7a8b2e49fd3c3c8fadad68fd9508a911 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a8b2e49fd3c3c8fadad68fd9508a911
Size

5KB
MD5

7a8b2e49fd3c3c8fadad68fd9508a911
SHA1

3f14c93ecd0d30f49d8f596874069aa4635b61e1
SHA256

670ea0140509b169efa9091b3041b78ab42996add90269d7b128250dbb647f19
SHA512

dc5c505d4c54b7b5b34cb6146f0460308cabc5b9739904d4ee71a2a2f0aba24195ab3003c56921a8d7cc2dc11a3752227ee0372b71b5357d94781148db80ae0f
SSDEEP

96:f0Sv/t+fck5j3pJ2lc98b7M1MG2mwuXTsWJtRSh:f0SKXRS296+Mjmwu1l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a8b2e49fd3c3c8fadad68fd9508a911

Files

7a8b2e49fd3c3c8fadad68fd9508a911
.exe windows:4 windows x86 arch:x86

ad275baa0c9d4c53075f21182c5cc1ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CloseServiceHandle
CreateServiceA
OpenSCManagerA
RegCloseKey
RegConnectRegistryA
RegCreateKeyA
RegEnumValueA
RegQueryValueExA
RegSetValueExA
StartServiceA

kernel32

CloseHandle
CopyFileA
CreateFileA
CreateMutexA
ExitProcess
FindClose
FindFirstFileA
FindNextFileA
GetCurrentDirectoryA
GetDriveTypeA
GetEnvironmentVariableA
GetModuleFileNameA
GetSystemDirectoryA
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
OpenMutexA
ReadFile
SetCurrentDirectoryA
SetFileAttributesA
SetFilePointer
Sleep
WinExec
WriteFile
lstrcatA
lstrlenA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 994B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE