1f07b5b6aee40920b71e7bb814f78ccf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f07b5b6aee40920b71e7bb814f78ccf
Size

163KB
MD5

1f07b5b6aee40920b71e7bb814f78ccf
SHA1

e43c0589a23bfba5409f7f3b12bd35535962d3bc
SHA256

dbed2a8d5766fba664e7fde98422502faf5e12be4d415f8e6a8b3d99ade84240
SHA512

5c91ac4412631de74512d514984f95585b3c8ba0e8765d7189624fc1c43a1c0b1704cfab362800138727f27f9099be1871da4113e7bf4a24cde56adbb82fdc27
SSDEEP

3072:VE7bLMhkEUXRTAMszsW6tmfc67cW6troxFKjs5quCwuHT8dL7srl1WzlR9F3:VE7bLMCTAMsJjfP76B24A5q/HYdL7sJk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f07b5b6aee40920b71e7bb814f78ccf

Files

1f07b5b6aee40920b71e7bb814f78ccf
.exe windows:4 windows x86 arch:x86

eaab878c72e0c6e82c7b049e50c36efc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FindFirstFileW
GetStringTypeW
GetNextVDMCommand
SetErrorMode
SetThreadPriority
GetShortPathNameW
LocalFileTimeToFileTime
FindClose
SetEnvironmentVariableW
CompareStringA
FileTimeToLocalFileTime
SetCurrentDirectoryW
EnumResourceNamesW
SystemTimeToFileTime
FindResourceW
RegisterWaitForSingleObject
FileTimeToSystemTime
FreeLibrary
GetLocalTime
LoadResource
FindNextFileW
SearchPathW

user32

GetCapture
ValidateRect
SetCapture
RealGetWindowClassA
ValidateRgn
ExcludeUpdateRgn
ReleaseCapture
InvalidateRgn
GetUpdateRgn

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ