7eef07c894804dffd6ae0737c2807b32 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7eef07c894804dffd6ae0737c2807b32
Size

244KB
MD5

7eef07c894804dffd6ae0737c2807b32
SHA1

16e97df40f6b658791cc5a760ebf051ec3893440
SHA256

421e007a4911b090e94f044bea2550672e0653a961adaca25fa1fa0cc2caeccc
SHA512

adab24647ab3c2130c5a5a1547b41016bffa0f5c4cef452eea8e40eb4fc59cbfc462350d78fed5d66927831bf74a46774f793a61a7aecf5c1b769db2f8c7c8eb
SSDEEP

3072:sXSwDNYs8mLH1UML4q5SWAoUEexx1+KgmVip/lPzGLR9bE384eBcv77N6YYQ1ca2:T+NKDGZANEMuma/kbErl8abgpSOD/Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7eef07c894804dffd6ae0737c2807b32

Files

7eef07c894804dffd6ae0737c2807b32
.dll windows:4 windows x86 arch:x86

1c366318dad7ec1eda9433b68d8132de

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA

advapi32

RegCloseKey

comctl32

ImageList_Add

gdi32

SaveDC

ole32

CoInitialize

oleaut32

VariantCopy

shell32

ShellExecuteA

user32

GetDC

version

VerQueryValueA

wsock32

send

Exports

Exports

HandleClientEvent
HandleEventHook

Sections

.text
Size: 241KB - Virtual size: 668KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE