7fb287569d6b79d9bd92361ea192f90e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7fb287569d6b79d9bd92361ea192f90e
Size

422KB
MD5

7fb287569d6b79d9bd92361ea192f90e
SHA1

9a13a7ae05a8929bfdbd9a8932c938975bb78e18
SHA256

c61d7f196d0f3ecd8ae5fd8afbb910d8fa04922fa70485e1c9bac3617f0f1359
SHA512

258c8955aa948bb42d42b1595ad760c657a8494d2a01a7a8d924062e0bf8b5a749d471425fe96a16fb4857229a05a674cc09976ab42f07238881846c75e70898
SSDEEP

6144:QtwM5ocFxf+LFBcHTaAtgaECowOax2bY2WNZ59Dtv50OrYfTxyxMdj2l1Eaa:QbVmL6TaAtgeowOtbYN/rqltxaa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7fb287569d6b79d9bd92361ea192f90e

Files

7fb287569d6b79d9bd92361ea192f90e
.exe windows:5 windows x86 arch:x86

2cf082f78fe51269f192ea43727c71c1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
WriteFile
CloseHandle
CreateFileA
RemoveDirectoryA
SetConsoleMode
HeapSize

advapi32

RegOpenKeyExA
ClearEventLogA
GetPrivateObjectSecurity
IsTextUnicode
LogonUserA

Sections

.ahab
Size: 34KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vyj
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zql
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nml
Size: 1024B - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE