7cf597e9c18868004a54b0262a2896f4d2c7722b8df82e5a128b5a6efc460cca | Triage

Sharing

General

Target

7cf597e9c18868004a54b0262a2896f4d2c7722b8df82e5a128b5a6efc460cca
Size

120KB
MD5

61d7b04ca4fe576b36029cd0a034cd2b
SHA1

0348889892ec38f4b6a008220a73852d8d462f3c
SHA256

7cf597e9c18868004a54b0262a2896f4d2c7722b8df82e5a128b5a6efc460cca
SHA512

a65568f929023d9a7a88b1416f4af2dd1885b5485bc66f0ebf711a28fc1486a1c67628edb8a6260c132ad7b5d7e23708c33e3e623b4d733f075adffd84243967
SSDEEP

3072:vQF8O07UpxTiMd2ExYXOmLyRtj9Pm3QB:yOUpxTiM0EQSj9hB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7cf597e9c18868004a54b0262a2896f4d2c7722b8df82e5a128b5a6efc460cca

Files

7cf597e9c18868004a54b0262a2896f4d2c7722b8df82e5a128b5a6efc460cca
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ