715e87d7c0f0df7aa08f7e39db2e7d91 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

715e87d7c0f0df7aa08f7e39db2e7d91
Size

114KB
MD5

715e87d7c0f0df7aa08f7e39db2e7d91
SHA1

cc032b53910b6b690daf85bf6256c09830a13e89
SHA256

067d81e49d6e93dd8321e1e10121c05e633550c795263d04ab0780f8d8259159
SHA512

0346fac8d24e59e463075e6e579d628803081b14ee32e56d8ec11d8edab8b851dfcdd43bd24d388d5d5143b984c20cc600a42882268b088144c405b6e784dc1a
SSDEEP

3072:CA6XT6/hxDNOV845n2ThWsNexPnCrnS5n2ThWsNexPnCrnqa3zNCEd:xlpxxrOnkP+6bwnkP+6bJDIEd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
715e87d7c0f0df7aa08f7e39db2e7d91

Files

715e87d7c0f0df7aa08f7e39db2e7d91
.exe windows:4 windows x86 arch:x86

c72c5fc18a5ee468e2525198089c797b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumCalendarInfoExA
GetCurrencyFormatA
GetAtomNameA
WriteProfileSectionA
GetPrivateProfileStringW
GetProfileSectionW
FindFirstChangeNotificationA
GetShortPathNameA

user32

RegisterClassA
GetPropA
CharLowerW
SetUserObjectInformationA
ModifyMenuW
DialogBoxIndirectParamW
EnumDisplaySettingsW
EnumWindowStationsA
CharUpperBuffW

gdi32

TextOutA
GetEnhMetaFileDescriptionA
CreateEnhMetaFileW
GetOutlineTextMetricsA

Sections

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.��
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fasm
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 745B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ