7daaffb98aeac0f094b76490a67c8391 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7daaffb98aeac0f094b76490a67c8391
Size

178KB
MD5

7daaffb98aeac0f094b76490a67c8391
SHA1

2e7b0446390075b2100391d8b1bb28ac8c4ce3be
SHA256

35e688f9157845d83ca696323b1f820ccce861e21459c57651ddd6925d119eef
SHA512

3f38c8d0a84c254687d127073c7b2e823532b0c7b24e7b335c7824e93076bd1c089cc92c6f44b1036357d4dcccbf1fd2fc7ea9650006fd2508114ef9ffab617a
SSDEEP

3072:j/S9C9WNcCakEWpbH9z9A0TMyxJpv/8xBC0JTYBnbmRiWUA6:j/SiCRvpDZ9AKM62BC2TYRbOLU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7daaffb98aeac0f094b76490a67c8391

Files

7daaffb98aeac0f094b76490a67c8391
.exe windows:4 windows x86 arch:x86

9d676c2d5325cb4d9647c596780d6372

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
LoadCursorW
ClipCursor
IsWindow
GetFocus
TrackPopupMenuEx
DestroyMenu
SetWindowPos
SetParent
CreatePopupMenu
RedrawWindow
GetDesktopWindow
InvalidateRect
SetCursor
PtInRect

msvfw32

ICClose
ICSendMessage
ICOpen
ICDecompress

ole32

StgCreateDocfile
StgOpenStorage

kernel32

GlobalFree
GetShortPathNameW
GetModuleHandleW
GetHandleInformation
GetProcAddress
CloseHandle
UnhandledExceptionFilter
EnumResourceTypesW
ExitProcess
LoadLibraryW
CreateFileW
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetVersionExW

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ