7d07b9aa1369f0b2082d9b1878efb5a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7d07b9aa1369f0b2082d9b1878efb5a9
Size

159KB
MD5

7d07b9aa1369f0b2082d9b1878efb5a9
SHA1

0b6e1f8764a97d4262ec28880f685de491501b72
SHA256

e805197111e1626c4523b0c96852947c2efa05b248005ec15cdee1650397ea45
SHA512

5e9ecfbc5406f838c9ae4b421df42c780a2cc0fe201aa85aed3e74a55fd21b5e2cf8ac3925b54817df36f5bfa63cf81753848ee5151a4893c4431c32d4d409d9
SSDEEP

3072:NxjDKsU3NtxgHooqQyCKDU62alSLf26ZpYgoSudn3fJo4:NNOJ3bOMJPwi6A5N3Bo4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d07b9aa1369f0b2082d9b1878efb5a9

Files

7d07b9aa1369f0b2082d9b1878efb5a9
.exe windows:4 windows x86 arch:x86

4c69899d608c8ed4873caa37fdc69035

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsAlloc
GetLocaleInfoA
GlobalGetAtomNameA
GetACP
GetDateFormatA
RtlUnwind
SetFilePointer
VirtualAlloc
GetConsoleOutputCP
GetOEMCP
HeapReAlloc
EnumResourceNamesA
IsValidCodePage
HeapSize
TlsGetValue
WriteConsoleA
CreateDirectoryExA
TlsSetValue
SetStdHandle
GetCPInfo
MultiByteToWideChar
GetTimeFormatA
RaiseException

rpcrt4

RpcStringFreeA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteA
DragAcceptFiles
SHGetDesktopFolder
SHGetMalloc
SHAppBarMessage
SHBrowseForFolderA
ShellExecuteExA
SHGetFileInfoA
Shell_NotifyIconA

user32

DispatchMessageA
CharNextA
DispatchMessageW
GetDesktopWindow
PeekMessageA
MessageBoxA
LoadStringA
wsprintfA

Sections

.text
Size: 135KB - Virtual size: 266KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ