7a79df6064688bc846e936cf8e6c033e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a79df6064688bc846e936cf8e6c033e
Size

12KB
MD5

7a79df6064688bc846e936cf8e6c033e
SHA1

4a3c671c698ce7757dee92a9f0cee54e1f0688b6
SHA256

a142eb99c425edd186c05bced5dad39a0384893697f57379ba255f885691481c
SHA512

d9f949e1f79bee7856dbaf4f752267dc39309cad755bbe6bcc1fe89cd9239bf1f4f3a0b8ec3606741fa0e68fea353b833e85d505906b33e504b18f9c84244d1e
SSDEEP

96:8ynEGMtXdjCiSxjMX2pAX99TzqUsx3Vde4OQ:JnpSdjTT2pAXPTf224OQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a79df6064688bc846e936cf8e6c033e

Files

7a79df6064688bc846e936cf8e6c033e
.exe windows:4 windows x86 arch:x86

3d1a74f28558ea9d8eb482e6798f3dde

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterHotKey
DrawMenuBar

kernel32

GetLastError
SleepEx
Sleep
CreateThread
ExitProcess
QueueUserAPC

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320B - Virtual size: 278B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ