c7dc0f4a8f7670871e35822b02148104 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c7dc0f4a8f7670871e35822b02148104
Size

72KB
MD5

c7dc0f4a8f7670871e35822b02148104
SHA1

bd4add6d930ca80238d405eb99c454780582bffb
SHA256

063e21b3901ae665c6c2b6122262a7b528f3fdbaac2ab95d1ece54140a07db77
SHA512

96f1ebd871727f35c63e0d9753bc839f33b754a92cf87331ec0393e945581a5d1099db48b4dbb746bd478d62d8a98d2ede4a176836d07fc0858aeb8eddb07140
SSDEEP

1536:XDwgRxzHIVjcT1da8LuwygZxtNSq+8KHn0Kpf+jhOG:XDwaucT3IwyG7MvtHhmoG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7dc0f4a8f7670871e35822b02148104

Files

c7dc0f4a8f7670871e35822b02148104
.exe windows:4 windows x86 arch:x86

24c232389f26d381d464c9b6bd4714d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawMenuBar
DrawCaption
DestroyMenu
DestroyCaret
CreatePopupMenu
CreateIconFromResourceEx
CreateIcon
CreateDialogIndirectParamA
CreateCursor
CreateAcceleratorTableA
CopyImage
CloseWindow
CharUpperBuffA
CharToOemBuffA
CharToOemA
CharPrevA
ChangeMenuA
ActivateKeyboardLayout

kernel32

CloseHandle
lstrlenA
lstrcmpiA
lstrcmpA
VirtualFree
TlsGetValue
TlsFree
Sleep
ReadFile
OpenFile
InitializeCriticalSection
GetTimeFormatA
GetLastError
GetFileSize
GetCommandLineA
ExitThread
EnumResourceNamesA
EnumResourceLanguagesW
EnumResourceLanguagesA

Sections

.text
Size: 21KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ