7e9b194a84c74f318892f43539df3330N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

7e9b194a84c74f318892f43539df3330N.exe
Size

6.4MB
MD5

7e9b194a84c74f318892f43539df3330
SHA1

10902e81d6996e94207a2eeaeeb4fbc35195048e
SHA256

625f71c8921c788dc501fafe9fe34293943b827352e995f80fec9be8ee7bceb0
SHA512

ab5384d1d1bb6c175f0f6f56349a6591102cae84fe08e4fbdaf9f19c4c23aad8b456ec8ef970317343803fe09a23e9fead462b57228ab762a3d45c43183bdc6e
SSDEEP

196608:vKLKDVBmReqG8nY/Dxr8/Jjwn/9TDAqAN59XE1Pz:LDVBlsY/Dxr8/JjwnFTDApfS1P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e9b194a84c74f318892f43539df3330N.exe

Files

7e9b194a84c74f318892f43539df3330N.exe
.dll windows:6 windows x86 arch:x86

889806faca785408dc9a938eac583612

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetModuleFileNameW
WriteFile
GetStdHandle
GetOEMCP
LoadLibraryExW
IsValidCodePage
IsDebuggerPresent
GetProcessHeap
HeapSize
GetModuleHandleExW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
LCMapStringW
IsProcessorFeaturePresent
OutputDebugStringW
SetStdHandle
WriteConsoleW
ReadConsoleW
CreateFileW
GetThreadTimes
CloseHandle
CreateEventW
GetFileType
RaiseException
GetStartupInfoW
Beep
LeaveCriticalSection
GetFileAttributesA
GetSystemTimeAdjustment
CreateEventA
GetLocaleInfoW
ExitProcess
ClearCommBreak
ExpandEnvironmentStringsA
WaitForSingleObject
WaitNamedPipeA
GetCommandLineW
TlsAlloc
EnterCriticalSection
FlushFileBuffers
GetProcessTimes
SetCommTimeouts
GetCurrentProcess
GetACP
WideCharToMultiByte
DeleteCriticalSection
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
GetLastError
HeapReAlloc
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
RtlUnwind
GetCommandLineA
GetCurrentThreadId
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
TerminateProcess
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
GetProcAddress

user32

EndPaint
SetWindowRgn
SetTimer
HideCaret
GetParent
SetFocus
SetRect
UnionRect
SetScrollPos
PeekMessageA
RedrawWindow
SetMenu
RemoveMenu
MessageBoxW
SetCaretPos
SetWindowTextA
DestroyMenu
ValidateRect
TranslateMDISysAccel
ToAsciiEx
ShowOwnedPopups
PostQuitMessage
SetKeyboardState
SetCapture
DrawIconEx
MessageBeep
GetDC
OffsetRect
CheckMenuRadioItem
EnableMenuItem
DrawStateW
GetDesktopWindow
IsWindow
CheckRadioButton
InsertMenuA
CopyRect
RegisterClassA

gdi32

MoveToEx
SetWindowOrgEx
GetTextExtentPoint32A
LineTo
SetTextColor
GetCharacterPlacementW
GetDIBits
GetEnhMetaFileHeader
CreateBitmapIndirect
GetDIBColorTable
SetStretchBltMode
RectVisible
IntersectClipRect
GetPixel
TextOutA
CreateHatchBrush
CreateFontA
CopyEnhMetaFileA
GetRegionData
DeleteObject
PtInRegion
SaveDC
SetPolyFillMode
SelectPalette
GetSystemPaletteEntries
CreateEnhMetaFileW
CreateBrushIndirect

advapi32

SetSecurityDescriptorOwner
SetSecurityDescriptorDacl

Sections

.text
Size: 493KB - Virtual size: 493KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

889806faca785408dc9a938eac583612

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 493KB - Virtual size: 493KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 493KB - Virtual size: 493KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 11KB - Virtual size: 11KB