7e537987e2af06cd4e552d95b74bfea5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7e537987e2af06cd4e552d95b74bfea5
Size

60KB
MD5

7e537987e2af06cd4e552d95b74bfea5
SHA1

01a8bf1b6d39b94a5fefbf00292660427080f2d0
SHA256

2c13aec5eb9e6ab46ddf8b17afc39e96a2fead81dc09d829d94e703842ba16df
SHA512

887d440d36ee57290505e824b8e48178d801ca3d231b898cf9928642037e7c73cb9b69f4fa2110a34d14f94549a07eb8d52f1cce2f25958f2d40b4de09a3f4e5
SSDEEP

1536:Ov1rmZ7AIs6t0m0DcxDUCPHzQ801YicF3z:Ov1rgsQL0Dcx4C08MYicF3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e537987e2af06cd4e552d95b74bfea5

Files

7e537987e2af06cd4e552d95b74bfea5
.exe windows:4 windows x86 arch:x86

3b7f7e1cdd32a9e37e37f1bb212e775a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CommConfigDialogW
ExitProcess
InitializeCriticalSection
OpenMutexA
RequestDeviceWakeup
SetThreadIdealProcessor
WideCharToMultiByte

advapi32

AccessCheckAndAuditAlarmW
ConvertSecurityDescriptorToAccessW
CryptSignHashW
GetServiceDisplayNameA
ImpersonateNamedPipeClient
InitializeAcl
IsValidAcl
LookupPrivilegeDisplayNameW
LookupPrivilegeNameW
QueryServiceLockStatusA
RegQueryInfoKeyW
RegSetValueExA
SetEntriesInAclA
SetNamedSecurityInfoA

user32

DdeGetData
DrawMenuBarTemp
EnumDisplayMonitors
GetCaretBlinkTime
GetDialogBaseUnits
GetPropA
IsDlgButtonChecked
MonitorFromRect
SetDebugErrorLevel
SetDeskWallpaper
SetKeyboardState

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE