c7e5bde41f1e72f5237f92036b77e291

General

Target

c7e5bde41f1e72f5237f92036b77e291
Size

137KB
MD5

c7e5bde41f1e72f5237f92036b77e291
SHA1

2ff5bc9d6b26544b1834e108af1822a3eb3f506e
SHA256

590f6db21f84b4aefa143b3ce5a8c38b3f72455a984b138002cf5fdf76ebdaef
SHA512

cd59e547dad4efe5e55ce2ed2f635054186e27b4c47f5e43b3729f1d4b8c4c7f057ed28d1ec7bf377f87cf2ff95477b7413bffcd9b44affdada874a52f08a319
SSDEEP

3072:1ZxCDW+byF+OZEswi/uqsppjUT0+KaKm12lEdPss8fcd:Pxznd5127pdIKp3YV80d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7e5bde41f1e72f5237f92036b77e291

Files

c7e5bde41f1e72f5237f92036b77e291
.exe windows:4 windows x86 arch:x86

da629f6cc85d291cfe9ec7155ed6d963

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
GetLastError
GetACP
lstrcmpiW
GetCommandLineA
GlobalFindAtomA
GetVersion
GetUserDefaultLangID
RemoveDirectoryA
lstrcmpiA
GetCurrentProcess
DeleteFileA
SetCurrentDirectoryA
GetModuleHandleA
GetCommandLineW
IsDebuggerPresent
SetLastError
GetTickCount
GetCurrentThread
CopyFileA
lstrlenA
lstrcmpA
GetConsoleOutputCP
GetThreadLocale
GlobalFindAtomW
GetProcessHeap
DeleteFileW
GetCurrentProcessId
GetOEMCP
lstrlenW
VirtualAlloc

user32

CharNextA

gdi32

GetEnhMetaFilePaletteEntries
OffsetViewportOrgEx
GetPixel
GetDCOrgEx
MaskBlt
PtVisible
ScaleViewportExtEx
GetDeviceCaps
LineTo
SetROP2
RectVisible
GetClipBox
LPtoDP
SetWindowExtEx
DeleteDC
SetBkMode
SelectPalette
SelectObject
SetTextColor
GetStockObject
SelectClipPath
SetBkColor
SetMapMode
GetTextMetricsA
StartPage
IntersectClipRect
MoveToEx
CreateRectRgn
DPtoLP
SetStretchBltMode
SaveDC
BitBlt
SetBrushOrgEx
PatBlt
EndPath
SetViewportOrgEx
UnrealizeObject
ExcludeClipRect
RestoreDC
DeleteObject
GetDIBColorTable
Rectangle
CreatePatternBrush
PlayEnhMetaFile
StretchBlt
GetCharWidth32A
BeginPath
CreateCompatibleBitmap
GetPaletteEntries
CreatePen
EndDoc
Chord
SetDIBColorTable
GetBrushOrgEx

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

da629f6cc85d291cfe9ec7155ed6d963

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 104KB - Virtual size: 103KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 104KB - Virtual size: 103KB

.rsrc
Size: 16KB - Virtual size: 15KB