7ec3f034652e9560626f542971e3b5c1

Sharing

Copy URL Twitter E-mail

General

Target

7ec3f034652e9560626f542971e3b5c1
Size

176KB
MD5

7ec3f034652e9560626f542971e3b5c1
SHA1

9bbbc75117c7cff9f81d2a0b86f1ee521933ed29
SHA256

75164dc2f5cf7a2e3cf8e34a85cd81cd19cb87987a34394743a47073b8b0b8c6
SHA512

59095f7179d43b4934672d0ddd6fe7feababfed609e6ee3ac8764c49cb71a385433cbc58b044096564778e7a7adeb0c3b03835f158e636566edf5171afcb6b73
SSDEEP

3072:0n7TQ3DxxL0pb9EcqqE9+Qxe0ifQ6Jlzo9wDVNLdLnL1lbFFucxiBAS:SQdt0HEcqqE9nHx6bzt5r5lRwAS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7ec3f034652e9560626f542971e3b5c1

Files

7ec3f034652e9560626f542971e3b5c1
.exe windows:4 windows x86 arch:x86

a8c3f7d2a5e8026aca0db0917500ef51

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
CryptReleaseContext
CryptHashData
CryptEncrypt
CryptDestroyKey
CryptImportKey
CryptDestroyHash
CryptAcquireContextA
CryptCreateHash
RegOpenKeyExA
RegEnumValueA
CryptGetHashParam
RegCloseKey
RegDeleteKeyA

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

ole32

CoTaskMemFree
CoTaskMemAlloc
GetRunningObjectTable
CoGetClassObject
CoSetProxyBlanket
CoCreateInstance
CreateStreamOnHGlobal
CLSIDFromProgID
CreateBindCtx
CoInitialize
CoUninitialize
StgOpenStorage
BindMoniker
StgIsStorageFile
CoInitializeSecurity
StringFromGUID2
CreateItemMoniker
OleLockRunning
OleInitialize
OleUninitialize
StgCreateDocfile
CoTaskMemRealloc
CLSIDFromString

shlwapi

PathFileExistsW
PathCombineW

user32

CallWindowProcA
ShowWindow
CreateWindowExA
RegisterWindowMessageA
RegisterClassExA
FindWindowA
GetClassInfoExA
MoveWindow
MsgWaitForMultipleObjects
LoadCursorA
SetTimer
GetWindowTextA
GetFocus
wvsprintfA
DestroyWindow
ReleaseCapture
GetDC
PostMessageA
SetCapture
CreateDialogParamA
FillRect
SendMessageA
KillTimer
SetWindowLongA
CreateAcceleratorTableA
DrawTextA
BeginPaint
DispatchMessageA
GetWindowTextLengthA
EndPaint
DestroyAcceleratorTable
InvalidateRgn
GetQueueStatus
PeekMessageA
wsprintfA
CharNextA
ReleaseDC
PostThreadMessageA
IsWindow
SendNotifyMessageA
SetRect
SetWindowTextA
DefWindowProcA
GetSysColor
SendMessageTimeoutA
SetParent
UnregisterClassA
InvalidateRect
GetWindow
EqualRect
EnumDisplayDevicesA
IsChild
GetParent
GetWindowLongA
GetClassNameA
GetWindowRect
GetClientRect
CopyRect
GetDlgItem
GetActiveWindow
GetDesktopWindow
SetFocus
RedrawWindow
SetWindowPos

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

version

GetFileVersionInfoW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoA
VerQueryValueW
VerQueryValueA

kernel32

DisableThreadLibraryCalls
CreateFileW
GetLongPathNameW
GetFileSize
CreateFileMappingA
GlobalFree
GlobalSize
LocalAlloc
GetProcessHandleCount
ReadFile
WriteFile
EnumResourceTypesA
LocalFree
UnmapViewOfFile
GetFileAttributesA
Sleep
WideCharToMultiByte
SetFilePointer
CreateFileA
GetTickCount
GlobalAlloc
MapViewOfFile
CloseHandle

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

gdi32

CreateCompatibleDC
DeleteObject
GetStockObject
BitBlt
CreateDIBitmap
CreateCompatibleBitmap
SetStretchBltMode
CreateFontA
GetDeviceCaps
RealizePalette
SelectPalette
DeleteDC
CreateDIBSection
ExtEscape
GetDIBits
SelectObject
StretchDIBits
GetObjectA
CreateSolidBrush
SetBkMode

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a8c3f7d2a5e8026aca0db0917500ef51

Headers

File Characteristics

Imports

advapi32

wininet

ole32

shlwapi

user32

setupapi

version

kernel32

shell32

gdi32

Sections

.text Size: 102KB - Virtual size: 101KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 67KB - Virtual size: 66KB

.tls Size: 1024B - Virtual size: 92KB

.text
Size: 102KB - Virtual size: 101KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 67KB - Virtual size: 66KB

.tls
Size: 1024B - Virtual size: 92KB