6ecc53c9d4a98174028f41c1a8d376867db787147bd41ff651fdca0ad231106a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6ecc53c9d4a98174028f41c1a8d376867db787147bd41ff651fdca0ad231106a
Size

1.6MB
MD5

8a3a765abfb22b76a094aca7dd432a8f
SHA1

58c66f5005d9ca5ed66396f2fd4e44f35a7a5ed2
SHA256

6ecc53c9d4a98174028f41c1a8d376867db787147bd41ff651fdca0ad231106a
SHA512

0eade64594e940f1945cac80e488df3b9f87c8f2bcbc08631fb051c5f7d6f47dd77005e9f77ba03c1b6edfbf79e785d3c74adfb515c097b4d92496189e0530ce
SSDEEP

24576:/czPOHHaMdOjoTR7Edj3NEwNShB8A/YI8uW9XxG+2Jq+2u64OUdBcNDGPoD:/cbnMR7EVCwkYI8/9XwT1mDGPs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ecc53c9d4a98174028f41c1a8d376867db787147bd41ff651fdca0ad231106a

Files

6ecc53c9d4a98174028f41c1a8d376867db787147bd41ff651fdca0ad231106a
.exe windows:4 windows x86 arch:x86

8c7d7e87bb9572454f3bf5021fa51315

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

WSACleanup

kernel32

SetLastError

user32

GetMenu

gdi32

PtVisible

winspool.drv

OpenPrinterA

advapi32

RegQueryValueExA

shell32

ShellExecuteA

ole32

CLSIDFromString

oleaut32

LoadTypeLi

comctl32

ord17

comdlg32

ChooseColorA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 480KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ