f7420f61aa0db0785274731272ddd2a3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f7420f61aa0db0785274731272ddd2a3
Size

103KB
MD5

f7420f61aa0db0785274731272ddd2a3
SHA1

4c0ce7396a79e45021bc72c4aea5a1d36bd470e4
SHA256

bdd5350bc66cf0ab893811b6010c30b7133be80076888500578dfdce37cacba5
SHA512

9f21f6af5465f4bd405feb47015355a958421d095ad20bbebcf5e227983909b02216dbbe5e80b1307ba26c92a931ad36fd249c10bbe1bbb62b7073204f91fd06
SSDEEP

3072:68M/Q+PADwdZRn3oDpOLc2IAlrAgkBR5:68F+ZSORlwR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7420f61aa0db0785274731272ddd2a3

Files

f7420f61aa0db0785274731272ddd2a3
.exe windows:5 windows x86 arch:x86

2d0e55dd447c0fb25bc64f3c13160b16

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetDIBitsToDevice
GetPixel
LineDDA
SetBkColor
GetTextMetricsW
GetViewportOrgEx
GetBkMode
EndPage

kernel32

GlobalGetAtomNameA
SystemTimeToFileTime
GetFileAttributesExW
CreateDirectoryW
AreFileApisANSI
QueryPerformanceCounter
LeaveCriticalSection
GetTickCount
SuspendThread
FindResourceExW
SetCommBreak
lstrcpynA
LocalUnlock

user32

CreateWindowExW
ShowCursor
MapVirtualKeyW
AdjustWindowRectEx
DestroyIcon
KillTimer
GetDlgItem
SetDlgItemInt
GetAsyncKeyState
SetCaretPos
GetLastActivePopup
ClientToScreen
GetWindowRect
AppendMenuW

Exports

Exports

?uqWCzkYdokzcKbqqqJ@@YGFEG@Z
?aUtnuzufrVWrsVxEdsO@@YGXD@Z
?kosRofblslgi@@YGFFE@Z
?hvplfWhLIIdusblKkWdye@@YGPAMK@Z
?YlknfslGjclhrFC@@YGPAXHJ@Z

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ