7a534e60e0917b1eabb052379f7de01d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a534e60e0917b1eabb052379f7de01d
Size

116KB
MD5

7a534e60e0917b1eabb052379f7de01d
SHA1

d0a9c4b42be4072109724ae9c8b0de38bdc90242
SHA256

1ac0e3652c10e4c877c3b64723c10fc56bfb413f23e09ff65f7bd4e56a2a5a6e
SHA512

03c3abc2a0d68891b94e7b00c098ebfe209f6ddcac978593b4eb590fd17daed84c584dd36920014838846dab46513add23480ada34f9d625563315210c515766
SSDEEP

1536:sRNBQ8TSC9OMw92Qm7S3Uqsf22frFp8syu19cuOa6w8vSves83kWjHVz4SQ+u/k9:sRj7TSCz+2f2kBTfX9Ya61vSXWjWrep

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a534e60e0917b1eabb052379f7de01d

Files

7a534e60e0917b1eabb052379f7de01d
.exe windows:4 windows x86 arch:x86

09f2654ea2f6fdccb7b04613f80ad602

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetTimerQueueTimer
GetDriveTypeA
SizeofResource
GlobalFlags
GetFullPathNameA
GetCompressedFileSizeW
CreateTimerQueue
ExpandEnvironmentStringsW
GetConsoleFontInfo
GlobalGetAtomNameW
GetConsoleCommandHistoryLengthA
CloseProfileUserMapping
EraseTape
UpdateResourceA

user32

IsCharLowerA
InflateRect
GetInternalWindowPos
SetUserObjectInformationW
LoadKeyboardLayoutA
DdeQueryStringW
LockWindowStation
DlgDirListComboBoxW
DdeConnect
DdeGetQualityOfService
IsWindowVisible
RealGetWindowClass

Exports

Exports

Vtmtsoa
Ecjvgfag
Shwksmdegi

Sections

.code
Size: 12KB - Virtual size: 700KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE