7c9d169de97a90f50490886e26c51ee3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c9d169de97a90f50490886e26c51ee3
Size

83KB
MD5

7c9d169de97a90f50490886e26c51ee3
SHA1

4914aa144e856f2e47aab0093466d8fa2ce8efcb
SHA256

179a80e07b5d6d3353bec4534d8339ebf088c1cb0de159fe0a92a15e29c88a2a
SHA512

aac723182b8fd306539a458d742f9123630e2e362fb0aa35b042cc82b5a04ade479f1e379da44a15b9e226e10bd275373e583eadbfaeb8ba1e94bb326fcfe6ad
SSDEEP

1536:OXrZGAB3ZwivoujiEfDGy0mvgf6efldniYJ8fvEFjEErxTWDTMqhGKYIZTET8bDQ:OXrZ13ZFAuuC/IvfzniejBkMqhGKZTbY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c9d169de97a90f50490886e26c51ee3

Files

7c9d169de97a90f50490886e26c51ee3
.exe windows:4 windows x86 arch:x86

9974379589f7b8f0ef96f0e3f9cc9c3e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumberOfConsoleInputEvents
SetTapeParameters
GetProcessHandleCount
GetNumaHighestNodeNumber
BaseDumpAppcompatCache
SetConsoleFont
SetProcessPriorityBoost
CreateNamedPipeA
_hread
GetConsoleInputWaitHandle

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE