b7f875754b9b344a1ecb1dfc57bd01b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b7f875754b9b344a1ecb1dfc57bd01b4
Size

60KB
MD5

b7f875754b9b344a1ecb1dfc57bd01b4
SHA1

5f1c9395f6aa52ee34894ee81d59f570654900c9
SHA256

e62dfb96ae5d2b92a9a8305833e84739dfea13a9277c3b91fa7473ac7db42569
SHA512

ffab42ad4ba6289451be0a50f5ee7d87b591891719c9892d55b2f8a70cc554b7705deecb082c100d59f1b87f8927a671c507b0449a0664afc80ac36f8faf09f3
SSDEEP

1536:Kf0U63tFUH09uiULdkBH/uJVHmuIeEp5ADMPl:KiFUH0siULeJ+V3c5AoPl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7f875754b9b344a1ecb1dfc57bd01b4

Files

b7f875754b9b344a1ecb1dfc57bd01b4
.exe windows:4 windows x86 arch:x86

b5b86ff3e40e48eaccdf1f4c92df6083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wvsprintfA

kernel32

GlobalAlloc
GetProcessHeap
GetThreadContext
GetCurrentThread
GetModuleHandleA
GetProcAddress
LoadLibraryA
GetCommandLineA
GlobalFree
WaitForSingleObject
CreateThread
HeapFree
HeapAlloc
GetStartupInfoA
ExitProcess

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ