db340bf2db8f016c38cb605dd4c96a4d6a717edff16fcea2c2ffc0ec9437e90e | Triage

Sharing

General

Target

db340bf2db8f016c38cb605dd4c96a4d6a717edff16fcea2c2ffc0ec9437e90e
Size

1017KB
MD5

981dc7c0b64961041178f246e6dfb808
SHA1

e6ebeb98b97af549858ee8c85021133717982ec4
SHA256

db340bf2db8f016c38cb605dd4c96a4d6a717edff16fcea2c2ffc0ec9437e90e
SHA512

c66cd75dbb47d697565ee4696ce29c0e7de3f43f74cbd9121a57aeb55993f3bdafb263d8ba1514a7e5d343bd4abc971469dbce982d66d45d5cfe91872f109070
SSDEEP

12288:sduZT5KX4dZM3Em2uUxxtuOVjCmIV4vhxpxZper9MO1GXO9ogc07jRHZ3Q0J0pV/:2w1o4dqDItn2m5vlaiOc/f0vRHZR0pV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db340bf2db8f016c38cb605dd4c96a4d6a717edff16fcea2c2ffc0ec9437e90e

Files

db340bf2db8f016c38cb605dd4c96a4d6a717edff16fcea2c2ffc0ec9437e90e
.exe windows x86

137502e6ee460d28a90d85262621e376

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

dinput8

DirectInput8Create

ddraw

DirectDrawCreateEx

dsound

ord11

avifil32

AVIFileRelease

winmm

waveInClose

opengl32

wglMakeCurrent

user32

SetCapture

gdi32

GetTextExtentPoint32A

shell32

DragQueryFileA

comdlg32

GetSaveFileNameA

shlwapi

SHDeleteKeyA

advapi32

RegCloseKey

oleaut32

SysFreeString

msvcp100

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

msvcr100

_exit

Sections

.text
Size: 727KB - Virtual size: 96.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 288KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE