7b79f13b70df799cc3576f89faf6e9da | Triage

Sharing

General

Target

7b79f13b70df799cc3576f89faf6e9da
Size

29KB
MD5

7b79f13b70df799cc3576f89faf6e9da
SHA1

de22b6e7b91913b9e9b8d0450a80b7d82f39d72e
SHA256

37307cda4f08a2a3040eaa4a83ad0089b3da16db0ca21d21a8487e4e453c7fc3
SHA512

088ff08d1df279e4db8406d87f3737108c46188d1d23fd8827fb5e77755ac97d1e5c6d85252e916eca1a294dc04391582806f2b0988973b46c87325a9ddb287d
SSDEEP

768:Trb4W0t2DjMruAWvJmuJq1HbOHs8M4D46Tufhfxnv6d5Cr:Pb4MjRAWvbcbOe4cdhJnvQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b79f13b70df799cc3576f89faf6e9da

Files

7b79f13b70df799cc3576f89faf6e9da
.exe windows:4 windows x86 arch:x86

d98c9c9bd53ab567c283f2a882473cd0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyW
SetConsoleTitleW
DeleteCriticalSection
GetFileTime
SetTapeParameters
GetConsoleAliasExesLengthW
ReadConsoleOutputCharacterA
InterlockedDecrement
FindClose
WriteConsoleInputVDMA
OpenEventA
RegisterConsoleIME
ConsoleMenuControl
CancelDeviceWakeupRequest
SetConsoleDisplayMode
GetConsoleAliasExesLengthW
SetEvent
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

.code
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ