7fbe80c7ea20a16c430adc894d609b3b

Sharing

Copy URL Twitter E-mail

General

Target

7fbe80c7ea20a16c430adc894d609b3b
Size

189KB
MD5

7fbe80c7ea20a16c430adc894d609b3b
SHA1

1b9a74023d8216367e60709dd966a888d165574b
SHA256

7cd86ba19ec3b8ad6cd7ff0201a2f45c2b682772554d287ca05a74b5d6440af3
SHA512

59b4e45d415e7a99ae67c1e392992492f5962d2e9e4fb49872523671d128dc341cbffd10b9f248e372465c5a7d0477538f5e92e5a76893bc64f9757340e0e897
SSDEEP

3072:1/SsTBGgCxVo8SdhBaSt/eDpftfEWM+QEbzuaZdocK6CY9xaE:EJjxtS0S6pf1QEbzpZl7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7fbe80c7ea20a16c430adc894d609b3b

Files

7fbe80c7ea20a16c430adc894d609b3b
.exe windows:4 windows x86 arch:x86

3c2b30d587917676fb29134a760e130d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcA
DispatchMessageA
TranslateMessage
MessageBoxA
wsprintfA
PostQuitMessage
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA

kernel32

GetStdHandle
GetStringTypeA
WriteFile
GetCurrentDirectoryA
GetFullPathNameA
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
GetCurrentProcessId
GetLastError
FindNextFileA
FindFirstFileA
SetCurrentDirectoryA
GetPrivateProfileStringA
GetModuleFileNameA
MultiByteToWideChar
GetProcAddress
LoadLibraryA
GetModuleHandleA
GetVersion
GetDriveTypeA
GetVolumeInformationA
LocalAlloc
GetLogicalDriveStringsA
FreeLibrary
SetErrorMode
_lclose
_lopen
_lread
GetSystemDirectoryA
GetWindowsDirectoryA
GetCurrentProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
TerminateProcess
MoveFileA
DeleteFileA
HeapAlloc
HeapFree
SetConsoleCtrlHandler
GetStartupInfoA
GetCommandLineA
SetHandleCount
GetFileType
LCMapStringA
FlushFileBuffers
FindClose
GetFileAttributesA
WideCharToMultiByte
GetStringTypeW
SetStdHandle
CloseHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
SetFilePointer
RtlUnwind
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
SetEnvironmentVariableA
LCMapStringW
ReadFile
PeekNamedPipe
CreateFileA
CompareStringA
CompareStringW
SetEndOfFile
HeapReAlloc
FileTimeToLocalFileTime
GetFileInformationByHandle
FileTimeToSystemTime

netapi32

Netbios

Sections

.text
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3c2b30d587917676fb29134a760e130d

Headers

File Characteristics

Imports

user32

kernel32

netapi32

Sections

.text Size: 142KB - Virtual size: 141KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 28KB - Virtual size: 58KB

.idata Size: 3KB - Virtual size: 2KB

.reloc Size: 10KB - Virtual size: 17KB

.text
Size: 142KB - Virtual size: 141KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 28KB - Virtual size: 58KB

.idata
Size: 3KB - Virtual size: 2KB

.reloc
Size: 10KB - Virtual size: 17KB