7b8be4a8a9fa746e0e11c66a2c14acc5c0632083b2de6e0d32eca77e8ca34e8cN

Sharing

Copy URL Twitter E-mail

General

Target

7b8be4a8a9fa746e0e11c66a2c14acc5c0632083b2de6e0d32eca77e8ca34e8cN
Size

543KB
MD5

297d414d9aaf2814db80c737085bc530
SHA1

3b4d507c60d2f7b3695b842a85ebead0a64ebb01
SHA256

7b8be4a8a9fa746e0e11c66a2c14acc5c0632083b2de6e0d32eca77e8ca34e8c
SHA512

55820dbf22d91e6d9e0cc8f36afc80ac4d9d3aeb886942de926a919c9348a5513cef00be142abd5917711a7d186560774af2f6e4b8f3a296d259d99fe1ae3167
SSDEEP

6144:WyqbcAxjgdWb5pdawnM+RBYkZOdyrpuZj4lEAUBQe312AdevnIJwVfTSkKSZzE:xrAxqWRBPZnrSj1AUBQC4UGn6mSkbZz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b8be4a8a9fa746e0e11c66a2c14acc5c0632083b2de6e0d32eca77e8ca34e8cN

Files

7b8be4a8a9fa746e0e11c66a2c14acc5c0632083b2de6e0d32eca77e8ca34e8cN
.exe windows:5 windows x86 arch:x86

84ff21e732670fa0aab256bc5cf139eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocString
VariantInit
VariantClear

kernel32

IsDebuggerPresent
VirtualAlloc
Sleep
VirtualFree
UnmapViewOfFile
GetVersion
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCommandLineA
HeapSize
GetCPInfo
LockResource
GetEnvironmentStrings
RemoveDirectoryA
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
lstrlenA
HeapCreate
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateFileW
GetProcAddress
FindNextFileA
CreateFileMappingA
CompareStringA
FindFirstFileA
GetProcessHeap
GetSystemInfo
GlobalLock
DeleteFileW
GetWindowsDirectoryA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
SetHandleCount
EnterCriticalSection
HeapFree
InterlockedIncrement
GetCurrentThreadId
SetEndOfFile
GetConsoleMode
GlobalAlloc
WriteConsoleA
TerminateProcess
SetUnhandledExceptionFilter
SetFilePointer
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
GetPrivateProfileStringA
GetModuleFileNameA
HeapAlloc
GetModuleFileNameW
SetLastError
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
LocalFree
FreeLibrary
GetStringTypeW
HeapReAlloc
SetStdHandle
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
GetTempPathA
FreeEnvironmentStringsW
GetLocaleInfoA
GetCurrentDirectoryA
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
SetEvent
GetFileAttributesA
GetConsoleOutputCP
GetStdHandle
GetCurrentProcess
GetEnvironmentVariableA
GetVersionExA
RtlUnwind

user32

SetCursor
GetClientRect
SendMessageA
InvalidateRect
EnableMenuItem
EndDialog
GetDesktopWindow
LoadCursorA
CheckMenuItem
SetWindowTextA
SetWindowLongA
PostMessageA
GetWindowRect
GetSystemMetrics
KillTimer
SetTimer
IsIconic
TranslateMessage
EnableWindow
ShowWindow
GetParent
GetMessageA
ReleaseDC
GetCursorPos
GetDC
DispatchMessageA
IsWindow
LoadBitmapA
PostQuitMessage
SetForegroundWindow

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 518KB - Virtual size: 517KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84ff21e732670fa0aab256bc5cf139eb

Headers

File Characteristics

Imports

oleaut32

kernel32

user32

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 518KB - Virtual size: 517KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 518KB - Virtual size: 517KB

.rsrc
Size: 3KB - Virtual size: 2KB