7e4fb3ec02ef3df4d0a0dbaabd0227d3 | Triage

Sharing

General

Target

7e4fb3ec02ef3df4d0a0dbaabd0227d3
Size

174KB
MD5

7e4fb3ec02ef3df4d0a0dbaabd0227d3
SHA1

3548f53c5f3e36c4531180c794dfb09a6777afdd
SHA256

1a653948d967744652c1673300859e76bd1271d63a277ca9a2593fb36be75e95
SHA512

a238a054691fc926e0c2dc36105ae1857131bd093cb28552ac3abdf54f16d91701d7b00ef52d6b55a9d670439e09e82d32541188e65661a661519ed318817823
SSDEEP

3072:BIx1QhHA5P2WumV1F07ezcFumsqZFsVGSnAA4PBgfza3sxiFNtWhqby7NdR:BIx1QhH4HAumVZFsV55523sxiFWhqbW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e4fb3ec02ef3df4d0a0dbaabd0227d3

Files

7e4fb3ec02ef3df4d0a0dbaabd0227d3
.exe windows:4 windows x86 arch:x86

c87b892f8a261c67ab2f84f0f65646f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyA
CM_Get_DevNode_Status

user32

wsprintfW
PostThreadMessageW
CharNextA
IsWindowVisible
LoadStringA
GetMessageW
KillTimer
PeekMessageW
SetTimer
MessageBoxA
GetWindowTextA
GetWindowThreadProcessId
EnumWindows
CharUpperW
DispatchMessageA
wsprintfA

kernel32

InterlockedExchange
GlobalAddAtomW
SizeofResource
RaiseException
LoadLibraryW
GetLastError
EnumResourceNamesA
LoadResource
GetModuleHandleA
FindFirstFileW
GetCurrentDirectoryA
LocalFree
EnumResourceTypesA
EnumResourceNamesA
EnumResourceLanguagesA
GetCommandLineA
HeapAlloc
FindFirstFileA
FindNextFileW
GetProcessHeap
GlobalFree
FindResourceExA
SetLastError
LockResource
FormatMessageA
GetCurrencyFormatA
GetProcAddress
CloseHandle
HeapFree
MultiByteToWideChar
Sleep

Sections

.text
Size: 93KB - Virtual size: 485KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ