7796dcad037acfb91543055ca4dc45ff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7796dcad037acfb91543055ca4dc45ff
Size

81KB
MD5

7796dcad037acfb91543055ca4dc45ff
SHA1

dcfeca36e6c76507313a3ba1d0debe79fe441e35
SHA256

f85fa5075e14cc2cb19423f625bd26ccd11c6132eaf224f69bbe95251783b584
SHA512

89b71b7a77df44a6600b074dea3e3ec4aca6c76394229c3c3d2eece55e3bbf2cd7038bf6ffb63ce11d42cbdb542c9fca5ebafe382f657669ad9dda8ffa3ef98f
SSDEEP

1536:8GiiyZ4oW+DCWWo5BjgkVUFh8FrG9FtfBRh0/2lEet7zdyboKCFnP19Qm6z:8GV+DCno5SP0ifFBR2/0E+3KCFnPXz6z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7796dcad037acfb91543055ca4dc45ff

Files

7796dcad037acfb91543055ca4dc45ff
.exe windows:4 windows x86 arch:x86

91cc1697e7e4defdc3e89d1eb93d0b01

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
__getmainargs
_initterm
cos
towupper
_vsnwprintf
__set_app_type
_exit
exit
__setusermatherr
free
_XcptFilter
_acmdln
_except_handler3
_adjust_fdiv
__p__commode
__p__fmode

kernel32

GetStartupInfoA
VirtualProtect
GetModuleHandleA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ