7d031c7b922247ddd6010835e969d740N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

7d031c7b922247ddd6010835e969d740N.exe
Size

336KB
MD5

7d031c7b922247ddd6010835e969d740
SHA1

d5550709fa167a7bd783df7014f63bbd5b173da0
SHA256

171edf5db1e855de76a59f4899fdced5c6457e2a44f9f7bac410dc370d0f4578
SHA512

a17dd40d1d3ac12e39d797001ee9def2a54cd15f82e2c94c34ba7fb99891445d5d2da252ded916b72736e7c6a824b5574dab75696e1627eadd82e640e732a41c
SSDEEP

6144:h67M4fwnruflobC8d4LNN9CunoiWye95TwyfY21aWh5SzRk:h6IqrouI45PVoKe95syf/1SzR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d031c7b922247ddd6010835e969d740N.exe

Files

7d031c7b922247ddd6010835e969d740N.exe
.exe windows:4 windows x86 arch:x86

d3d3e47ec0e435425dff2f00cd2ff60b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptSetProviderExA
RegCloseKey
CryptCreateHash
RegOpenKeyA
RegCreateKeyW
RegQueryInfoKeyW
CryptEncrypt
RegRestoreKeyA
RegQueryMultipleValuesW
CryptSignHashA

user32

UnionRect
DlgDirSelectExA
TrackPopupMenuEx
GetMenuItemCount
FlashWindow
RealChildWindowFromPoint
CharPrevW
ShowScrollBar
SetProcessWindowStation
DdeDisconnectList
SetClassLongA
TileWindows
GetWindowRgn
GetCursor
ShowCaret
GetDlgItemTextW
GetMessagePos
SetMenuItemBitmaps
DdeConnect
SendDlgItemMessageA
ClientToScreen

gdi32

GetBoundsRect
GetCurrentPositionEx
GetDeviceCaps
SetTextColor
Rectangle
CreateRoundRectRgn
GdiGetBatchLimit
SetBrushOrgEx
OffsetClipRgn
GetDIBColorTable
GdiPlayJournal
RemoveFontResourceW
GetObjectW
CreateCompatibleDC
GetKerningPairsA
CreateRectRgnIndirect
GetStockObject
FixBrushOrgEx
EnumICMProfilesA
StartDocA
GetObjectType
GetCharWidth32A
ColorCorrectPalette
CreateBrushIndirect
GetGraphicsMode

shell32

SHGetDesktopFolder
SHGetFileInfoW
RealShellExecuteW
FreeIconList
SHInvokePrinterCommandA
FindExecutableA
SHGetMalloc
DoEnvironmentSubstA

kernel32

GetModuleHandleA
GetACP
CompareStringW
LCMapStringA
LCMapStringW
RtlUnwind
SetUnhandledExceptionFilter
EnumResourceTypesW
HeapSize
GetCurrentThreadId
GetProcAddress
GetProcessHeap
CreateMailslotW
GetModuleFileNameW
GetAtomNameW
GetCurrentThread
MoveFileExW
EnterCriticalSection
GetCurrentProcess
InterlockedExchange
GetEnvironmentStrings
GetStdHandle
SystemTimeToTzSpecificLocalTime
MultiByteToWideChar
OpenSemaphoreA
VirtualFree
IsValidLocale
CreateMailslotA
SetConsoleCtrlHandler
IsDebuggerPresent
SetConsoleTitleW
ExitProcess
HeapAlloc
FreeLibraryAndExitThread
GetLocaleInfoA
GetStartupInfoW
GetCurrentProcessId
CompareStringA
GetProfileIntW
Sleep
InterlockedDecrement
GetCPInfo
GetVersionExA
DeleteFiber
GetEnvironmentStringsW
HeapCreate
GetCurrencyFormatA
GetTimeZoneInformation
TerminateProcess
GetStartupInfoA
TlsFree
GetLocaleInfoW
TlsSetValue
WriteFile
GetDateFormatA
VirtualQuery
SetEnvironmentVariableA
FindResourceExA
GetCommandLineA
GetCommandLineW
GetStringTypeA
GetOEMCP
HeapReAlloc
lstrcpynA
TlsAlloc
FreeEnvironmentStringsW
LeaveCriticalSection
lstrcpy
SetHandleCount
GetSystemTimeAsFileTime
TlsGetValue
InitializeCriticalSection
SetStdHandle
GetTickCount
GetModuleFileNameA
WideCharToMultiByte
GetTimeFormatA
EnumResourceLanguagesA
EnumSystemLocalesA
InterlockedIncrement
GetFileAttributesExW
UnhandledExceptionFilter
AllocConsole
VirtualAlloc
SetComputerNameW
FreeEnvironmentStringsA
LoadLibraryA
HeapDestroy
FreeLibrary
GetFileType
QueryPerformanceCounter
DeleteCriticalSection
HeapFree
IsValidCodePage
GetStringTypeW
GetUserDefaultLCID
GetLastError
SetLastError

Sections

.text
Size: 178KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3d3e47ec0e435425dff2f00cd2ff60b

Headers

File Characteristics

Imports

advapi32

user32

gdi32

shell32

kernel32

Sections

.text Size: 178KB - Virtual size: 177KB

.data Size: 143KB - Virtual size: 142KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 178KB - Virtual size: 177KB

.data
Size: 143KB - Virtual size: 142KB

.rsrc
Size: 14KB - Virtual size: 13KB