7a5262c1ed49812fb4492b417405838d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a5262c1ed49812fb4492b417405838d
Size

26KB
MD5

7a5262c1ed49812fb4492b417405838d
SHA1

a32512d913e862f81060fd058e5d2707d8d4ddfc
SHA256

364b7708b8062f2a10d2877eba42ce17b0dbd5a1957d03ef6da9b3851a6e0def
SHA512

6c03ffdea1f70ab0e794cc86ba5a6c7826758646554c4461e551863e54202cbfdb65914e94284cadd0c0633f20c937acc02472571bd6c538a33bff01dd1b46da
SSDEEP

384:Tbwty1xCNbpFNrH6LqIOGaYd3PeP86VhTgJ4KqPY8dXBG3Xf7cNuZczroS2MM:TbWPHcL/d3PeLhTkqA8bG3db3M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a5262c1ed49812fb4492b417405838d

Files

7a5262c1ed49812fb4492b417405838d
.exe windows:4 windows x86 arch:x86

029a2ed68fd773b10a828c7d160e6f29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

bind
WSAStartup
listen

kernel32

CreatePipe
TerminateProcess
ExitProcess

gdi32

SetRelAbs
StretchBlt
SetICMMode
ResetDCW
UpdateColors
SaveDC
TextOutW
SetDIBColorTable

shell32

SHAppBarMessage
StrRChrIW
StrStrIW

Sections

.flat
Size: 9KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE