7a54ff65625c472016b01bff349d8dd9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a54ff65625c472016b01bff349d8dd9
Size

42KB
MD5

7a54ff65625c472016b01bff349d8dd9
SHA1

911b580a7057807229f9bbe43ed6efa4e03a3b9b
SHA256

650a62747b8d9bc36ff9f01baeb861c9e2958f872f7fd0847bebed05c76c6e20
SHA512

cd73af287c5902798966d6b9ee03c9dbe343c7673cdfa25971a2a9956226c4a318737b39d256f1a5bdb7ae49e7642fcb65f0221a281a1f447566e92efcc07c63
SSDEEP

96:hIQNlq0AmQ2a2jFf/qFtTaLCCf2taD1+F+nQ:ZNUrSaBb22CFD14+nQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a54ff65625c472016b01bff349d8dd9

Files

7a54ff65625c472016b01bff349d8dd9
.exe windows:4 windows x86 arch:x86

85773a17eac8d4a521b00d2cca9b9ac3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetDC

kernel32

CreateThread
ExitProcess
GetLastError
GetTickCount
Sleep
WaitForSingleObject

gdi32

EnumFontsA

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ