8d

Headers

File Characteristics

Imports

comctl32

gdi32

kernel32

user32

shell32

Sections

.text Size: 318KB - Virtual size: 318KB

.rdata Size: 58KB - Virtual size: 72KB

.data Size: 104KB - Virtual size: 103KB

.rsrc Size: 19KB - Virtual size: 18KB

.text
Size: 318KB - Virtual size: 318KB

.rdata
Size: 58KB - Virtual size: 72KB

.data
Size: 104KB - Virtual size: 103KB

.rsrc
Size: 19KB - Virtual size: 18KB