7b63680df00376fbbe0a00d11dacf557 | Triage

Sharing

General

Target

7b63680df00376fbbe0a00d11dacf557
Size

142KB
MD5

7b63680df00376fbbe0a00d11dacf557
SHA1

bf430933b60e7ed63e7ae50b870e4cb1a0ad69c8
SHA256

77fee91a56af423363e9fd7b0383fb76aa14095e91d43b385b4f51ab2ddd7fc1
SHA512

2bd11e4129926bfd6c2f2d1f724f1d10471932b1180e23c8903145237dd21d975926a14bf124dbe825641603d205af8cc0558cf2f30a8268680ffc73afc27933
SSDEEP

768:xf3IEp8JRcu/1KOMcwPGxaV6rG22dnWtUB54w4jss3Ydb:FIEp8vdllxg6CvdoUBL4jl0b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b63680df00376fbbe0a00d11dacf557

Files

7b63680df00376fbbe0a00d11dacf557
.exe windows:5 windows x86 arch:x86

f571ffdc6442b66d9fa5d17895b0153b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextA
DrawTextW
EndDialog
GetCursor
GetScrollInfo
AlignRects
IsMenu

kernel32

ExitProcess

advapi32

RegEnumKeyExW
RegEnumKeyA
RegEnumKeyExA
RegQueryValueA
RegEnumValueA
RegCreateKeyExW
RegFlushKey
RegLoadKeyW

Sections

.mdkl
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.fifg
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.plicj
Size: 75KB - Virtual size: 371KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.folm
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.molac
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ