7240e869e24ab89a60e762a48e937e24 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7240e869e24ab89a60e762a48e937e24
Size

184KB
MD5

7240e869e24ab89a60e762a48e937e24
SHA1

b53b6ba0f15a7d28e37639443c78d0323f6a862d
SHA256

f607cad4792a9c3876d993ff9130976a12bf009a5f4cc32503cfb8cac6586615
SHA512

d7fbd5624ad4ec0f644ba9113fc23ff50fa7d63ad51a52af16c505ea507fd126bfc0618ae0c97c5ceafd6cdc6d7c7cb8f8bdd01b9f98bae1e0755a702eadd0d3
SSDEEP

3072:0I8V0+TP1b3UmIqmv8XMJxWOz32HDlEdrlZltZimNpoWkx:0rV0+zyWmv8cNz32Hh2l/tZFNOx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7240e869e24ab89a60e762a48e937e24

Files

7240e869e24ab89a60e762a48e937e24
.exe windows:4 windows x86 arch:x86

cc6a2bc35cbaf8ea91c26123091668b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

ICClose
ICOpen
ICSendMessage
ICDecompress

kernel32

GetCurrentThreadId
GetShortPathNameA
GetCurrentProcessId
GetModuleHandleW
GetFileInformationByHandle
GetLastError
EnumResourceTypesW
UnhandledExceptionFilter
LoadLibraryW
ExitProcess
GlobalFree
CreateFileW
GetProcAddress
CloseHandle
GetVersionExW

advapi32

RegDeleteKeyW
RegCreateKeyW
RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegEnumKeyExW
RegQueryValueExW
RegSetValueW

user32

SetRectEmpty
GetWindowPlacement
SetCursor
GetClientRect
AdjustWindowRectEx
PostMessageW
InvalidateRect
FillRect

Sections

.text
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ