0773bdff9b52c4e33816dd04dbb0d9a21677abb955ba53ba0562613295d660ee

General

Target

0773bdff9b52c4e33816dd04dbb0d9a21677abb955ba53ba0562613295d660ee
Size

24KB
MD5

5ba48e4da205cd23c7c6e047a903771a
SHA1

f42612a1db69344ef56b6e4b2dc8ef0ecf4b7c3b
SHA256

0773bdff9b52c4e33816dd04dbb0d9a21677abb955ba53ba0562613295d660ee
SHA512

14dc59520c35e7839a55cb37409932a00c11def3ebcaf073528d8ec5b5198882f82ff00638dabedaffb0b7ed4af246fdd7fff7a58dae6f3e7625145a4b405753
SSDEEP

96:YR9brQsmZzd19ABxdOgvRfgH1pvRxZCnumAwWnyr:ObrQsmZr9ixJfgZHUNfW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0773bdff9b52c4e33816dd04dbb0d9a21677abb955ba53ba0562613295d660ee

Files

0773bdff9b52c4e33816dd04dbb0d9a21677abb955ba53ba0562613295d660ee
.dll windows:4 windows x86 arch:x86

a1312c1eeb1bab935db85bf878e5c6e5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

et199_32

ETVerifyPin
ETChangeDir
ETControl
ETOpen
ETEnum
ETExecute

mfc42

ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord3953
ord2982
ord3147
ord3259
ord4465
ord4486
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord825
ord815
ord823
ord1176
ord1575
ord1168
ord1577
ord1182
ord342
ord1243
ord1197
ord1570
ord1253
ord6375
ord4274
ord3136
ord269
ord826
ord600
ord1578
ord6467
ord1255
ord1116

msvcrt

??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
__CxxFrameHandler
rand

kernel32

LocalAlloc
LocalFree

Exports

Exports

CheckDog

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 440B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1312c1eeb1bab935db85bf878e5c6e5

Headers

File Characteristics

Imports

et199_32

mfc42

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 824B

.reloc Size: 4KB - Virtual size: 440B

.text
Size: 4KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 824B

.reloc
Size: 4KB - Virtual size: 440B