7022e4d4e0ad4525f3eeee7161f213118a98689e796805cc78bdfc7a32b000f7

General

Target

7022e4d4e0ad4525f3eeee7161f213118a98689e796805cc78bdfc7a32b000f7
Size

48KB
MD5

be495f5fb7ae5456b860980fb3cd7213
SHA1

67cf12726a86daf3f66048c1433c167b0422a0f0
SHA256

7022e4d4e0ad4525f3eeee7161f213118a98689e796805cc78bdfc7a32b000f7
SHA512

41674cd8487a08d18560c5a88c2ecc69ec847c67ba885b25231379a4964db8f592f8a11dcd5e1c8ac8c1167057502e5bec8a9d197369d9db0023827f2bdd0792
SSDEEP

768:IQIxbu5h7cPh2T7O+b6AwlkD1NNPXkIUzyr7A8VROcy0IzJ1oLxDmQvo4RW90qiV:2bO6MfZb6FU1NdcGTROxtwDNA4kLnnG

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ac406ccbee503f767b94f5f647da303f01949d70d5bf1dc7c0d6e7078ead089b

7022e4d4e0ad4525f3eeee7161f213118a98689e796805cc78bdfc7a32b000f7
.zip

Password: infected
ac406ccbee503f767b94f5f647da303f01949d70d5bf1dc7c0d6e7078ead089b
.exe windows:5 windows x86 arch:x86

1dd146cd09def0b0026d793a959f47b0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
GetSystemDirectoryA
GetStdHandle
GetCurrentDirectoryA
GetCurrentThreadId
GetVersionExA
GetCurrentProcessId

ntdll

wcsncpy
memset

user32

GetActiveWindow
FindWindowA
GetSystemMetrics

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data32
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE