57178a1a28c418973637df4a35ebf2216394fccd333bdd30b3f5646871d66fa5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

57178a1a28c418973637df4a35ebf2216394fccd333bdd30b3f5646871d66fa5
Size

9.1MB
MD5

7e9c7adaa7767da39e794a91921a2780
SHA1

2f4d75a20300135cac5ec7f41796802ff2058ef0
SHA256

57178a1a28c418973637df4a35ebf2216394fccd333bdd30b3f5646871d66fa5
SHA512

28c99ea3a7748d143c205005645270694812c2a43a43ef1736a4a6165f8d0a3c81ce3da503147af1ae47562488bb2641aff993592df2d6f413f8671683417ec4
SSDEEP

196608:H6KiwhmBfX+/V71uXRT/1IRkJR7QH9DeDOxaVcuu6So:H6lwoBfygXRb1GS8H9DeDOscuu6So

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57178a1a28c418973637df4a35ebf2216394fccd333bdd30b3f5646871d66fa5

Files

57178a1a28c418973637df4a35ebf2216394fccd333bdd30b3f5646871d66fa5
.exe windows:4 windows x86

ab654eed828facad94d7d5e7169657c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamClose

ws2_32

ntohl

kernel32

SetLastError

user32

ScrollWindowEx

gdi32

RoundRect

winspool.drv

OpenPrinterA

comdlg32

GetFileTitleA

advapi32

RegQueryValueA

shell32

Shell_NotifyIconA

ole32

OleInitialize

oleaut32

UnRegisterTypeLi

comctl32

ord17

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 8.0MB - Virtual size: 9.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 992KB - Virtual size: 992KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ