7e8d0997fd2eb16c90be1722aefbb75c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7e8d0997fd2eb16c90be1722aefbb75c
Size

56KB
MD5

7e8d0997fd2eb16c90be1722aefbb75c
SHA1

8257173ea6000ae545f70456370185e17f352920
SHA256

b268ac0392e027eb7618ab23b6ecacb8cf4c796abc400f90d6ddaaf141217d94
SHA512

4f3bec071cc5c35fb614d66a244bd4062b449e751f8bc23844d7bb1baf72b8c8c81c8d2e815d60f2871451707efbc1efb0424c8b0edbcbe7aa11b84a38581c54
SSDEEP

1536:EHoXcUVUiRzcaye50V+9Ia/wxYt4HloLt:ECvzcaz50PxYx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e8d0997fd2eb16c90be1722aefbb75c

Files

7e8d0997fd2eb16c90be1722aefbb75c
.dll windows:4 windows x86 arch:x86

ae2955221fcf846322cbc470bbaa2c21

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DrawMenuBar
CreateMDIWindowA
CreateDesktopW
CreateCursor
CreateAcceleratorTableA
CharToOemBuffA
CharLowerA
BeginPaint
ActivateKeyboardLayout

kernel32

GetLastError
lstrcmpiA
lstrcmpA
lstrcatA
VirtualFree
TlsAlloc
SetLastError
SetEndOfFile
SetCurrentDirectoryA
ReadFile
EnumResourceLanguagesA
EnumResourceLanguagesW
EnumResourceNamesA
ExitThread
FindResourceA
GetLocalTime
GetStartupInfoA
GetVersionExA
LoadResource

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE