7e97e03114bfb87bcb64d3483a4f5bdbe53a79226c9dfd28722a2f9dbb724bb8

Sharing

Copy URL

Twitter E-mail

General

Target

7e97e03114bfb87bcb64d3483a4f5bdbe53a79226c9dfd28722a2f9dbb724bb8
Size

181KB
MD5

33df496316007ce3862fd133a7092e92
SHA1

edd19ad88052265317e8669b52c1ed4c85dcefa4
SHA256

7e97e03114bfb87bcb64d3483a4f5bdbe53a79226c9dfd28722a2f9dbb724bb8
SHA512

d16cbee83ceb458d9dc472c749a4181751c4903d929f4a2259a55bcb1d43a3281dba1fb247b7ff21393798ee010640432b555c7a194cb9a152008641ba135362
SSDEEP

3072:DRtYFWRN9VANwKTaVQhAaFWST7sllGP7GTmbQRN9VANwKTaVQhAaFWST7sllGP7r:NtYFWJVAXTaVQieellm77cJVAXTaVQiC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e97e03114bfb87bcb64d3483a4f5bdbe53a79226c9dfd28722a2f9dbb724bb8

Files

7e97e03114bfb87bcb64d3483a4f5bdbe53a79226c9dfd28722a2f9dbb724bb8
.exe windows:5 windows x86 arch:x86

0265ecc77d4e267ce0b942dc2dc75a3e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

api-ms-win-crt-runtime-l1-1-0

_sleep

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW

comctl32

InitCommonControlsEx

setupapi

SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList

hid

HidD_GetHidGuid
HidD_GetAttributes

kernel32

LoadResource
CreateThread
LockResource
ExitProcess
GetModuleHandleW
lstrlenW
FindResourceW
ReadFile
HeapFree
WriteFile
CreateFileW
GetLastError
CloseHandle
HeapAlloc
GetFileSize
lstrcpyW
GetTickCount
SizeofResource
HeapCreate
GetCommandLineW
Sleep
CreateMutexW
WaitForSingleObject
ReleaseMutex

user32

MessageBoxW
GetDlgItem
LoadImageW
DialogBoxParamW
SetDlgItemInt
CheckDlgButton
EndDialog
GetDlgItemInt
wsprintfW
SendDlgItemMessageW
ShowWindow
LoadStringW
SetWindowTextW
GetSystemMetrics
SendMessageW

vcruntime140

memcpy
memset

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0265ecc77d4e267ce0b942dc2dc75a3e

Headers

DLL Characteristics

File Characteristics

Imports

api-ms-win-crt-runtime-l1-1-0

advapi32

comctl32

setupapi

hid

kernel32

user32

vcruntime140

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 5KB

.rsrc Size: 170KB - Virtual size: 170KB

.reloc Size: 512B - Virtual size: 500B

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 5KB

.rsrc
Size: 170KB - Virtual size: 170KB

.reloc
Size: 512B - Virtual size: 500B