7e4741da6e611aec63c695b1e14969e3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7e4741da6e611aec63c695b1e14969e3
Size

43KB
MD5

7e4741da6e611aec63c695b1e14969e3
SHA1

97c44ceeb621bd9fbc038a24530862bacd4f6766
SHA256

c261a3daae6ebf5a62f842279d69143a12c1aa5ddabda0f9da60e7b6c4e0b4b6
SHA512

9d9eafbe2353e83ffc62893a16e478f054f1b1d72cce1c1b0213fc749e7f9584b4bc384780d1ce9c3b90bedc10810bc3331a1c92ad80ef8a2985c4221eb38d57
SSDEEP

768:qElWBL62yxn9RvlvW7tuwo79xF6CN5SEzqyosY27PT/HTRMMiPc7swJq0Z7h/W5:qECkn9RYtuwMDXYQPT/HNTiPcK+hO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e4741da6e611aec63c695b1e14969e3

Files

7e4741da6e611aec63c695b1e14969e3
.exe windows:5 windows x86 arch:x86

f5aca924e47863d6748ef1a00b61b986

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
FindFirstFileW
GetDriveTypeW
SetFileTime
lstrcpynW
GetCurrentThread
ExpandEnvironmentStringsW
DisconnectNamedPipe
UnmapViewOfFile
lstrcatW
lstrlenA
lstrcmpiA
GetModuleHandleA
OpenProcess
CreateProcessW
GetTempPathW
CloseHandle
GetTimeZoneInformation
GetSystemTime
SetEndOfFile
FindClose
GetCommandLineA
EnterCriticalSection
SetFileAttributesW
GetSystemTimeAsFileTime
CreateMutexW
MultiByteToWideChar
ReleaseMutex
CopyFileW
HeapFree
CreateThread

user32

PeekMessageA
MsgWaitForMultipleObjects
PeekMessageW
GetWindowThreadProcessId

Sections

.mrin
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nal
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xyzyx
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ