7ddbf1861a75c969d6fe2e6dacc1f1e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7ddbf1861a75c969d6fe2e6dacc1f1e6
Size

182KB
MD5

7ddbf1861a75c969d6fe2e6dacc1f1e6
SHA1

d72a6412dd8aa370df992bf53ca77bf2d39b7b04
SHA256

3dd63d0ea783ccb7999b5f2524928fdf880182b7a3b2a727cca99e1e9cf8206c
SHA512

3d6a45b77db07a50e8e1281fa3d16d9b05ec9feb7b2e7b6b32beee39d9d91141fe22234673e395556634106a48c5f5cb95663167f7c3e88e94f4b045c0abe8ad
SSDEEP

3072:JyhTzsNpf4wXs9YbIrlm+DlMblVBBPa/mkJUl+4D6o55zAJOkMKQELNqrFRIZZE4:JyhTzk9XGvm+hMblVBBPa/2l+4D155ET

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7ddbf1861a75c969d6fe2e6dacc1f1e6

Files

7ddbf1861a75c969d6fe2e6dacc1f1e6
.exe windows:4 windows x86 arch:x86

12c55b722438da700bd84e01d4e5d8dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumSystemCodePagesA
EnumSystemCodePagesA
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

ChangeDisplaySettingsExW
CharLowerBuffA
WINNLSGetIMEHotkey
DefMDIChildProcW
ShowWindowAsync
SetWindowLongA
GetClassInfoA
DdeInitializeW
LoadMenuIndirectW
GetClipboardData
CreateWindowExW

gdi32

FillRgn
PtVisible
EnumFontFamiliesW
AbortPath
GdiConsoleTextOut
FONTOBJ_cGetGlyphs
GetCharWidthInfo
GetMapMode
EngGradientFill
PlayEnhMetaFile
bMakePathNameW
SetPaletteEntries
EndPath
EngBitBlt
GetStretchBltMode
UpdateICMRegKeyW
EngTextOut

Sections

.text
Size: 5KB - Virtual size: 809KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 172KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE