7b83566f94808730a6b99cf51af49200 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7b83566f94808730a6b99cf51af49200
Size

48KB
MD5

7b83566f94808730a6b99cf51af49200
SHA1

a171befbb62fbfb09564b7c31c9fa34b1a494178
SHA256

96707b136fc422cb3365762324da4719063d02fbf2d78c58d33e888d1a7f0024
SHA512

33b4380cd1efc3f6f2b716d48156ac439bb7d1d965937efb7dcde69eda76ba0317395257e3704b9f63fdb0b2a8049c9d1c30570e6f388202f793fea2b114d1bb
SSDEEP

768:TIxqdAeuPE2mbP9GeB2i7cJdRx/Y2yqS8LNgOk+Oc1M+A8C8xwUACzfpx:TII96AlbB29J/lYzygEC61zfpx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b83566f94808730a6b99cf51af49200

Files

7b83566f94808730a6b99cf51af49200
.exe windows:4 windows x86 arch:x86

dea91e8448f038f16c318ee96324ddd0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetACP
GetEnvironmentStringsA
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetSystemDirectoryA
GetTickCount
HeapAlloc
HeapCreate
HeapSize
LeaveCriticalSection
ReadProcessMemory
TlsFree
lstrcatA
lstrcmpiA
lstrlenA

msvcrt

wcscpy
__p__commode
__set_app_type
exit
free
strspn
wcscat
wcscmp

user32

DestroyWindow
GetDesktopWindow
GetSubMenu
RemoveMenu
DeferWindowPos

oleaut32

ClearCustData
SafeArrayDestroy
OleIconToCursor

shlwapi

SHDeleteEmptyKeyA
PathFileExistsA
PathBuildRootA
SHOpenRegStreamA
SHSetValueA
PathGetCharTypeA
PathGetDriveNumberA
StrChrA

Sections

.text
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ