7fc9fb8b023192ab9d76bf2a33f611b0N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7fc9fb8b023192ab9d76bf2a33f611b0N.exe
Size

23KB
MD5

7fc9fb8b023192ab9d76bf2a33f611b0
SHA1

73b0e61bc5268ce569258322d66db6ee879a8bc3
SHA256

745911b53644ca9c66a8997eeb1fb72d3d0249d23cc3bb0cdb518dad931f0d7b
SHA512

b7ba001bcad9f79380babf0d0b267a426f0482563e678cfcbf82a84d722fd103598a204e54a94112047fedb608c67738fef8fa97e9d1c7b92803e63e339d953b
SSDEEP

192:BZcI7Ylt2OOZ98D3fLPeAxaPI+EJj/2XY81MM0LxMYjSVJaoXu+5gkqvEQS9aI5/:BikmHcGbeUI++Xh1MM0tMeSraoe++9IB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7fc9fb8b023192ab9d76bf2a33f611b0N.exe

Files

7fc9fb8b023192ab9d76bf2a33f611b0N.exe
.exe windows:4 windows x86 arch:x86

72c716384ea0a2091fb58c5c9a356b6f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
GetMessageA
DispatchMessageA
TranslateMessage
CreateWindowExA
RegisterClassExA
DefWindowProcA
SendMessageA
GetWindowRect

kernel32

GetStartupInfoA
GetModuleFileNameA
lstrcatA
CloseHandle
HeapCreate
GetModuleHandleA
HeapAlloc
GetProcessHeap
LoadLibraryA

gdi32

GetTextExtentPoint32W
SelectObject
TextOutW

comdlg32

GetSaveFileNameW
GetFileTitleW

comctl32

ord17

ole32

CoTaskMemFree
CoTaskMemAlloc

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 914B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ