76bb6cc49263398b5294085a66b0b44fa27ca93d4726771de17115dac9b48364

Sharing

Copy URL Twitter E-mail

General

Target

76bb6cc49263398b5294085a66b0b44fa27ca93d4726771de17115dac9b48364
Size

12.2MB
MD5

e7a9781fdbec1b8f475deed781843ab8
SHA1

a4b4bbf9b76d2cd3ce55342bb04009db496c60e9
SHA256

76bb6cc49263398b5294085a66b0b44fa27ca93d4726771de17115dac9b48364
SHA512

0a94cd76ddca94f273012612305c79c11977c3877a915b3727cc060a9925483efa64638e4c76549a847472430c0de2e3dbd1c235dff83a05db530875b466a787
SSDEEP

393216:J9tTSSwKrMkwWbdcOkeGIvT5nfJ13KhKYZJWn:JHSSlMkbbJhlfJNK0YZg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76bb6cc49263398b5294085a66b0b44fa27ca93d4726771de17115dac9b48364

Files

76bb6cc49263398b5294085a66b0b44fa27ca93d4726771de17115dac9b48364
.exe windows:5 windows x86

4e563ca9bf72d813a1b1c2e69a783f73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetVersionExA
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

LoadIconA
CharUpperBuffW

gdi32

GetTextMetricsA

winmm

waveOutRestart

winspool.drv

OpenPrinterA

advapi32

RegOpenKeyExA

shell32

ShellExecuteA

ole32

CLSIDFromString

oleaut32

UnRegisterTypeLi

comctl32

ord17

ws2_32

inet_ntoa

comdlg32

ChooseColorA

Sections

.text
Size: - Virtual size: 594KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 5.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.d.G
Size: - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.v {
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.9q(
Size: 11.9MB - Virtual size: 11.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 284KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e563ca9bf72d813a1b1c2e69a783f73

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

ws2_32

comdlg32

Sections

.text Size: - Virtual size: 594KB

.rdata Size: - Virtual size: 5.7MB

.data Size: - Virtual size: 235KB

.d.G Size: - Virtual size: 3.7MB

.v { Size: 4KB - Virtual size: 2KB

.9q( Size: 11.9MB - Virtual size: 11.9MB

.rsrc Size: 284KB - Virtual size: 280KB

.text
Size: - Virtual size: 594KB

.rdata
Size: - Virtual size: 5.7MB

.data
Size: - Virtual size: 235KB

.d.G
Size: - Virtual size: 3.7MB

.v {
Size: 4KB - Virtual size: 2KB

.9q(
Size: 11.9MB - Virtual size: 11.9MB

.rsrc
Size: 284KB - Virtual size: 280KB