9a7065629b915e24d8549cc349c8c112

Sharing

Copy URL Twitter E-mail

General

Target

9a7065629b915e24d8549cc349c8c112
Size

145KB
MD5

9a7065629b915e24d8549cc349c8c112
SHA1

2a5f8815c777194822e226b99e45f92cd3c4bfe5
SHA256

5c9073a40f1ccc716107a129279f2ce2000a0511c1d78341e222b6111b46e146
SHA512

2bb34e0c4c5e48057c5b6768a794221c582235e18a76034a85b397ff1cbb9bd9ce0d2e03cef9b13f0b16f1fd0c83434dea05e4745ed828121e1860450c223797
SSDEEP

1536:MekxjX3wKrBfAhRj7PkyNNV4KcG9MHYbo/1yqj3OaUQShL3q7VoagH/:MH5X3wKNgRj7syNNr9MHm81yG8a7Voa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9a7065629b915e24d8549cc349c8c112

Files

9a7065629b915e24d8549cc349c8c112
.exe windows:4 windows x86 arch:x86

cbea978345b881c0d8ca5e42a4621b21

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyA
RegOpenKeyExA
RegEnumValueW
RegQueryValueA
RegReplaceKeyA
RegEnumValueA
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyW
RegGetKeySecurity
RegLoadKeyA
RegOpenKeyA
RegEnumKeyExW
RegOpenKeyW
RegEnumKeyExA
RegQueryValueExW
RegFlushKey

kernel32

ExitThread
OpenFileMappingA
WriteFile
SetLastError
GetCPInfo
CopyFileW
DeleteFileA
CreateProcessA
GlobalFree
GetComputerNameA
GetFileSize
GetConsoleMode
ReadConsoleA
FindAtomA
OpenFileMappingA
GetComputerNameA
CreateDirectoryA
SetLastError
GetStdHandle
GetLastError
CopyFileExW
CopyFileExA
GetFileTime
ReadFile
CreateThread
GetStdHandle
CreateDirectoryA
GetConsoleMode
GlobalFree
FindFirstFileA
GetFileSize
GetCommandLineA
CopyFileExA
WriteFile
ReadFile
CreateProcessA
GetCommandLineA
CreateProcessA
GetCPInfo
CopyFileExW
FindFirstFileA
SetLastError
GetComputerNameA
GetStdHandle
CopyFileW
GetConsoleMode
FindAtomA
CopyFileA
ReadConsoleA
CreateDirectoryA
CreateThread
ExitThread
DeleteAtom
GetFileTime
ReadFile
DeleteAtom
GetConsoleMode
DeleteFileW
WriteFile
OpenFileMappingA
GetFileTime
FindFirstFileA
SetLastError
CreateProcessA
CopyFileExA
GetComputerNameA
CopyFileExW
ReadConsoleA

user32

CopyImage
CopyRect
LoadMenuA
GetDC
GetWindowTextLengthA
DialogBoxParamW
LoadCursorA
GetFocus
GetMenu
InsertMenuA
CopyIcon
GetWindowTextA
DrawTextW
IsWindow
BlockInput
GetMenu
CloseWindow
DrawTextW
DrawIcon
GetWindowTextA
IsWindow
CalcMenuBar
InsertMenuA
CopyRect
AppendMenuW

comctl32

ImageList_GetImageCount
ImageList_Draw
ImageList_DragShowNolock
ImageList_LoadImage
ImageList_DrawEx
ImageList_GetIconSize
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Create
ImageList_DragLeave
ImageList_LoadImageA
InitCommonControls
ImageList_BeginDrag
ImageList_DragEnter
ImageList_Draw
ImageList_Create
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_Copy
ImageList_GetIcon
ImageList_Merge
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_Destroy
ImageList_GetImageInfo
ImageList_Create
ImageList_EndDrag
ImageList_DragLeave
ImageList_AddMasked
ImageList_Replace
ImageList_GetDragImage
ImageList_LoadImage
ImageList_GetImageCount
ImageList_BeginDrag
ImageList_Copy
InitCommonControls
ImageList_GetIcon
ImageList_DragEnter
ImageList_Draw
ImageList_LoadImageA

gdi32

DeleteDC
GetCurrentPositionEx
CloseFigure
ExtTextOutA
AddFontResourceTracking
GetBrushOrgEx
DeleteObject
AddFontResourceExW
GetClipBox
BitBlt
GetBitmapBits
ClearBrushAttributes

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 5.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cbea978345b881c0d8ca5e42a4621b21

Headers

File Characteristics

Imports

advapi32

kernel32

user32

comctl32

gdi32

Sections

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 88KB - Virtual size: 5.4MB

.tls Size: 512B - Virtual size: 184B

.rdata Size: 1024B - Virtual size: 536B

.idata Size: 5KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 180B

.rsrc Size: 19KB - Virtual size: 18KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 88KB - Virtual size: 5.4MB

.tls
Size: 512B - Virtual size: 184B

.rdata
Size: 1024B - Virtual size: 536B

.idata
Size: 5KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 180B

.rsrc
Size: 19KB - Virtual size: 18KB