c7e0dd475dd96a97d87046798ababf3b

General

Target

c7e0dd475dd96a97d87046798ababf3b
Size

41KB
MD5

c7e0dd475dd96a97d87046798ababf3b
SHA1

96534d9d46761214d09e8d76596a4191cc319624
SHA256

c23c70f6a869efaad46a75ad79a1489e442753951284003ad95c2a2512c3620d
SHA512

91fc1102440ee000cabf9e8b98fad00508a6ff44b26f544274d6be0757e6d3f5b962670f9ba6c5f0fb7cc05d2646f961a07b1c2ae29a80f74d5b49990020b89e
SSDEEP

768:FtKTiej5JPDaU0F10ZH5w5FQXhvB4KPeXlKmR8K1+/hMtS1MUUp7nj:FtKTiedJ+DbUwfQXhS3lKq1aMYiZ7j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7e0dd475dd96a97d87046798ababf3b

Files

c7e0dd475dd96a97d87046798ababf3b
.exe windows:4 windows x86 arch:x86

8586d6d2828046f464513ad1ed7127c8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBA
DebugActiveProcess
DisconnectNamedPipe
ExitProcess
GetCPInfo
GetCommandLineA
GetEnvironmentStringsW
GetStartupInfoW
GetStringTypeExW
GetSystemTime
GetThreadPriority
IsBadHugeReadPtr
LocalLock
MoveFileA
OpenProfileUserMapping
PostQueuedCompletionStatus
ReadConsoleOutputCharacterW
ResetWriteWatch
RtlFillMemory
SetCommBreak
lstrcatW
lstrcmpW

user32

AttachThreadInput
CharLowerW
CharPrevW
CloseDesktop
DdeConnectList
DrawAnimatedRects
EnumDesktopsA
FreeDDElParam
GetKeyboardState
GetMenuCheckMarkDimensions
GetMenuContextHelpId
GetProcessDefaultLayout
GetTabbedTextExtentW
GetUpdateRgn
GetUserObjectInformationW
KillTimer
MessageBoxIndirectW
MsgWaitForMultipleObjectsEx
OemToCharW
PostMessageA
SendDlgItemMessageW
SendNotifyMessageA
SetDebugErrorLevel
SetPropW
SetRectEmpty
SetScrollPos
SetShellWindow
SubtractRect

gdi32

ChoosePixelFormat
CreateMetaFileA
CreatePolyPolygonRgn
CreatePolygonRgn
Ellipse
EndDoc
EnumObjects
EqualRgn
FlattenPath
GetArcDirection
GetCharABCWidthsFloatA
GetEnhMetaFileW
GetObjectA
GetPixel
GetRegionData
GetSystemPaletteEntries
RectInRegion
SetFontEnumeration
SetGraphicsMode
SetMapperFlags
SetPixel
SetStretchBltMode
StartDocW

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8586d6d2828046f464513ad1ed7127c8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 40KB - Virtual size: 44KB

.idata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 40KB - Virtual size: 44KB

.idata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 8KB