7a58f6cd2f920e45d2915f0a7e234e2f | Triage

Sharing

General

Target

7a58f6cd2f920e45d2915f0a7e234e2f
Size

76KB
MD5

7a58f6cd2f920e45d2915f0a7e234e2f
SHA1

71504390314506d3b6eeff6a9ee0fe56b7956f73
SHA256

db676f17d628595ef39adb54c50762fc38f1e93e8b6a914f8579a82ac61ebeed
SHA512

e36a8972005713a0735c2b0299b8bd801fb119222eecd065a6030f8f768a3e89b80ca8643991fa32199f67dbb20ff47b62107483ea0400785cfb1cd51ed5a87c
SSDEEP

1536:NZDfrI1GhDh7l429TCrnRtfaSE55HZcIVvAv9p2D3b:rDk0p5VyRdamIVg2v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a58f6cd2f920e45d2915f0a7e234e2f

Files

7a58f6cd2f920e45d2915f0a7e234e2f
.exe windows:4 windows x86 arch:x86

048277ccad3778be0c68757c2d866eae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
GetLastError
CreateFileA
IsBadWritePtr
GetVolumeInformationA
GetComputerNameA
GetTempPathA
ExitProcess
TerminateProcess
SetProcessPriorityBoost
SetThreadPriority
GetCurrentThread
SetPriorityClass
GetCurrentProcess
GetEnvironmentVariableA
GetShortPathNameA
GetModuleFileNameA
CreateProcessA

user32

wsprintfA

shell32

ShellExecuteExA
SHChangeNotify

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle
InternetGetConnectedState

msvcrt

strncpy
atol
atoi
??3@YAXPAX@Z
strstr
??2@YAPAXI@Z
_except_handler3

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE