77ce4ba2a605e22b8699eef874d075fb585d259ed6cade2e503e6dbf58020aa0 | Triage

Sharing

General

Target

77ce4ba2a605e22b8699eef874d075fb585d259ed6cade2e503e6dbf58020aa0
Size

360KB
MD5

71e065f64eb3b10a2ab2b629e3ff1cae
SHA1

3128f4a4300ec4abe10705cce1a96aefb6357b7d
SHA256

77ce4ba2a605e22b8699eef874d075fb585d259ed6cade2e503e6dbf58020aa0
SHA512

db576a9f0a44aa29255765d07039846524d4677a2961fd72491438ff2c7934ec040671a20f165145e5a4f350b664cf2eec890bfa60b9073c3cae9fa4cb3e588a
SSDEEP

6144:wixQaGdfsLdRwQEVaMrfwRqzncxjd7DeDCnMozfEFfuhP9y8XUmz+s3:bxakLEVHrfJnuC0HtowVV3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77ce4ba2a605e22b8699eef874d075fb585d259ed6cade2e503e6dbf58020aa0

Files

77ce4ba2a605e22b8699eef874d075fb585d259ed6cade2e503e6dbf58020aa0
.exe windows:4 windows x86

b5d348112c66c85f9bc3ae497b9c44bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imagehlp

ImageDirectoryEntryToData
SymLoadModule

winmm

mmioOpenA
waveInReset
waveInGetDevCapsW
waveInMessage
waveInGetID

urlmon

CopyStgMedium
CoInternetQueryInfo
CreateAsyncBindCtxEx
HlinkGoBack

shlwapi

StrToIntA
PathIsPrefixA
StrPBrkA
PathRemoveFileSpecA
PathRenameExtensionA

imm32

ImmGetContext
ImmGetIMEFileNameA

user32

RegisterClipboardFormatW
PtInRect

rasapi32

RasDialW
RasEditPhonebookEntryA

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 487KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 200KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ