cb7a56809f55980410d53dd828662cadb8adf251590e9fed5fa35c09de328df8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb7a56809f55980410d53dd828662cadb8adf251590e9fed5fa35c09de328df8
Size

10.2MB
MD5

30ed5a1a6d85372610b44ff01c319c7a
SHA1

bf422d5e94274691103c70498956fd84158f932e
SHA256

cb7a56809f55980410d53dd828662cadb8adf251590e9fed5fa35c09de328df8
SHA512

bcf26ca0e68e9b32306b49b1399c97168b4bfee992835125713921dbf1b3d30c1e5bbc1aa02214a275136765ace261dc920d37014eaf3e96ec5e4e5c65189f1d
SSDEEP

196608:JFEnYV2VMcjR7FnWGumE9hP1u0y+Hw461zsZehnwe5bwsQphJNZsJ1zepPFtnoPG:JBV2CcZCmEXP1uz+Q46Zbnwi8sGDHcIZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb7a56809f55980410d53dd828662cadb8adf251590e9fed5fa35c09de328df8

Files

cb7a56809f55980410d53dd828662cadb8adf251590e9fed5fa35c09de328df8
.exe windows:4 windows x86

755c0e5fdeeb9d8da4a6e2654f186c4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

winmm

midiOutPrepareHeader

ws2_32

closesocket

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

user32

GetSysColorBrush

gdi32

CreateDCA

winspool.drv

DocumentPropertiesA

comdlg32

GetSaveFileNameA

advapi32

RegCreateKeyExA

shell32

ShellExecuteA

ole32

CoRevokeClassObject

oleaut32

SafeArrayUnaccessData

comctl32

ImageList_Read

oledlg

ord8

Sections

.text
Size: 3.6MB - Virtual size: 24.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE