7f1b52119e99227285349fb6372d8bdb

General

Target

7f1b52119e99227285349fb6372d8bdb
Size

10KB
MD5

7f1b52119e99227285349fb6372d8bdb
SHA1

da1aecf5c8d42f98cc5301325207ec4fde9b6254
SHA256

33a96f48cb35b15d6cfc29193050454b6b2b8a445ac72a49a70a7a88d5059a01
SHA512

983ea4d3e4afc2f8f0be967d32733aaff0d2c1dab3e8b2ce650429b897a7289cf79b585576d5e48f6dc1b925522a2645cbc16c9cf5a83fc84dca62172a85fcd7
SSDEEP

192:brZuFcqefRz4fLNdOaz5sBVO/hHgsHnozRW6uaT1XQ:8MRzINdtzyBY/hBHnozRW6pX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7f1b52119e99227285349fb6372d8bdb

Files

7f1b52119e99227285349fb6372d8bdb
.exe windows:4 windows x86 arch:x86

c6525902a3a8aa271deb3e58f4beeb62

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
MoveFileExA
CreateDirectoryA
Sleep
lstrcmpiA
DeleteFileA
LoadLibraryA
GetTempFileNameA
GetSystemDirectoryA
GetTempPathA
GetLastError
CreateMutexA
ExitProcess
FreeLibrary
lstrcatA
GetACP
GetCurrentThreadId
GetThreadPriority
GetProcAddress
GetCurrentProcessId
GetStartupInfoA
CreateProcessA
FindFirstFileA
GetModuleFileNameA
GetShortPathNameA
CreateFileA
CancelIo
GetFileInformationByHandle
GetCurrentThread
SetFilePointer
ReadFile
GetCurrentProcess
CloseHandle
HeapAlloc
GetProcessHeap
HeapFree
GetFileSize

user32

ClientToScreen
GetCaretPos
GetActiveWindow
GetCursor
DestroyCaret
wsprintfA
ClipCursor
GetClipCursor
SetActiveWindow
GetCaretBlinkTime
GetTopWindow
GetCapture

gdi32

GetColorSpace
GdiFlush
PathToRegion
GetBrushOrgEx
GetBkMode
CloseFigure
FillPath
AbortPath
StrokeAndFillPath
UnrealizeObject
GetBkColor
EndPath
StrokePath
CancelDC
FlattenPath
EndPage
GdiSetBatchLimit
CreateCompatibleDC
AbortDoc
WidenPath
CreateCompatibleBitmap
GdiGetBatchLimit
EndDoc
BeginPath
StartPage

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c6525902a3a8aa271deb3e58f4beeb62

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 516B

.reloc Size: 1024B - Virtual size: 952B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 516B

.reloc
Size: 1024B - Virtual size: 952B