75097ece457a1d966c411d6f2a7b945fa6c8cb22f95e63f394872d368bc228e5 | Triage

Sharing

General

Target

75097ece457a1d966c411d6f2a7b945fa6c8cb22f95e63f394872d368bc228e5
Size

1.2MB
MD5

8041f24c6dfca5242e7a7a98c34c91f4
SHA1

960b669f7fa4bd28e2c1f07e6d84c949441eb504
SHA256

75097ece457a1d966c411d6f2a7b945fa6c8cb22f95e63f394872d368bc228e5
SHA512

41e349129dc8d171905e140489b426cec949a50ede80399bd19cd407712cb0a9e5194703b4d7dadc58a40b7405f6f546565f705c322133b7ae2517154a4fac44
SSDEEP

24576:nAfjT/yriGf5t5emhtM74h16OLsC4kVzrSyovnmorhfVu+tgqIsXqA:wjTKrtxtAGtM74rVfUtvFfrxqA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75097ece457a1d966c411d6f2a7b945fa6c8cb22f95e63f394872d368bc228e5

Files

75097ece457a1d966c411d6f2a7b945fa6c8cb22f95e63f394872d368bc228e5
.exe windows x86

6560b3d336ee97385d933c4b814597a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

winmm

waveOutOpen

ws2_32

WSACleanup

user32

GetDC

gdi32

LineTo

winspool.drv

OpenPrinterA

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

OleRun

oleaut32

UnRegisterTypeLi

comctl32

ord17

comdlg32

ChooseColorA

Sections

.MPRESS1
Size: 1.2MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE