7c9128dcd26d3843b5873e88d5e89fb3 | Triage

Sharing

General

Target

7c9128dcd26d3843b5873e88d5e89fb3
Size

96KB
MD5

7c9128dcd26d3843b5873e88d5e89fb3
SHA1

700a1ca5b4f45705040df1f89f4e8c6f953a1417
SHA256

cabdfb40a8dea797f7f5a411cc79c13544b9939ba804320db7b62452d0e2094c
SHA512

7aa42f81917a40249f5503626b767be6f91fbebe1e7fc1f46931cd68f4ee99c790c1f5129cca1f2a7bba4a1b253118280be48cea7f615d6332a5a1bdf87cc5e4
SSDEEP

1536:MJqnHMlnKUVzLa6X4XnFM8shgkc+6ynxCnDGAoultPPdQSCqW47Em:MJqHMBjhLHXMnFM88g3ynW3ouvPOSR7F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c9128dcd26d3843b5873e88d5e89fb3

Files

7c9128dcd26d3843b5873e88d5e89fb3
.exe windows:4 windows x86 arch:x86

8797c171c71f7867bbc324764b4ee6c6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
CloseHandle
GetConsoleKeyboardLayoutNameA
GetSystemPowerStatus
GetConsoleAliasesA
InterlockedExchangeAdd
GetAtomNameA
GetDevicePowerState
MapUserPhysicalPages
GetThreadTimes
GlobalSize
SetTapeParameters
GetCommModemStatus
SetUnhandledExceptionFilter
ClearCommBreak
GetCommandLineA
GetStartupInfoA
ExitProcess
CreateConsoleScreenBuffer
GetDiskFreeSpaceExA
ResumeThread
VDMOperationStarted
lstrcmpA
EnumUILanguagesA
RegisterWowExec
GetCPInfo
lstrcpyA
GetCompressedFileSizeA
VirtualLock
SetWaitableTimer
HeapCompact
SetConsoleLocalEUDC
GetMailslotInfo

Sections

.itext
Size: 4KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.date
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIJUNLI
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA