7f56c25bda94ff53a048d0f67623cf80

General

Target

7f56c25bda94ff53a048d0f67623cf80
Size

85KB
MD5

7f56c25bda94ff53a048d0f67623cf80
SHA1

fa3f3f62dd3517b4417779b60f4e2602a5980c43
SHA256

34d7adffc0c8180167f195b942e2f032a402cad19f6b02ed08e72948a6becb39
SHA512

8983a31e35231d4a0c7bf45ea43b146581f0f6326c8315e1b77e263187f6e02392426caea862269dcce3d94ca5dd5f4f92bc239d45071ce9c9ae97a55d4ec035
SSDEEP

1536:butnmznwVMlVGo+1ENCBCqgW1E8y83QIEfmXkCmBQT14fFO:SqnwqlVF4EN8z1E8hQI9X7WFO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7f56c25bda94ff53a048d0f67623cf80

Files

7f56c25bda94ff53a048d0f67623cf80
.exe windows:4 windows x86 arch:x86

53102063e55bceda8ba3e515e934057a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CalcMenuBar
DrawIcon
DrawIconEx
IsMenu
GetWindowTextLengthA
GetWindowTextA
IsWindow
CopyRect
CloseWindow
CopyImage
InsertMenuA
LoadCursorA
LoadMenuA
AppendMenuA
DialogBoxParamA
BlockInput
GetFocus
GetCursor
GetMenu

comctl32

ImageList_Destroy
ImageList_DrawIndirect
ImageList_EndDrag
ImageList_GetDragImage
ImageList_AddIcon
ImageList_AddMasked
ImageList_Draw
ImageList_DragEnter
ImageList_GetIconSize
ImageList_Read
ImageList_LoadImageA
ImageList_Merge
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragLeave
ImageList_Create
ImageList_GetImageRect
ImageList_DrawEx
ImageList_BeginDrag
InitCommonControls

advapi32

RegCreateKeyW
RegReplaceKeyA
RegQueryInfoKeyW
RegCreateKeyExA
RegEnumKeyExW
RegQueryValueW
RegGetKeySecurity
RegCreateKeyExW
RegDeleteValueA
RegLoadKeyA
RegEnumKeyW
RegReplaceKeyW
RegFlushKey
RegEnumKeyA
RegEnumKeyExA
RegQueryValueExA

kernel32

FreeLibrary
HeapFree
lstrcpyA
CloseHandle
GetDateFormatA
HeapAlloc
GetStringTypeW
GetLocalTime
WideCharToMultiByte
SetLastError
GetStdHandle
GetFileAttributesA
GlobalAlloc
lstrcatA
lstrcmpA
Sleep

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdata
Size: 7KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.res
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53102063e55bceda8ba3e515e934057a

Headers

File Characteristics

Imports

user32

comctl32

advapi32

kernel32

Sections

.text Size: 10KB - Virtual size: 9KB

.edata Size: 61KB - Virtual size: 60KB

.vdata Size: 7KB - Virtual size: 96KB

.res Size: 3KB - Virtual size: 2KB

.text
Size: 10KB - Virtual size: 9KB

.edata
Size: 61KB - Virtual size: 60KB

.vdata
Size: 7KB - Virtual size: 96KB

.res
Size: 3KB - Virtual size: 2KB