5b216bf01f29e44189a2121b7b3af7e5f984a33ab46e8730da0b8e37d7232b45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b216bf01f29e44189a2121b7b3af7e5f984a33ab46e8730da0b8e37d7232b45
Size

2.6MB
MD5

b108fba7191d7753126ce4d9a02e701a
SHA1

7ae4bdd4a3f09a0cee6d411b503bf274953570b0
SHA256

5b216bf01f29e44189a2121b7b3af7e5f984a33ab46e8730da0b8e37d7232b45
SHA512

1f1068eb6a1f44b27cd10d2fd0c710070db2e3b0b54295537e1391187ba2564287c518838a3d09e6d19e324d09282e550a36a8697b2a78452a20cc76382bd46c
SSDEEP

49152:yyUXc3joxWpm1zAkAuAJ/vO2zTEWoOfBFfA3bU4usZxhhEsIPPKY2b:yXXcUxMm1kZuuvFkOfBFf4FbeKY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b216bf01f29e44189a2121b7b3af7e5f984a33ab46e8730da0b8e37d7232b45

Files

5b216bf01f29e44189a2121b7b3af7e5f984a33ab46e8730da0b8e37d7232b45
.exe windows:4 windows x86

9d792ad5320430d443be21e6e0d0c8b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

user32

GetMenuCheckMarkDimensions

gdi32

SetWindowOrgEx

winmm

midiStreamRestart

msimg32

GradientFill

winspool.drv

ClosePrinter

comdlg32

GetFileTitleA

advapi32

RegCreateKeyExA

shell32

Shell_NotifyIconA

ole32

OleDuplicateData

oleaut32

VarDateFromStr

comctl32

ImageList_AddMasked

ws2_32

inet_addr

Sections

.text
Size: 2.6MB - Virtual size: 9.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE