7ec75f3c82e0b7b329a09f408787759f

Sharing

Copy URL Twitter E-mail

General

Target

7ec75f3c82e0b7b329a09f408787759f
Size

229KB
MD5

7ec75f3c82e0b7b329a09f408787759f
SHA1

4e5129930549b778b4259ff94c6447c1f68605bd
SHA256

f7767dc595899262353fb3ade2f7188fde920118628c9630c7ea2fda475964a2
SHA512

2bf73aca95e62c45ffea6d5fa3ee88e524681e3e4a7ad34813c014a88cc0535915d09f0895a8dc172544fa350b662f41606b5ea86ed87e3fcc27abb8a3cabe0e
SSDEEP

3072:sKkhzpWHQNnenjDIqUr51bqSJUNbGare2rnM36hTEAzCSguThHhZYRKCxFyYv6R+:HQRcIpPJUsareFETRngghHkRKyka6R7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7ec75f3c82e0b7b329a09f408787759f

Files

7ec75f3c82e0b7b329a09f408787759f
.exe windows:5 windows x86 arch:x86

7628a330b68a0998311749b1595084d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\pxatH\gfcR\xkfzvb.pdb

Imports

user32

GetMessagePos
SetClassLongW
CallWindowProcW
SendInput
IsCharAlphaNumericA
LoadCursorA
WindowFromPoint
SetDlgItemTextW
GetSystemMetrics
RemoveMenu
IsWindow
SetWindowLongA
IsDialogMessageA

shlwapi

PathIsPrefixA
PathFindNextComponentA

comdlg32

GetSaveFileNameA
CommDlgExtendedError
PageSetupDlgW

gdi32

Ellipse
EnumFontFamiliesExW
GetTextExtentPoint32A
GetTextCharsetInfo
Polyline
GetWindowOrgEx

kernel32

GetUserDefaultLCID
GetCurrentProcess
ExitProcess
GlobalFree
FindFirstFileA
lstrlenW
GetFileAttributesW
EnumResourceTypesA
SetFileAttributesW
GetTickCount

Exports

Exports

?_YV_Y____FCIF_@@YGJPAJD@Z
?_pogTimdqjnl_g@@YGPAMF@Z
?U_UOGRBMQb@@YGIPAKH@Z
?oPTD_NAVCWljiz__gux@@YGGPAFH@Z
?_hw___vfCFRV_Wcto_vw@@YGXMPA_N@Z
?f_xxw_zEZ@@YGGPAG@Z
?_g_s_owACwW__DQ__S@@YGXI@Z
?K_GExmyzgyb_t@@YGHPAE@Z
?oo_tvnnt@@YGPAKE@Z
?BZSB__M_QWAXWXlLVNC@@YGIK@Z
?_JE_SXPMTE_J@@YGPAHGE@Z
?t___phUQVSswgm_p_qG@@YGPAIEPAD@Z
?izzxxQ____FAMJQZZ__@@YGPANPAMG@Z
?WN_Kgiglww@@YG_NKPAH@Z
?NOK__SEz@@YGKPAEK@Z
?fkEGQAJS_Y_yxb_W_n__u@@YGDPAN@Z
?K_KM_BXPAW_@@YG_NPA_N@Z
?W_IG_PKBSYENERCS__Ck@@YGPAXPAEN@Z

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 861B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gdat
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fdat
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mem
Size: 512B - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7628a330b68a0998311749b1595084d4

Headers

File Characteristics

PDB Paths

Imports

user32

shlwapi

comdlg32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 109KB - Virtual size: 109KB

.edata Size: 1024B - Virtual size: 861B

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 11KB - Virtual size: 11KB

.gdat Size: 64KB - Virtual size: 63KB

.fdat Size: 32KB - Virtual size: 31KB

.mem Size: 512B - Virtual size: 160KB

.rsrc Size: 5KB - Virtual size: 8KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 109KB - Virtual size: 109KB

.edata
Size: 1024B - Virtual size: 861B

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 11KB - Virtual size: 11KB

.gdat
Size: 64KB - Virtual size: 63KB

.fdat
Size: 32KB - Virtual size: 31KB

.mem
Size: 512B - Virtual size: 160KB

.rsrc
Size: 5KB - Virtual size: 8KB

.reloc
Size: 2KB - Virtual size: 1KB