7044e5bda930c28863de9f4cc26a1cfc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7044e5bda930c28863de9f4cc26a1cfc
Size

753KB
MD5

7044e5bda930c28863de9f4cc26a1cfc
SHA1

eab3bf7e4c3b0dd8292f28a9d8cf38cbb949c945
SHA256

45d323c93885f389c9aa68569e071bc050ab050fc0be583438bf35dc4d501f04
SHA512

1195821af7a91f415389f20b8e84b4eab5c57ef8038616abb10d2a79e7598c067e7756c4eb2bd7145ada9621cf06a16a19cbc6b6b1c9fd279db1031b5f5b94b9
SSDEEP

12288:y8bbUfgSt+grPMbX5H+B/x0V7wz/Rfck4FZF6giz0EJARiB0Zq8+B5v8Yf:Hb2r+g7U+ZldklFCf0ABh7vV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7044e5bda930c28863de9f4cc26a1cfc

Files

7044e5bda930c28863de9f4cc26a1cfc
.exe windows:4 windows x86 arch:x86

da9230dcf2760759829d8203d3d121c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
SuspendThread
CloseHandle
OpenThread
ReleaseMutex
SetEvent
GetTickCount
GetModuleHandleA
OpenEventW
FindClose
FindResourceExA
CloseHandle
GetFileAttributesA
HeapCreate
GetEnvironmentVariableW
HeapDestroy
GetStartupInfoA
GetCommandLineW
WriteConsoleA
ExitProcess

user32

IsZoomed
GetClassInfoA
GetIconInfo
FindWindowA
SetFocus
PeekMessageA
GetWindowLongA
DispatchMessageA
DispatchMessageA
CreateIcon
CallWindowProcW
GetSysColor
GetKeyState

htui

HTUI_ColorAdjustment
HTUI_ColorAdjustment
HTUI_ColorAdjustment
HTUI_ColorAdjustment

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 744KB - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ