7f1dfd4331868f44c39944ada1df5b47be8a3cd10a370ee85a42071326871daa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f1dfd4331868f44c39944ada1df5b47be8a3cd10a370ee85a42071326871daa
Size

120KB
MD5

ccb064cf0600ac9ba8f1624177d95ef7
SHA1

1d10c13e1032c40fecf5ad9cbe7503aef3ba7871
SHA256

7f1dfd4331868f44c39944ada1df5b47be8a3cd10a370ee85a42071326871daa
SHA512

2d4dff5ee6f7ec6424a272fe70297ca01f7c62d7843f671ede75597e0660a303a719ae4b83a31be6b331a2011b3d4d2c5df08bc3481330d99bda021aa3beabb4
SSDEEP

1536:3vy+WR6Jw2KGLIOl+KNbxDj+bStY6Wgk/L3eg+99OG5u1nJvGfq7T8MopV:a+WEW2KlZGVf+boogEezw31sGm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7f1dfd4331868f44c39944ada1df5b47be8a3cd10a370ee85a42071326871daa

Files

7f1dfd4331868f44c39944ada1df5b47be8a3cd10a370ee85a42071326871daa
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ