790cf77c6620534f21ae3c81a31582d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

790cf77c6620534f21ae3c81a31582d0
Size

20KB
MD5

790cf77c6620534f21ae3c81a31582d0
SHA1

e4627ea63cdcc86a3794399618ed0c614c222af4
SHA256

22a1ab4b4415218bc4b96c09a7b0b8b081277ee191293fc58e8fafaf980dc97d
SHA512

7fdd350d4822e622bb1722982743b426e6fc4125e8cfc85d463090e821fe654f537e55bb562c0945bba1d7ab33f5a1a70f83f3ac5a18d5a292ac7cf0ce4e3bda
SSDEEP

384:Eep2gH+uJgjaWAbvqWKEMoYY7eJBxO2ptlEhAWLfw0icmAck+GeIG:dp2EXQaEkwG2ptlEhvbw0ic9ckiIG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
790cf77c6620534f21ae3c81a31582d0

Files

790cf77c6620534f21ae3c81a31582d0
.exe windows:4 windows x86 arch:x86

3679d4dd411734b417eee0eea917471b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetStringTypeA
GlobalMemoryStatus
GetStdHandle
FlushFileBuffers
GetFileAttributesA
GetSystemInfo
GetCPInfo

msvcrt

malloc
wcschr
bsearch
_splitpath
strcspn
wcsncat
wcslen
_getcwd
_vsnwprintf
memcpy

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE