7ebaede0b472005c7f411f7f8d9317b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7ebaede0b472005c7f411f7f8d9317b8
Size

310KB
MD5

7ebaede0b472005c7f411f7f8d9317b8
SHA1

d531d709e91129ca55b175bf5fd0d7970fd9ad0d
SHA256

d47bd81d0b52f0b25b34e775e203b7c0f882a7fbcac19c995b0031f00476e175
SHA512

a5f52442112dc2e0730aa96e9602223f7b12ea275d4cc106860d8011658d2980413ec6c2d45f02773c9c40a24e46c1757181999e6a1a8a9772d436b7012584b2
SSDEEP

6144:9+uLaDUxHB7c5MY2JT9PNj4N2j3R3MFnmsx:ki1pxyi3R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7ebaede0b472005c7f411f7f8d9317b8

Files

7ebaede0b472005c7f411f7f8d9317b8
.exe windows:4 windows x86 arch:x86

ec6e5634f6c333319dc02b8eb7631cb8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateMutexA
CreateThread
GetCommandLineA
GetComputerNameA
GetCurrentThread
GetVersionExW
GlobalAlloc
GlobalFree
InitializeCriticalSection
LoadLibraryA
LocalAlloc
MulDiv
OpenEventA
ReadFile
ResumeThread
SetErrorMode
Sleep
WaitForSingleObject
WriteConsoleA
lstrcpyA
lstrcpynA
lstrlenA

user32

AppendMenuW
CopyRect
DrawFocusRect
GetClassNameW
GetForegroundWindow
GetLastActivePopup
GetSysColor
ReleaseDC
SendMessageW
SetMenuDefaultItem
SetWindowLongW
SetWindowPos

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 938B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 295KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ