tmp | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

2.8MB
MD5

6c8f3f24aff1b05e28bdc573e6a076d4
SHA1

b3e99debe7f7afcc83c91bd75be3ff8d79a5e693
SHA256

c45919c1db6068c5bc98d2b0b230602b945ef645400ce39c64238aeb456112a8
SHA512

46d0e2849e5e9a391cae7a0f9ff01fc81ceac4546ba585f30dc7df6b75815ce748de581eab9669f9569092486292b3e5bc46aa9a78e7d5f1e3a291a86345fe91
SSDEEP

49152:gBVF2CNpUGZwN0C4k/y+M5yFtPFn/hgiwMSvTGGUhhisNCB1DUdEmJc:gBKqnZB6HGy9/WeSrsjCrDnuc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tmp

Files

tmp
.exe windows:5 windows x86

6d3e0b76db728b5a14a654b4dd057907

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

soundlib

CreateSoundLib

ss3dgfunc

_COLORtoDWORD@16

wsock32

socket

dinput8

DirectInput8Create

wininet

InternetCloseHandle

kernel32

OpenProcess

user32

GetDC

gdi32

CreateDCA

advapi32

RegEnumKeyExA

shell32

ShellExecuteA

ole32

CoCreateInstance

oleaut32

SafeArrayGetDim

freeimage

_FreeImage_Load@12

msvcr100d

?terminate@@YAXXZ

winmm

timeGetTime

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.textbss
Size: 1.6MB - Virtual size: 10.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d3e0b76db728b5a14a654b4dd057907

Headers

DLL Characteristics

File Characteristics

Imports

soundlib

ss3dgfunc

wsock32

dinput8

wininet

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

freeimage

msvcr100d

winmm

msvcrt

iphlpapi

psapi

Sections

.textbss Size: 1.6MB - Virtual size: 10.5MB

.sedata Size: 1.1MB - Virtual size: 1.1MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 35KB - Virtual size: 36KB

.sedata Size: 4KB - Virtual size: 4KB

.textbss
Size: 1.6MB - Virtual size: 10.5MB

.sedata
Size: 1.1MB - Virtual size: 1.1MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 35KB - Virtual size: 36KB

.sedata
Size: 4KB - Virtual size: 4KB