7bfc86adcf5ac8de26d587c920a40e40N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7bfc86adcf5ac8de26d587c920a40e40N.exe
Size

65KB
MD5

7bfc86adcf5ac8de26d587c920a40e40
SHA1

d0f2c4f7b3424b3c6808bac4be5de245332937a7
SHA256

6044e1e6f4aaf88c7d9de914f0acc9d1b6f0384e975885707ef515a8c11622ec
SHA512

b546f3ecb1484b7015fd99e0266ab4ccbf08a3dd98c10f9e77d7931949a6081e6d5f7483d0200b4c4386e58c61b78c668fb0226a65ce6168d8dd64d7d0936d8a
SSDEEP

1536:j7lHgnbBXX/ml5NW55mD5q3SdK5p4nOJhcF75:lAbBvmVT5qYKv4ya5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7bfc86adcf5ac8de26d587c920a40e40N.exe

Files

7bfc86adcf5ac8de26d587c920a40e40N.exe
.exe windows:4 windows x86 arch:x86

0c144496adf6d6951a8195019d714846

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateFileA
CreateMutexA
CreateProcessA
DeleteFileA
ExitProcess
GetModuleFileNameA
GetProcessHeap
HeapAlloc
ReadFile
SetFileAttributesA
SetFilePointer
WriteFile

Sections

.text
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE