78c62eafccf28af64f6f802d50aa3bfc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78c62eafccf28af64f6f802d50aa3bfc
Size

7KB
MD5

78c62eafccf28af64f6f802d50aa3bfc
SHA1

8a3807c1a18c8b712f9d9ac00800fe11d03be5d5
SHA256

f0057884f37c7acb97324e3b8b5e69a16fc3bdcd698f04671a13bd82992d166d
SHA512

0a776eca6e8e35cc82b6cbf7a659ac768d206f5001d5798c57b6a707d9e91246e7fc7863bd9dfa49158fabec8941ee5bfb1af8b34fea2a95b6c09794177ac183
SSDEEP

96:vmNcDHboH2PQ/2XhJI6Dfxe56ytHRVhdkwF0jWzOltsEQ+cn:vmcO8Q/khJfDfxw6ixTdky+WzO/lQ+cn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78c62eafccf28af64f6f802d50aa3bfc

Files

78c62eafccf28af64f6f802d50aa3bfc
.exe windows:1 windows x86 arch:x86

0ca762f79921e1aff395df7fe9cc5197

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
ExitProcess
ExpandEnvironmentStringsA
FreeLibrary
GetCommandLineA
GetExitCodeThread
GetFileAttributesA
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetSystemDefaultLCID
GetSystemDefaultLangID
GetSystemDirectoryA
CloseHandle
GetTempPathA
HeapAlloc
LoadLibraryA
CopyFileA
LocalAlloc
LocalFree
QueryPerformanceCounter
RtlUnwind
RtlZeroMemory
CreateFileA
SetFilePointer
VerLanguageNameA
WaitForSingleObject
WriteFile
CreateProcessA
CreateThread

user32

LoadCursorA
LoadIconA
GetMessageA
TranslateMessage
DispatchMessageA
wsprintfA
RegisterClassA
CreateWindowExA
DefWindowProcA

advapi32

RegFlushKey
RegOpenKeyExA
RegSetValueExA

crtdll

__GetMainArgs
_sleep
_stricmp
exit
raise
signal
strchr

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 448B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE