7cd55034ff5d1e2df89bd73a5932be64 | Triage

Sharing

General

Target

7cd55034ff5d1e2df89bd73a5932be64
Size

273KB
MD5

7cd55034ff5d1e2df89bd73a5932be64
SHA1

fd58a718a577f0a7ffa0de8e007fb46924f0c9b3
SHA256

7f1dbd1ab13ec74156ef70f3665694e72f610284211c7dddc9a77b88edd6f1cf
SHA512

e9d072fb18143509be224edccc138d1daf04452731e483dc07047b225b3cad6160d00f1e5a35dc494a6524f80614d413fd70ad8d7d1dd0f1d89476152fa6055f
SSDEEP

6144:NMolPxxSIRDjXjoLZrMFUjGWmbuYyGyQ2Mpya34E7csdran4B:NRxRxjzoxqUauL7M3F7ldranO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7cd55034ff5d1e2df89bd73a5932be64

Files

7cd55034ff5d1e2df89bd73a5932be64
.exe windows:4 windows x86 arch:x86

5f08b04066ba83740e438e13cd65fd8d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatA
GlobalGetAtomNameW
GetLocaleInfoA
HeapReAlloc
SetFilePointer
IsValidCodePage
GetACP
GetOEMCP
WriteConsoleA
SetStdHandle
MultiByteToWideChar
EnumResourceTypesA
HeapSize
GetConsoleOutputCP
VirtualAlloc
GetCPInfo
TlsSetValue
SetThreadLocale
GetTimeFormatA
TlsGetValue
TlsAlloc
RtlUnwind
RaiseException

rpcrt4

RpcStringFreeA

user32

DispatchMessageA
PeekMessageA
DispatchMessageW
GetDesktopWindow
MessageBoxA
LoadStringA
CharNextA
wsprintfA

shell32

SHGetDataFromIDListW
SHBrowseForFolderA
DragAcceptFiles
ShellExecuteExA
SHGetPathFromIDListA
SHGetFileInfoA
Shell_NotifyIconA

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 134KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ