c7c72cbc5b8dd89917332016ae7e1458 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c7c72cbc5b8dd89917332016ae7e1458
Size

40KB
MD5

c7c72cbc5b8dd89917332016ae7e1458
SHA1

0765d7d7f2c722472f72646a2770e85ce95f0fd7
SHA256

ae5cd0c5f1d3a3d2ada0d3ea6159b84cc8f470c756a2a46706d207167dc69dbf
SHA512

37c9353d81afd6a7b085ed265afc176dc60107c1c59e988251205f8deaf818547de484bc84383c1318b664ba870e857703004295fc2b59e010f60a50df79b009
SSDEEP

384:TU6vgSQAtikLTMISObPLbxWzJml0ifFNdUndnsybzzWYkE6nyIo59M0mFyp3jl7I:TU6dpMILP3Q6FNdUn24fD4nho59M0N7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7c72cbc5b8dd89917332016ae7e1458

Files

c7c72cbc5b8dd89917332016ae7e1458
.exe windows:4 windows x86 arch:x86

1b27ba12312563b399f6acb88a3021bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsA
lstrcatW
lstrlenW
MultiByteToWideChar
WideCharToMultiByte
WriteFile
GetStdHandle
FreeLibrary
LocalFree
FormatMessageA
LoadLibraryExA
GetStartupInfoA
HeapDestroy
GetStringTypeW
GetStringTypeA
CloseHandle
LCMapStringA
FlushFileBuffers
LCMapStringW
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
SetLastError
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetLastError
HeapCreate
VirtualFree
HeapFree
RtlUnwind
VirtualAlloc
HeapReAlloc
GetACP
SetFilePointer
GetCPInfo
LoadLibraryA
GetOEMCP
GetProcAddress
SetStdHandle

netapi32

NetGroupGetUsers
NetQueryDisplayInformation
NetLocalGroupGetMembers
NetUserGetInfo
NetUseDel
NetRemoteTOD
NetUseAdd

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE