5575200598c74d147c9d0972b5eafe2f3a06eea9059a020bec725dbfe0941bf6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5575200598c74d147c9d0972b5eafe2f3a06eea9059a020bec725dbfe0941bf6
Size

5.0MB
MD5

126b2758b395d793d3ff577e7201c3d7
SHA1

9a4557807b1e98aceb00365d11a90dab584fc39c
SHA256

5575200598c74d147c9d0972b5eafe2f3a06eea9059a020bec725dbfe0941bf6
SHA512

1fb83135655bf377f257635e4d11a380bcbdd778480864d98ad3ebeac11678cb0849580d288380ac64351998fcd89045430681e9351e5d26ddde13e626042689
SSDEEP

98304:7FtSbtXUrduX6+107ixmrGF74eTcNFPbk2smBSNCxDT+p+6RdvcxVGhBIk2QWxbZ:7DCkrduX72ixNF74eW2NCxDUpviVSfWX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5575200598c74d147c9d0972b5eafe2f3a06eea9059a020bec725dbfe0941bf6

Files

5575200598c74d147c9d0972b5eafe2f3a06eea9059a020bec725dbfe0941bf6
.exe windows:4 windows x86

4a1479bc72bec1ca184d9fddcfa6fc8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

iphlpapi

GetAdaptersInfo

winmm

midiOutReset

ws2_32

WSACleanup

user32

ScrollWindowEx

gdi32

RoundRect

winspool.drv

ClosePrinter

comdlg32

GetFileTitleA

advapi32

RegQueryValueA

shell32

Shell_NotifyIconA

ole32

OleInitialize

oleaut32

RegisterTypeLi

comctl32

ord17

Sections

.text
Size: 4.9MB - Virtual size: 10.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE