7fc89be0989e74a9e6618e1059810df8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7fc89be0989e74a9e6618e1059810df8
Size

83KB
MD5

7fc89be0989e74a9e6618e1059810df8
SHA1

fad2f38d81fa16d7e9bbec4ff735bcc29310de19
SHA256

593f94000d72c95037991aa0a6ff72a1148ff93b9ddcfcd58b8b81865e2650be
SHA512

a043b896dcc03ffa9ff7c0f222070ec39481e43518cecfe10e08d62338c63efa0c3d0071e779ace13fe6c26035bd128bc7a7572e334b17356a38b5a1fce9bcfc
SSDEEP

1536:3VjYGUytOM9zm74j2Dskd6B8VFE1R9qCNG4SV/FSk+BeLq1jEErxTWDTMqhGKYIy:lj0AkE8zEUCNGN/M5BGq1jBkMqhGKZTE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7fc89be0989e74a9e6618e1059810df8

Files

7fc89be0989e74a9e6618e1059810df8
.exe windows:4 windows x86 arch:x86

9df3990f1ffdbd2034f06bae1461c3bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceNamesW
GetDiskFreeSpaceExA
DeleteAtom
LocalFlags
DeviceIoControl
CallNamedPipeW
EnumTimeFormatsA
GetComputerNameA
lstrcat
EndUpdateResourceW
CreateConsoleScreenBuffer
MoveFileExW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE