b7e0d5c195182af7e118575f202b1913

Sharing

Copy URL

Twitter E-mail

General

Target

b7e0d5c195182af7e118575f202b1913
Size

177KB
MD5

b7e0d5c195182af7e118575f202b1913
SHA1

3e29737dff2ec92f5206545014d1146dedaf96b9
SHA256

e154b4399b73f9049eb726b40caf674cfba914196fcf57fed9be063d54e7f9a8
SHA512

2c64eca3b6622503d80d720bed6896acf0b318465fca1f42bd8155f9322c1c219e31350fd9a4cbbd13533990007f7bd6dc9b4337485db35d1595cedcebb3c8c2
SSDEEP

3072:nNnHLfYflfWUbD9Ah1OOup51jGHjF4k1YXHJrbxKskwByIjc6XxWJuDBJXJO4A2o:NjswUlokOup51jGHvCXJrjk2yI9FDDgv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7e0d5c195182af7e118575f202b1913

Files

b7e0d5c195182af7e118575f202b1913
.exe windows:4 windows x86 arch:x86

30d9474fbc4ff9783c6c7f75892fb190

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SetWindowPos
MoveWindow
FillRect
LoadCursorA
GetWindowInfo
ReleaseCapture
IsWindow
GetWindowLongA
GetSysColor
ReleaseDC
GetDlgItem
SetWindowLongA
SetCursor
GetDC
SetCapture

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

GetDeviceCaps
GetStockObject
SaveDC
SetBkMode
CreateSolidBrush
BitBlt
CreateCompatibleDC
CreateFontIndirectA
DeleteDC
RestoreDC
SetTextColor
Rectangle
GetTextExtentPoint32A
SelectObject
GetObjectA
CreateRectRgn
TextOutA
EnumFontFamiliesExA
DeleteMetaFile
DeleteObject
CreateCompatibleBitmap

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

advapi32

RegQueryValueExA
RegCloseKey
RegEnumKeyExA
RegDeleteKeyA
RegOpenKeyA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

ole32

ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

winmm

mciSendCommandA
sndPlaySoundA

kernel32

SetTapeParameters
GetLocalTime
ClearCommError
Sleep
GetVersion
InterlockedExchange
EnumResourceNamesA
GetCurrentProcessId
FindClose
ExitProcess
GetWindowsDirectoryA
FindFirstFileA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

Sections

.text
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

30d9474fbc4ff9783c6c7f75892fb190

Headers

File Characteristics

Imports

user32

oleacc

gdi32

version

advapi32

ole32

winmm

kernel32

shell32

Sections

.text Size: 155KB - Virtual size: 155KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 18KB - Virtual size: 17KB

.lib Size: 512B - Virtual size: 76KB

.text
Size: 155KB - Virtual size: 155KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 18KB - Virtual size: 17KB

.lib
Size: 512B - Virtual size: 76KB