c7f598dea6ce741616040f5d72d6efa9

Sharing

Copy URL

Twitter E-mail

General

Target

c7f598dea6ce741616040f5d72d6efa9
Size

59KB
MD5

c7f598dea6ce741616040f5d72d6efa9
SHA1

45d9d952b8543e0d69abae5b887fecc9979dd0be
SHA256

2c41c8fdf28d02d3acd92c7effbe788f0c1f0d436b3f338c5e008cbb37b42d79
SHA512

2311c310cf0194cae70aa785162d44f0a8654a9fb8854640996b0ec34eb6cf17953661ea009a9963272b3e0a9a2855da4b90402f42fc840b0973a9745cfec9ac
SSDEEP

1536:gVQryZ8zqUV8cuz9L2aMGiD4JK/+EX6TD1sIJX+uMUfKN:CQr+8WUV7aMGi/uDqIl+udKN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7f598dea6ce741616040f5d72d6efa9

Files

c7f598dea6ce741616040f5d72d6efa9
.exe windows:4 windows x86 arch:x86

77e83bde4b458cf41c8afd2bbbe2a870

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExW
RegOpenKeyExA
RegDeleteKeyW
RegLoadKeyA
RegDeleteValueW
RegCreateKeyExA
RegOpenKeyExW
RegOpenKeyA
RegEnumKeyA
RegQueryInfoKeyA
RegQueryValueW
RegQueryValueA
RegDeleteKeyA
RegGetKeySecurity
RegEnumValueA
RegEnumValueW
RegEnumKeyW
RegQueryValueExW
RegOpenKeyW
RegReplaceKeyW
RegEnumKeyExA
RegDeleteValueA
RegReplaceKeyA
RegEnumValueA
RegEnumKeyExW
RegQueryInfoKeyW
RegCreateKeyExW
RegEnumKeyA
RegQueryValueA
RegLoadKeyA
RegReplaceKeyA
RegEnumKeyW
RegDeleteValueA
RegCreateKeyExA
RegLoadKeyW
RegOpenKeyExW
RegReplaceKeyW
RegGetKeySecurity
RegQueryInfoKeyA
RegEnumValueW
RegDeleteKeyW
RegOpenKeyA
RegDeleteKeyA
RegQueryValueExA
RegQueryValueExW
RegEnumKeyA
RegOpenKeyExW
RegEnumValueA
RegDeleteValueA
RegQueryValueW
RegEnumKeyExA
RegEnumKeyExW
RegDeleteValueW
RegOpenKeyExA
RegQueryValueExA
RegFlushKey
RegQueryValueExW
RegQueryInfoKeyW
RegLoadKeyA
RegDeleteKeyA
RegDeleteKeyW
RegEnumValueW
RegEnumKeyW
RegOpenKeyW
RegCreateKeyExA

gdi32

RestoreDC
CloseFigure
AddFontResourceA
BeginPath
GetCurrentPositionEx
ExcludeClipRect
GetBrushOrgEx
ClearBrushAttributes
SetTextColor
CreateSolidBrush
GetDCOrgEx
ExtTextOutA
DeleteDC
GetBitmapBits
BitBlt
CopyMetaFileA
ClearBitmapAttributes
GetPixel
AddFontResourceTracking
AbortPath
GetClipBox
GetBitmapBits
GetDCOrgEx
AddFontResourceExA
RestoreDC
ClearBitmapAttributes
AddFontMemResourceEx
DeleteDC
CreateSolidBrush
AbortPath
CopyMetaFileA
AddFontResourceW
BitBlt
ExtTextOutA
CloseFigure
CloseMetaFile
GetPixel
AddFontResourceA
DeleteObject
GetPixel
CancelDC
SetTextColor

comctl32

ImageList_DragMove
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_GetImageCount
ImageList_BeginDrag
ImageList_Remove
ImageList_GetImageRect
ImageList_Replace
ImageList_LoadImage
ImageList_DragLeave
ImageList_AddIcon
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_Destroy
ImageList_DrawEx
ImageList_Copy

user32

BlockInput
CopyRect
CopyImage
LoadMenuA
IsWindow
EndDialog
LoadCursorA
AppendMenuA
AppendMenuW
GetWindowTextLengthA
InsertMenuA
CopyIcon
DrawTextW
GetWindowTextA
GetCursor
DialogBoxParamA
IsMenu
CalcMenuBar
DrawIconEx
GetDlgItem
DrawTextA
GetFocus
AlignRects
GetFocus
AlignRects
CloseWindow
CalcMenuBar
DialogBoxParamA
CopyImage
LoadMenuA
AppendMenuA
DrawIcon
LoadCursorA
GetWindowTextLengthA
GetMenu
GetWindowTextA
CopyRect
InsertMenuA
IsWindow
DrawTextA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77e83bde4b458cf41c8afd2bbbe2a870

Headers

File Characteristics

Imports

advapi32

gdi32

comctl32

user32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 51KB - Virtual size: 170KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 51KB - Virtual size: 170KB