6223498f57b85ba467d1438f20e394bd35a00b6ec0b606df3e713dee5a82f138 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6223498f57b85ba467d1438f20e394bd35a00b6ec0b606df3e713dee5a82f138
Size

37KB
MD5

6a841a6e000cbf00bc7395bc15c2a5c6
SHA1

49f6d23b0a6ce07ae23fac5c3d6827961cce28f7
SHA256

6223498f57b85ba467d1438f20e394bd35a00b6ec0b606df3e713dee5a82f138
SHA512

d5776516d570c50bcf73084a4e432680899ff36b53cd36f20e0d88565dc65639fb58fa20f4abb9df25e738791783050fce47e523af47b904b56714f4243645a7
SSDEEP

768:xhw1Y4kFbGDQa6db+yHD17d5N07ePGHYWf0upjlU/GzU:xdFaDSdb+AD1Rdw4upjG/gU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6223498f57b85ba467d1438f20e394bd35a00b6ec0b606df3e713dee5a82f138

Files

6223498f57b85ba467d1438f20e394bd35a00b6ec0b606df3e713dee5a82f138
.dll windows x86

d15c96e985cc117cd92a49ea87ffa53b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

winmm

timeGetTime

mfc42

ord818

msvcrt

??1type_info@@UAE@XZ

user32

GetCapture

gdi32

GetTextMetricsA

comctl32

_TrackMouseEvent

ole32

CreateStreamOnHGlobal

olepro32

ord251

oleaut32

SysFreeString

gdiplus

GdipGetImageHeight

msvcp60

?length@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ

Exports

Exports

CreateVideoWindow
ReleaseVideoWindow

Sections

.text
Size: 29KB - Virtual size: 792KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE