7f8f5f449e5e22f2f610ea2c2ffc37b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f8f5f449e5e22f2f610ea2c2ffc37b8
Size

177KB
MD5

7f8f5f449e5e22f2f610ea2c2ffc37b8
SHA1

bfab2cb40fda1f50eea404724977dd9646a834d4
SHA256

23e6378e47fccbcfe1948a0055f74c4724c1f8c3d6c2082d060a07a69409bf38
SHA512

e445103949dc161792e4c561d0a446caae7cc93c712bbf6438f65f65b258011d2fea534b2da210a6a776b0f12640093af4bc50abde4846aada423b9ea9ec5756
SSDEEP

3072:Hr3V+JGKf8XC+i7id/ylbvskFyMfPJ8jQkVHE1XReIUyBRhe2Sp:Hj4LfImi2HJ8Ti1BeeBRhL+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7f8f5f449e5e22f2f610ea2c2ffc37b8

Files

7f8f5f449e5e22f2f610ea2c2ffc37b8
.exe windows:4 windows x86 arch:x86

73d821f4164345a8704ebc8a013e4d3a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
RaiseException
HeapFree
MultiByteToWideChar
GetStartupInfoA
InterlockedCompareExchange
GetCurrentProcessId
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
EnumSystemLanguageGroupsW
WideCharToMultiByte
LocalAlloc
GetWriteWatch
GetEnvironmentVariableA
GetCurrentThreadId
CreateProcessA
lstrlenA
InterlockedExchange
lstrlenW

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

winmm

mciSendCommandA
sndPlaySoundA

ole32

ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow

user32

ReleaseCapture
GetWindowLongA
MoveWindow
SetWindowLongA
IsWindow
SetCursor
GetDlgItem
SetWindowPos
GetWindowInfo
ReleaseDC
LoadCursorA
FillRect
GetDC
GetSysColor
SetCapture

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ