7ddb0c6b3cf8e08fa33b1a97d4036a79

Sharing

Copy URL Twitter E-mail

General

Target

7ddb0c6b3cf8e08fa33b1a97d4036a79
Size

181KB
MD5

7ddb0c6b3cf8e08fa33b1a97d4036a79
SHA1

ea36466a3e5be919d7acbdc5016ed31249328919
SHA256

293c658fd76c430cfda36495246d66828ab4573c3287c7a76f04e1c72a131f3e
SHA512

a209433dbbfa35486dffed61c494722c6eee63553e84c3ae65e32c5dba0e9799dd8443e71af15094b22ac31f5d169bd5712fe23562cdff2ad3a34c320fc5c703
SSDEEP

3072:WMKDgEYOF9EMf2nibGThF7xF1sprUUJvrtEw8sQHs:WMmgZI9RsiIF7xFyprUIvrt78sQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7ddb0c6b3cf8e08fa33b1a97d4036a79

Files

7ddb0c6b3cf8e08fa33b1a97d4036a79
.exe windows:4 windows x86 arch:x86

b8854abc10d32fcd4d408a0dfe2fa819

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
GetStockObject
OffsetViewportOrgEx
CreateBitmap
TextOutW
GetTextColor
SetViewportOrgEx
SelectObject
GetBkColor
SetTextColor
GetClipBox
SetMapMode
SetViewportExtEx
DeleteObject
GetObjectW
ScaleWindowExtEx
RectVisible
RestoreDC
GetWindowExtEx
SetBkColor
GetMapMode
DeleteDC
ScaleViewportExtEx
ExtSelectClipRgn
GetViewportExtEx
ExtTextOutW
PtVisible
SaveDC
SetWindowExtEx
GetRgnBox
Escape
CreateRectRgnIndirect

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

oledlg

OleUIBusyW

advapi32

RegOpenKeyExW
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueW
RegQueryInfoKeyW
RegOpenKeyW
RegEnumKeyW
RegCloseKey
RegQueryValueExW

kernel32

LockResource
SystemTimeToFileTime
ReadFile
ReleaseMutex
InterlockedDecrement
SetFileTime
GetLocaleInfoW
GetCalendarInfoW
FindNextFileW
GetFileAttributesW
DeleteCriticalSection
WriteFile
GetThreadContext
GetSystemDefaultLangID
LocalFileTimeToFileTime
CreateMutexW
DeleteFileW
LoadLibraryW
CloseHandle
GetCurrentDirectoryW
GetModuleFileNameW
LoadResource
VirtualFree
GetProcAddress
EnumResourceNamesA
FindResourceW
EnumResourceLanguagesW
CreateFileW
ConvertDefaultLocale
FreeLibrary
CreateDirectoryW
GetVersionExW
RemoveDirectoryW
FindFirstFileW
InitializeCriticalSection
WideCharToMultiByte
GetThreadLocale
ExitProcess
MultiByteToWideChar
lstrcpyW
GetVersion
MoveFileW
lstrcmpiA
GetCurrentProcessId
GetLocaleInfoA
SizeofResource
GetModuleHandleW
WaitForSingleObject
InterlockedExchange
GetACP
RaiseException
FindClose
SetFilePointer
lstrcmpA

shlwapi

PathFileExistsW
PathFindFileNameW
PathIsUNCW
PathFindExtensionW
PathStripToRootW
PathRemoveFileSpecW
PathAppendW

ole32

StgCreateDocfileOnILockBytes
CoGetClassObject
OleFlushClipboard
CoFreeUnusedLibraries
CoUninitialize
CoTaskMemAlloc
CoInitialize
CoRegisterMessageFilter
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
CoTaskMemFree
CoRevokeClassObject
OleUninitialize
CoCreateInstance
CLSIDFromProgID
OleInitialize
CreateILockBytesOnHGlobal
CLSIDFromString

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

user32

InvalidateRgn
SetActiveWindow
GetMessageTime
MapWindowPoints
GetMessagePos
GetForegroundWindow
GetClassLongW
CharNextW
SetForegroundWindow
OffsetRect
SetPropW
GetTopWindow
RegisterClassW
UpdateWindow
GetClassInfoExW
InvalidateRect
GetClassInfoW
GetMenu
IntersectRect
CharUpperW
RegisterWindowMessageW
WinHelpW
LoadIconW
IsRectEmpty
IsWindow
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableW
GetWindowPlacement
GetPropW
MessageBeep
AdjustWindowRectEx
GetClientRect
EqualRect
IsChild
DefWindowProcW
CallWindowProcW
CreateWindowExW
SendDlgItemMessageA
RemovePropW
IsIconic
GetNextDlgTabItem
DestroyMenu

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b8854abc10d32fcd4d408a0dfe2fa819

Headers

File Characteristics

Imports

gdi32

comdlg32

winspool.drv

oledlg

advapi32

kernel32

shlwapi

ole32

shell32

user32

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 70KB - Virtual size: 70KB

.edata Size: 1024B - Virtual size: 244KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 70KB - Virtual size: 70KB

.edata
Size: 1024B - Virtual size: 244KB