a7fec4168452118627c31b6c9492ee0d27d338598db272b1f804c8f7396cf177N

Sharing

Copy URL Twitter E-mail

General

Target

a7fec4168452118627c31b6c9492ee0d27d338598db272b1f804c8f7396cf177N
Size

128KB
MD5

24ecf2e9bbd740c9fa5173ec56a5e250
SHA1

5d340289d2a821afeeb5ba59574b151a225299df
SHA256

a7fec4168452118627c31b6c9492ee0d27d338598db272b1f804c8f7396cf177
SHA512

16cadd3c3b0cd209a825edd20e6b7c9eba9baf77de5b5146d09bc1ef52c4561bd7fec157fe44a83d3fbf5f9b83d79fd6f8b499fe04595649b04770e58595e2d6
SSDEEP

1536:J9Bu+p/WhgqilWXvLeFHzFuT6+JJi9fuZG7tILqo1b2a32bxthTRMkawq46sDEm:JpkBZX6FJuLOSwtImo1b2X7hVq4V1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7fec4168452118627c31b6c9492ee0d27d338598db272b1f804c8f7396cf177N

Files

a7fec4168452118627c31b6c9492ee0d27d338598db272b1f804c8f7396cf177N
.exe windows:4 windows x86 arch:x86

fb09de732df426e09821b5b811116083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreatePipe
SetUnhandledExceptionFilter
GlobalFree
GlobalAlloc
GlobalUnlock
InitializeCriticalSection
EnterCriticalSection
GetProfileStringW
VirtualProtect
lstrcmpA
lstrlenA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
ReadFile
SetEndOfFile
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
CreateFileA
FlushFileBuffers
SetStdHandle
RtlUnwind
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetVersion
ExitProcess
GetLastError
CloseHandle
WriteFile
TerminateProcess
GetCurrentProcess
SetFilePointer
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
UnhandledExceptionFilter
SetEnvironmentVariableA

user32

ScreenToClient
SystemParametersInfoA
FrameRect
ClientToScreen
RegisterClassExA
GetClassInfoExA
EnumWindows
CallNextHookEx
GetWindowLongA
DefWindowProcA
ReleaseDC
GetWindowRect
DialogBoxIndirectParamA
CreatePopupMenu
GetSysColorBrush
DispatchMessageA
GetForegroundWindow
CreateDialogIndirectParamA
GetWindowThreadProcessId
GetClientRect
GetWindowTextLengthA

ws2_32

WSACloseEvent
WSASocketA
WSACreateEvent
WSAConnect
WSAAddressToStringA

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 995KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb09de732df426e09821b5b811116083

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Sections

.text Size: 28KB - Virtual size: 24KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 52KB - Virtual size: 995KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 52KB - Virtual size: 995KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 3KB