7f9b86e791a3c8248256454e992184df | Triage

Sharing

General

Target

7f9b86e791a3c8248256454e992184df
Size

274KB
MD5

7f9b86e791a3c8248256454e992184df
SHA1

1a2d0fccffc75a51618f5b4e692c7df3bbb4f290
SHA256

783bd890b5c038a125e7cf18eea78d98e8be10848c57959a40bf784b7bf50afb
SHA512

6afa3e806a2d0e5c5d2651aba8e68c75c368fc4d234d0a3f19f48c64bb25aaeb78b54f776529d8d8eb6c7149c5394e132c2928ce0f377f07332d9a9ec295f5f8
SSDEEP

6144:ZJg/0BheMmINHr/Y0LunD6e6XdrpJzsaF9GST:nOIBr/zLunD6fXdrLpF9G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7f9b86e791a3c8248256454e992184df

Files

7f9b86e791a3c8248256454e992184df
.exe windows:4 windows x86 arch:x86

44b0ffb34b50d0264bb36448e35a9c58

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameW
GetOEMCP
GetDateFormatA
HeapSize
GetLocaleInfoA
VirtualAlloc
TlsGetValue
GetTimeFormatA
HeapReAlloc
SetFilePointer
TlsSetValue
GetConsoleOutputCP
EnumResourceTypesA
TlsAlloc
IsValidCodePage
SetStdHandle
GetCPInfo
SetThreadExecutionState
WriteConsoleA
GetACP
MultiByteToWideChar
RtlUnwind
RaiseException

rpcrt4

RpcStringFreeA

shell32

SHGetDataFromIDListW
ShellExecuteExA
SHBrowseForFolderA
DragAcceptFiles
SHGetPathFromIDListA
SHGetFileInfoA
Shell_NotifyIconA

user32

GetDesktopWindow
PeekMessageA
DispatchMessageA
CharNextA
DispatchMessageW
LoadStringA
MessageBoxA
wsprintfA

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 134KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ