de7b88ebebf0cf21191f7089cb5ed72b

Sharing

Copy URL Twitter E-mail

General

Target

de7b88ebebf0cf21191f7089cb5ed72b
Size

250KB
MD5

de7b88ebebf0cf21191f7089cb5ed72b
SHA1

cca675d13328e29ae8c9f5be40b2072337763e3d
SHA256

d00f7c272c9c3f1e177701d3effab410e96069daa67815d76b2786cc899093eb
SHA512

49cc5ed55a6a58d64c16ddc2ba16396603c40d540a9465ebaaefe12a9db9aafe2c87dbe377904fc4470631d89becf230f5f350c8d515fdda85a7915f9ca1f832
SSDEEP

6144:UDKctYt3SRKfjx2lAI9/cbu03b4iOkWBJIVs+:SKac3hob0iskkwws+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de7b88ebebf0cf21191f7089cb5ed72b

Files

de7b88ebebf0cf21191f7089cb5ed72b
.exe windows:4 windows x86 arch:x86

7b62ff240020d15c9355ae3172a289e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GlobalAlloc
LoadLibraryA
lstrlenA
LoadResource
ExitProcess
GetVersionExA
VirtualAllocEx
GetModuleHandleA
LoadLibraryExA
LocalAlloc
GlobalDeleteAtom

oleaut32

SafeArrayGetUBound
VariantCopyInd

user32

IsWindowUnicode
CharUpperBuffA
EnumWindows
GetForegroundWindow
GetScrollInfo
MessageBoxA
SetActiveWindow
CallNextHookEx
RegisterClassA
GetWindowLongA
CheckMenuItem
GetWindowLongW
EnableScrollBar
GetMenuItemID
DrawFrameControl
SetMenu
IsZoomed
FrameRect
GetDesktopWindow
PostMessageA
CloseClipboard
PtInRect
EnumChildWindows
SetMenuItemInfoA
SetScrollInfo
GetWindowRect
TranslateMDISysAccel
BeginPaint
GetParent
DispatchMessageA
SetClipboardData
SetWindowLongA
DestroyWindow
GetKeyboardState
WindowFromPoint
GetDC
RegisterWindowMessageA
DeleteMenu
OpenClipboard
CharNextA
wsprintfA
FindWindowA
DispatchMessageW
PostQuitMessage
InsertMenuA
ActivateKeyboardLayout
SetWindowPos
EndPaint
UnregisterClassA
EmptyClipboard
TranslateMessage
FillRect
GetClipboardData
IsDialogMessageA
GetMenuState
SetCapture
CharToOemA
SetWindowLongW
DestroyIcon
GetTopWindow
MapWindowPoints
DrawAnimatedRects
GetIconInfo
GetKeyboardLayoutNameA
LoadIconA
ReleaseDC
IsWindow
DrawMenuBar
GetKeyNameTextA
AdjustWindowRectEx
MsgWaitForMultipleObjects
ScrollWindow
GetDlgItem
SetScrollPos
CreatePopupMenu
SetWindowsHookExA
GetCursor
RemovePropA
GetPropA
GetClassLongA
ShowWindow
GetMenuStringA
EnableMenuItem
DrawTextA
GetKeyboardLayout
LoadBitmapA
CharLowerA
SendMessageW
SetWindowTextA
EnableWindow
SetPropA
MapVirtualKeyA
UpdateWindow
ScreenToClient
GetSysColor
GetKeyboardType
IsRectEmpty
LoadCursorA
DrawIcon
TrackPopupMenu
GetClassNameA
DrawIconEx
GetScrollRange
ClientToScreen
SystemParametersInfoA
SetTimer
GetMenuItemCount
GetSystemMetrics
GetSystemMenu
WaitMessage
DestroyMenu
InflateRect
GetCapture
SetWindowPlacement
DefWindowProcA
SetFocus
OffsetRect
PeekMessageW
OemToCharA
GetClassInfoA
RegisterClipboardFormatA
SetForegroundWindow

Sections

CODE
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b62ff240020d15c9355ae3172a289e8

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

Sections

CODE Size: 109KB - Virtual size: 112KB

.data Size: 61KB - Virtual size: 84KB

.rdata Size: 38KB - Virtual size: 40KB

text Size: 20KB - Virtual size: 20KB

.text Size: 3KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.adata Size: 512B - Virtual size: 4KB

BSS Size: 512B - Virtual size: 4KB

.rsrc Size: 15KB - Virtual size: 16KB

CODE
Size: 109KB - Virtual size: 112KB

.data
Size: 61KB - Virtual size: 84KB

.rdata
Size: 38KB - Virtual size: 40KB

text
Size: 20KB - Virtual size: 20KB

.text
Size: 3KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.adata
Size: 512B - Virtual size: 4KB

BSS
Size: 512B - Virtual size: 4KB

.rsrc
Size: 15KB - Virtual size: 16KB