7cd28c20b38be46fd699b0b41317a7ef60de2bf9899f46876c295d8dfa4a868c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7cd28c20b38be46fd699b0b41317a7ef60de2bf9899f46876c295d8dfa4a868c
Size

3.5MB
MD5

aed342e58f79c02ea00aec32741a84c8
SHA1

19c90b7926edc007534f8eb3fedf204580705579
SHA256

7cd28c20b38be46fd699b0b41317a7ef60de2bf9899f46876c295d8dfa4a868c
SHA512

19489749508250dce411cd3e33ae3e1c404dcd14703ee6150de98919fd878ac70e98b76279ae303e8cdecf07fbd1aa626b0d7e9bda1aa57825a8ac44a0c75ed3
SSDEEP

98304:5wqa1Ep6fAMSGdAdlG9rFm5HyIhqd4S3omJkygDVu5W4g:qqxQAE+rG9rFsHyIhqmkbJor4g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7cd28c20b38be46fd699b0b41317a7ef60de2bf9899f46876c295d8dfa4a868c

Files

7cd28c20b38be46fd699b0b41317a7ef60de2bf9899f46876c295d8dfa4a868c
.exe windows x86

c7a59fd05f02f21ff21aee5552fd5dd4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer

user32

GetMenuItemCount

gdi32

SelectPalette

winmm

midiStreamRestart

winspool.drv

ClosePrinter

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

CLSIDFromProgID

oleaut32

SafeArrayGetUBound

comctl32

ord17

ws2_32

recvfrom

comdlg32

GetFileTitleA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 2.5MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sedata
Size: 996KB - Virtual size: 996KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ