05c7a01fbe0ab2d5033b53f632cdd7cc | Triage

Sharing

General

Target

05c7a01fbe0ab2d5033b53f632cdd7cc
Size

190KB
MD5

05c7a01fbe0ab2d5033b53f632cdd7cc
SHA1

f136f0218602af19f75e6cc2c4aeeb07edc6606a
SHA256

3b582f32623d5c56b22e452faf70b1f24dd65cb22a805d2df42871476e473f3b
SHA512

d9e71519c6be692c029622410996b471509b58a99ff32b2a4c7775d18836efa4fc2f70d0a85c5e3559ca8e831a523ed46837f742e901bbe3558395b7fed12610
SSDEEP

3072:OzrZwYd/2BV4jbAgL+0tPqgN2lNpc+b9DZN3QB2fm8Wc7hyiCG+WCWdUyoCQ:Ozq4/2B0hjWlNOm5fuUtCGzdUyoC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05c7a01fbe0ab2d5033b53f632cdd7cc

Files

05c7a01fbe0ab2d5033b53f632cdd7cc
.exe windows:4 windows x86 arch:x86

75de4d81a44bc6d78d7bec3a8d31aa25

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitVDM
UTRegister
SetSystemTime
ReadConsoleInputExW
CreateProcessInternalA
GetConsoleWindow
ExpandEnvironmentStringsA
GetSystemDefaultLCID
UnlockFileEx
EndUpdateResourceA
GetPrivateProfileSectionNamesW
Process32NextW

user32

DdeFreeDataHandle
DdeAbandonTransaction
GetShellWindow
DdeEnableCallback
KillTimer

shell32

SHEmptyRecycleBinW
SHGetFileInfo
InternalExtractIconListA
SHGetFileInfoA
SHGetNewLinkInfoW

Sections

CODE
Size: 9KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 177KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack32
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ