2c7a7daf99e1f59b7a13c0b31cfeca95 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c7a7daf99e1f59b7a13c0b31cfeca95
Size

19KB
MD5

2c7a7daf99e1f59b7a13c0b31cfeca95
SHA1

76daea1230207f2cff4fae1fd3832da52edbe647
SHA256

fb92699b6befdc6afa4333ff4af587a9d054679084a389cb0daf18d8ec518431
SHA512

849933c4b34fa07138b2f3ca70beccc02c13b49a68f70d9817d21efcb47452716abf93273415d32687e24b1d07e7f392155c920d36673e3c418ce17401edde8e
SSDEEP

384:AcHPmxF4x6VpmNUBIFbnPlWZa5tSmDNF1DIc8vVQKOKOomyclb:AcQF4xVJBSmn1UzGKeyclb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c7a7daf99e1f59b7a13c0b31cfeca95

Files

2c7a7daf99e1f59b7a13c0b31cfeca95
.dll windows:4 windows x86 arch:x86

bcca1b9627f38e37ed7f7b358871c1a7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpynA
FreeLibrary
GetProcessHeap
GlobalAlloc
CreateEventA
GetFileAttributesA
lstrcatA
MultiByteToWideChar
GetProcAddress
SetFileAttributesA
GlobalFree
GetModuleHandleA
CloseHandle
lstrcpyA
SetFilePointer
RtlUnwind
lstrcmpA
CreateFileA

user32

EndPaint
DestroyWindow
GetWindowRect
GetFocus
GetClientRect
SendMessageA
RegisterWindowMessageA
SetWindowLongA
MessageBoxA
GetWindowLongA
CreateWindowExA
GetDlgItem
ShowWindow
CreateWindowExW
IsWindowVisible
SetWindowTextA
EnableWindow
CallWindowProcA
SetDlgItemTextA
wsprintfA

advapi32

RegQueryValueExA
RegCloseKey

wininet

InternetConnectA

Exports

Exports

food
grab
plum

Sections

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ