d9081f643c1c75c77606793b7cc9d895a218225ef60c8a968e206548946793f4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d9081f643c1c75c77606793b7cc9d895a218225ef60c8a968e206548946793f4
Size

263KB
MD5

a6804400795cfd875cc6cd589bc3ec47
SHA1

e719039571ffbbf64fd6a5476d22563a7927248e
SHA256

d9081f643c1c75c77606793b7cc9d895a218225ef60c8a968e206548946793f4
SHA512

071de3d4976631652c45f12c087df83d10cf3654da6f50d80ab92e8210d54b5e40b0dbb738c66c4e3d180a851ef60e434551648cb0a3cb5da706995ee85d1122
SSDEEP

6144:DgnrXf8ADGIZRb2ceFSn2HkVezR5XeqemEJ7F9QDkYYhdVsm3uLH:DgrhAhwn2FCiMF9QDOhdwLH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Keygen.exe

Files

d9081f643c1c75c77606793b7cc9d895a218225ef60c8a968e206548946793f4
.zip
Keygen.exe
.exe windows x86

9ba5fd87b12b31b5973b2ecc71bccdc1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvcrt

pow

ole32

RevokeDragDrop

gdiplus

GdipFree

user32

GetDC

gdi32

BitBlt

comctl32

InitCommonControlsEx

Sections

.MPRESS1
Size: 214KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE