b7af9bb81346e6ec49884bd428c61205 | Triage

Sharing

General

Target

b7af9bb81346e6ec49884bd428c61205
Size

256KB
MD5

b7af9bb81346e6ec49884bd428c61205
SHA1

12806a486ece324d3b738064c56ecac86c8bfb48
SHA256

f13b9d8ab4dbb6a2de86f71e07d770289cf46dc563acf1121cde152a62cfd8e8
SHA512

8cd2e1e66a7deb9f3f830e91a35b778a080f32a643c3fce752a8e5bbb43e7e8cd41197b5afeaf022bd52491f6452e2fc0ba8c3d51fd52b91d4448240bc9fbfd0
SSDEEP

6144:alaIPUBd42XvLYPeXdxil286CGDzy8p0I0kJDQQo54AnYy2CVM384To2:aY1B/XcRl2XD5XQQo54eF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7af9bb81346e6ec49884bd428c61205

Files

b7af9bb81346e6ec49884bd428c61205
.exe windows:4 windows x86 arch:x86

63e9c97d6be0d3c1611e711b7416e714

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
GetFileSize
GetConsoleAliasesA
VirtualUnlock
GetNumberOfConsoleMouseButtons
VirtualAlloc
GetDefaultCommConfigA
EndUpdateResourceA
lstrlenA
GetUserGeoID
GetEnvironmentVariableA
GetProcessHeaps
GetTempPathA
GetCurrentDirectoryA
HeapUnlock
OpenWaitableTimerA
SetHandleInformation
SetFileAttributesA
IsValidLocale
WideCharToMultiByte
GetSystemTimes
GetLogicalDriveStringsA
InterlockedDecrement
RemoveDirectoryA
EnumTimeFormatsA
GetConsoleAliasExesA
GetComputerNameA
GetDiskFreeSpaceExA

gdi32

SetViewportOrgEx

shell32

SHGetSpecialFolderPathA

winmm

timeGetTime
timeBeginPeriod

Sections

.idata
Size: - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 244KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ