7d7d90ca3d347671783fcc2cba3a7078 | Triage

Sharing

General

Target

7d7d90ca3d347671783fcc2cba3a7078
Size

184KB
MD5

7d7d90ca3d347671783fcc2cba3a7078
SHA1

f3ccd008dcc6525dbf8b331212b1b68d4e1b6056
SHA256

d0057df0cd13877defd02490ec9b4558458533dec39fb4d34c7b5ab5a3b1a08f
SHA512

03fd3913375802884047a6cfbdbcc8e19842fc70d797c7b09f19734b00588db2237789937e568a9d5b4211db332598f347e40a93f52121a4a515e701f24bcac3
SSDEEP

3072:5bTkHUZ4AgcaEM8FrrOovKei+LhNnGGlCVRTkwIOSHNr8lr2bj6:dkHUZ4eJrOovKT+LhlGWITkF8lr2bj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d7d90ca3d347671783fcc2cba3a7078

Files

7d7d90ca3d347671783fcc2cba3a7078
.exe windows:22874 windows x86 arch:x86

c92717e1a0f84195e7f97615fbef32c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetCurrentProcess
GetACP
GetACP
GetACP
GetACP
GetModuleHandleW
MultiByteToWideChar
SetUnhandledExceptionFilter
VirtualFree
GetCommandLineW
GetCommandLineW
MultiByteToWideChar
GetTickCount
LocalFree
lstrlenW
VirtualAlloc
LoadLibraryA
VirtualAlloc
GetModuleHandleA
LocalFree
ExitProcess
SetEvent
VirtualFree

gdi32

CreateCompatibleDC
LineTo
SelectObject
GetObjectW
GetTextExtentPoint32W

user32

GetDC
LoadIconW
PostMessageW
SetTimer
UpdateLayeredWindow
GetDlgItem
GetDlgItem
ReleaseDC
GetDC
CreateWindowExW
ShowWindow
SetTimer
GetMessageW
SendMessageW
GetDC
GetSystemMetrics
PostMessageW

advapi32

RegDeleteValueW
RegOpenKeyW
RegQueryInfoKeyW
AdjustTokenPrivileges

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 164KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ