0ef72593892b331be3cd062eb980f37c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ef72593892b331be3cd062eb980f37c
Size

28KB
MD5

0ef72593892b331be3cd062eb980f37c
SHA1

2c877d439905343ada8b3f66738299d8817fda20
SHA256

ed08d2b5ee7d96602d88988ee07d066afbb56c6a928c9b87ad08e272b92b4091
SHA512

a97c359f6a6eae8b50ba4e3860a630b98ce93db9beb16ead8289b865a1df3c1c6797fb5a586e9b3bfaa2c49f92278595df535a2147fc89d01148f06433539cb9
SSDEEP

768:+YVGbjkJyxRYm3krRhXnWzCcAdnNhGxlveFKZ76gqQN:rVGcJywm3AvL1v66lg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ef72593892b331be3cd062eb980f37c

Files

0ef72593892b331be3cd062eb980f37c
.exe windows:4 windows x86 arch:x86

97e7596b77aff9a369e995ac7a543332

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
CreateWaitableTimerA
ExitProcess
GetNamedPipeHandleStateW
GetStringTypeA
GetSystemInfo
GetSystemTimeAdjustment
GetTimeZoneInformation
QueryDosDeviceA

advapi32

AccessCheckAndAuditAlarmW
ClearEventLogW
EnumDependentServicesA
GetCurrentHwProfileW
GetLengthSid
RegEnumKeyA
RegSetValueExA
SetServiceStatus

user32

ChangeDisplaySettingsExA
FindWindowW
FlashWindowEx
GetMessageW
GetMonitorInfoA
InflateRect
OpenInputDesktop
WaitForInputIdle

Sections

.text
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE