7ebf2285dff8f0cc75c8e75f1801b27d

Sharing

Copy URL Twitter E-mail

General

Target

7ebf2285dff8f0cc75c8e75f1801b27d
Size

103KB
MD5

7ebf2285dff8f0cc75c8e75f1801b27d
SHA1

f1bf02053a1f92159685a25dd3299a9039a83b1c
SHA256

a21bfa234183fe6c534c252fd811d5e355329fcd5ce5e94cd8e3ae9860b079e8
SHA512

7f3e66ceb958c6d19b28fb3a7fbc147a764d67234c0bae7291a72be4f9ecabf7feb7d568c2e1428c225872043995599dcd35b08f1ac52fd656b1766181be37f9
SSDEEP

1536:ILX50EslPgFcuNuVHKvNwckd6mQtPMpEu2:Q+ucuNuVakds1MpEu2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7ebf2285dff8f0cc75c8e75f1801b27d

Files

7ebf2285dff8f0cc75c8e75f1801b27d
.exe windows:4 windows x86 arch:x86

80b7ea138597fd2f114007c286f73936

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegDeleteKeyW
RegGetKeySecurity
RegDeleteKeyA
RegOpenKeyW
RegEnumKeyExW
RegQueryInfoKeyA
RegEnumKeyA
RegDeleteValueW
RegEnumKeyExA
RegFlushKey
RegQueryValueW
RegCreateKeyW
RegEnumValueA
RegQueryValueA
RegEnumKeyW
RegOpenKeyExW
RegLoadKeyW
RegQueryValueExA
RegCreateKeyExW
RegReplaceKeyA
RegCreateKeyExA
RegQueryInfoKeyW
RegOpenKeyA
RegOpenKeyExA
RegReplaceKeyW
RegDeleteValueA
RegLoadKeyA
RegEnumValueW
RegQueryValueA
RegGetKeySecurity
RegQueryValueW
RegDeleteValueW
RegEnumKeyExA
RegEnumKeyExW
RegEnumKeyA
RegLoadKeyA
RegOpenKeyA
RegOpenKeyExW
RegCreateKeyExA
RegOpenKeyW
RegEnumValueA
RegEnumValueW
RegDeleteKeyW
RegCreateKeyExW
RegReplaceKeyA
RegDeleteKeyA
RegCreateKeyW
RegQueryValueExA
RegQueryInfoKeyA
RegFlushKey
RegEnumKeyW
RegOpenKeyExA
RegLoadKeyW
RegReplaceKeyW
RegQueryValueExW
RegQueryInfoKeyW
RegDeleteValueA

kernel32

GetACP
GetDateFormatA
GetACP
GetCommandLineA
GetACP
lstrcmpA
GetACP
HeapFree
GetACP
Sleep
GetACP
GetConsoleCP
GetACP
GetModuleFileNameA
GetACP
GetLocalTime
GetACP
lstrlenA
GetACP
GetStdHandle

user32

DrawTextW
CreateIcon
DialogBoxParamA
DrawIconEx
AlignRects
GetMenu
BlockInput
CopyImage
AppendMenuW
LoadMenuA
GetDlgItem
DialogBoxParamW
GetWindowTextLengthA
GetFocus
AppendMenuA
EndDialog
IsWindow
LoadCursorA
GetDC
IsMenu
CalcMenuBar
DrawTextA
GetCursor
CopyRect
GetWindowTextA
DrawIcon
CloseWindow
InsertMenuA
CopyIcon
GetCursor
GetDlgItem
DrawIconEx
CopyIcon
GetWindowTextA
AppendMenuA
IsWindow
GetFocus
CreateIcon
CopyRect
GetMenu
LoadMenuA
DialogBoxParamA
InsertMenuA
LoadCursorA
EndDialog
IsMenu
DrawTextA
GetDC
DrawTextW
GetWindowTextLengthA
DrawIcon
CloseWindow
DialogBoxParamW
BlockInput
AppendMenuW
CopyImage
CalcMenuBar
AlignRects

Sections

.tedt
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdada
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edaaa
Size: 11KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.iaata
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80b7ea138597fd2f114007c286f73936

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.tedt Size: 14KB - Virtual size: 14KB

.rdada Size: 64KB - Virtual size: 64KB

.edaaa Size: 11KB - Virtual size: 85KB

.reloc Size: 8KB - Virtual size: 8KB

.iaata Size: 1024B - Virtual size: 1KB

.tedt
Size: 14KB - Virtual size: 14KB

.rdada
Size: 64KB - Virtual size: 64KB

.edaaa
Size: 11KB - Virtual size: 85KB

.reloc
Size: 8KB - Virtual size: 8KB

.iaata
Size: 1024B - Virtual size: 1KB