b7529cbb581ff0bd23f93cd6e45c289d

Sharing

Copy URL Twitter E-mail

General

Target

b7529cbb581ff0bd23f93cd6e45c289d
Size

185KB
MD5

b7529cbb581ff0bd23f93cd6e45c289d
SHA1

690c2b6ca98870bcac9abc6b7dbc181d31ad063c
SHA256

ed3775db4a26bf2e1fe0f969cd0e9e49150e97bc80c955e0acb1a304b76b1d0d
SHA512

3f49406ca62b1bb2ea4fb60b7b78a4db6802f9f8bcc0c1ef78e8eb54e99a220eecbd15aae5317d1b53fddff4924bb9d1db744d2a672c6fc8f38e065423b78b1a
SSDEEP

3072:Y+ykFOZ7YXfg3ggPiFBPduyDXVxKxQB61Or3auyJbVNQyspWm36fOygclVtYM:Y+R4FYX43pPOdPDlB8Or3aLJbVNsGmZb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7529cbb581ff0bd23f93cd6e45c289d

Files

b7529cbb581ff0bd23f93cd6e45c289d
.exe windows:4 windows x86 arch:x86

7110a56d6658e4475eb310c41f66e980

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueA

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

shlwapi

PathFileExistsW
PathCombineW

kernel32

CreateFileMappingA
CreateFileA
GetShortPathNameW
DisableThreadLibraryCalls
LocalFree
WideCharToMultiByte
GlobalSize
GetProcessAffinityMask
GlobalAlloc
CreateFileW
MapViewOfFile
GlobalFree
EnumResourceTypesA
WriteFile
GetFileAttributesA
GetTickCount
UnmapViewOfFile
Sleep
GetFileSize
LocalAlloc
ReadFile
SetFilePointer
CloseHandle

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

ole32

CoUninitialize
CreateItemMoniker
StgCreateDocfile
CoInitializeSecurity
CreateBindCtx
OleUninitialize
CreateStreamOnHGlobal
OleInitialize
GetRunningObjectTable
StgIsStorageFile
StgOpenStorage
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoCreateInstance
CLSIDFromProgID
OleLockRunning
StringFromGUID2
BindMoniker
CoGetClassObject
CoInitialize
CoSetProxyBlanket
CLSIDFromString

winmm

timeGetTime
timeSetEvent

gdi32

DeleteObject
SetStretchBltMode
BitBlt
GetObjectA
ExtEscape
CreateDIBitmap
DeleteDC
GetDIBits
SelectPalette
GetStockObject
CreateDIBSection
CreateCompatibleBitmap
CreateSolidBrush
CreateCompatibleDC
GetDeviceCaps
SelectObject
RealizePalette
CreateFontA
StretchDIBits
SetBkMode

user32

UnregisterClassA
SetWindowLongA
KillTimer
PostMessageA
IsWindow
wsprintfA
SendMessageA
CallWindowProcA
SetRect
GetActiveWindow
DestroyAcceleratorTable
SetWindowTextA
GetWindowRect
GetWindowTextA
FillRect
DestroyWindow
DefWindowProcA
GetDesktopWindow
RedrawWindow
LoadCursorA
GetWindow
InvalidateRgn
SetCapture
ReleaseCapture
DrawTextA
SendNotifyMessageA
GetWindowLongA
CopyRect
GetClassNameA
CreateDialogParamA
GetSysColor
EndPaint
SetParent
EqualRect
MoveWindow
CreateWindowExA
EnumDisplayDevicesA
GetDC
CharNextA
BeginPaint
SendMessageTimeoutA
FindWindowA
RegisterWindowMessageA
PeekMessageA
GetClientRect
GetParent
GetQueueStatus
RegisterClassExA
GetFocus
CreateAcceleratorTableA
MsgWaitForMultipleObjects
SetFocus
InvalidateRect
PostThreadMessageA
ShowWindow
GetDlgItem
ReleaseDC
GetClassInfoExA
DispatchMessageA
GetWindowTextLengthA
IsChild
SetTimer
wvsprintfA
SetWindowPos

advapi32

RegCreateKeyExA
CryptGetHashParam
CryptHashData
CryptAcquireContextA
CryptEncrypt
CryptDestroyHash
RegEnumValueA
RegOpenKeyExA
RegQueryValueExA
CryptDestroyKey
RegDeleteValueA
RegCloseKey
CryptImportKey
RegQueryInfoKeyA
CryptReleaseContext
RegSetValueExA
CryptCreateHash
RegEnumKeyExA
RegDeleteKeyA

gdiplus

GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipAlloc
GdipDisposeImage
GdipGetImagePixelFormat
GdipFree
GdipCloneImage

wininet

InternetOpenUrlA
InternetReadFile
InternetOpenA
InternetCloseHandle

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7110a56d6658e4475eb310c41f66e980

Headers

File Characteristics

Imports

version

setupapi

shlwapi

kernel32

shell32

ole32

winmm

gdi32

user32

advapi32

gdiplus

wininet

Sections

.text Size: 103KB - Virtual size: 103KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 74KB - Virtual size: 74KB

.tls Size: 1024B - Virtual size: 368KB

.text
Size: 103KB - Virtual size: 103KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 74KB - Virtual size: 74KB

.tls
Size: 1024B - Virtual size: 368KB