7ddc8908572da52c36f8943399adaa33 | Triage

Sharing

General

Target

7ddc8908572da52c36f8943399adaa33
Size

31KB
MD5

7ddc8908572da52c36f8943399adaa33
SHA1

784f3dfae7926965b7e9eb851f471f56796f80f4
SHA256

9c38fec943ac5403e199bdfc7ccf58ef4870986d0b1d7c539a9541c1cc09fe72
SHA512

084c75c93bb3b0e5d6152ea03bb1e3e72e7498274417122fba463895ba7be48c6e758300e1cadb80c945500d16ab8f8eced338e5e56d159c507c5cdb565323f3
SSDEEP

768:UR6e3L/tZoEzPwkzXkxB4+KK4zSLNAwhYNaPwFLFQR:URL3LMEdzWn9r5hcE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7ddc8908572da52c36f8943399adaa33

Files

7ddc8908572da52c36f8943399adaa33
.exe windows:4 windows x86 arch:x86

4f2c4f79f1f65f59aadaa1cebf63fc27

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
ExitProcess
GetStartupInfoA
SetCurrentDirectoryA
GetProcessVersion
GetMailslotInfo
_lclose
GetSystemDirectoryA
GetExitCodeThread
SetCalendarInfoA
lstrcpynA
EnumResourceTypesA
ResetEvent
GetProfileSectionW
ChangeTimerQueueTimer
GetSystemTimeAsFileTime
SetConsoleCP
GetQueuedCompletionStatus
SetThreadIdealProcessor
SetThreadLocale
MapUserPhysicalPagesScatter
DeleteTimerQueueTimer
GetPrivateProfileStringW
RemoveDirectoryA
GetProcessHeaps
GetQueuedCompletionStatus
HeapValidate
GetCurrentThread
SetConsoleInputExeNameA
CreateIoCompletionPort
CreateEventW
CreateEventA
CreateJobObjectW
QueryDosDeviceA
EnumResourceTypesA
GetTempPathW
SuspendThread
ReadFile
WriteFileEx
IsBadCodePtr

Sections

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ