fd7d3c539a0f9f2ae3aff8231aecdf13f5f7623f1a8862009386570736b3750c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd7d3c539a0f9f2ae3aff8231aecdf13f5f7623f1a8862009386570736b3750c
Size

10.7MB
MD5

dde58e044d7ccd8d889e4f3d95a9b988
SHA1

bef4af41c7f7b2bb268f0bcc5a92c8773aa62b33
SHA256

fd7d3c539a0f9f2ae3aff8231aecdf13f5f7623f1a8862009386570736b3750c
SHA512

d934277f9d2187088355df0c41db663c53ce7e6539845b4f4b99860b2ac5332b3eadf36419aa5b8c6e44293eb4be83d6b75db93508fd759b0f223b6b429e2f47
SSDEEP

196608:7iMKeSp8yuyUuK9uyqlu4cqtSYftPn4lgnPnRzo9wHsO1h8XRyrsQ2z5Hlhc1w:7iMfSpjTK95EujiSiEmZ6ysUgQ2zNlCw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd7d3c539a0f9f2ae3aff8231aecdf13f5f7623f1a8862009386570736b3750c

Files

fd7d3c539a0f9f2ae3aff8231aecdf13f5f7623f1a8862009386570736b3750c
.exe windows:4 windows x86

29264dc7f280213ceff9dfa9ab6ee25a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

user32

GetSysColorBrush

gdi32

SaveDC

winmm

midiStreamRestart

winspool.drv

ClosePrinter

comdlg32

GetFileTitleA

advapi32

RegCreateKeyExA

shell32

Shell_NotifyIconA

ole32

CoTaskMemFree

oleaut32

VariantCopy

comctl32

ImageList_ReplaceIcon

oledlg

ord8

ws2_32

recv

Sections

.text
Size: 5.5MB - Virtual size: 27.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE