776d1e20f9976bd4626a8c1e23101e8a4e78113f2e973d9c8c4085d102e517af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

776d1e20f9976bd4626a8c1e23101e8a4e78113f2e973d9c8c4085d102e517af
Size

890KB
MD5

daf19a4fc95e115dd4288fc37aa5e115
SHA1

06e43abbbebb0ed6200b12c686b3f79c46b79c28
SHA256

776d1e20f9976bd4626a8c1e23101e8a4e78113f2e973d9c8c4085d102e517af
SHA512

82f0e000c282e5dc674e9a641edd89776f5f19a13548641af0deb8c714dd04f2c1a9e89e9dd0f3e69ba2a516d486d4df71582b32d54932a9dc6be4f27db48c91
SSDEEP

24576:+KUE6cZDgOFZE0Ru3+rYVYYhqkHJItZ6D+r4Q:56cZ8n0RQ+rYVY1qIt8D+rJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
776d1e20f9976bd4626a8c1e23101e8a4e78113f2e973d9c8c4085d102e517af

Files

776d1e20f9976bd4626a8c1e23101e8a4e78113f2e973d9c8c4085d102e517af
.exe windows x86

e27e8e81eb1af862ab27cde7a0b60ebb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

winmm

midiStreamOut

ws2_32

WSACleanup

user32

SetFocus

gdi32

ExtSelectClipRgn

winspool.drv

OpenPrinterA

advapi32

RegOpenKeyExA

shell32

ShellExecuteA

ole32

CLSIDFromProgID

oleaut32

UnRegisterTypeLi

comctl32

ord17

comdlg32

ChooseColorA

Sections

.text
Size: 876KB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE