7eb0f74559609063800c0393f1a07cb1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7eb0f74559609063800c0393f1a07cb1
Size

280KB
MD5

7eb0f74559609063800c0393f1a07cb1
SHA1

f33fbad3a7bbe4caaa15ee57124c53172f3495ba
SHA256

b1b47931fb0432c9338f317295198fcf4b53bd3f808ed64065882a21e1966303
SHA512

4556fa2141c8a13604aff308d9743a521ce3a53d1ca3498270b8408433ba13b72e7358eac6b432106809ce584277daba74759d4ade3ccfb8e69429fa4378ff65
SSDEEP

6144:e0ijzKTystjpSj6o8ste8knOD9wJfOUxITjNm5TgWkw:EzKTBwOoP9oO6ZQTjwbkw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7eb0f74559609063800c0393f1a07cb1

Files

7eb0f74559609063800c0393f1a07cb1
.exe windows:4 windows x86 arch:x86

6c02861a30b2e67381804cfbfa34e707

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
GetACP
GetProfileIntA
CompareFileTime
InterlockedExchange
HeapWalk
WaitForSingleObject
FindAtomA
TlsFree
CloseHandle
TlsGetValue
LoadLibraryA
HeapReAlloc
GetTickCount
GetVersion
GetConsoleCP
GetAtomNameA
lstrlenA
GetModuleHandleA
VirtualProtect
GetStdHandle

user32

PostQuitMessage
GetKeyboardLayout
ModifyMenuA
SetWindowPos
MessageBoxA
DispatchMessageA
InflateRect
GetDlgItem
EnableScrollBar
CreateCaret
DialogBoxParamA
SubtractRect
EqualRect
GetMenu
LoadIconA
PostMessageA
PaintDesktop
ShowWindow
GetScrollRange
GetWindowTextA
CopyRect
GetMenuStringA
SetPropA
TranslateMessage
InsertMenuA
UpdateWindow
DestroyMenu
GetSubMenu

msi

MsiDoActionA
MsiEnumClientsA
MsiGetMode
MsiEnumProductsA
MsiCloseHandle

uxtheme

GetThemeBool

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ