5ee2fbc65e310e1d3341538aa51e40fd47b9f3b69516de9aa7b3ae483e4b97b1 | Triage

Sharing

General

Target

5ee2fbc65e310e1d3341538aa51e40fd47b9f3b69516de9aa7b3ae483e4b97b1
Size

1.2MB
MD5

cbe892f871d3dedaa5b4720e4db3114d
SHA1

e17c9850b9a4a2d78b1ac11747989592f50468c7
SHA256

5ee2fbc65e310e1d3341538aa51e40fd47b9f3b69516de9aa7b3ae483e4b97b1
SHA512

549b737c685b373a3405cf298d1ea32c9b3e0e99e24628810a2e9bbe6d564d7e28fe3d831c8155260403f565e4c6b983628f41a979e89930979b806a78f4ef34
SSDEEP

24576:Y4lk9PBdkvK5u0PdnNMiGRuOLz98/cZan4D/ZtQ7tNg9hVu72YH6:6dkvK5zNMimuC8/cZcKZ8tKHVu77H6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ee2fbc65e310e1d3341538aa51e40fd47b9f3b69516de9aa7b3ae483e4b97b1

Files

5ee2fbc65e310e1d3341538aa51e40fd47b9f3b69516de9aa7b3ae483e4b97b1
.exe windows x86

efabbc75a6445136f9c3983eaff9c04a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

RegisterClassA

gdi32

SelectClipRgn

winmm

midiStreamRestart

winspool.drv

ClosePrinter

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

OleInitialize

oleaut32

UnRegisterTypeLi

comctl32

ImageList_Destroy

ws2_32

recvfrom

comdlg32

GetFileTitleA

Sections

.text
Size: 375KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 189KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE