02c76067cb10513d1fa6c6a39c64de3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02c76067cb10513d1fa6c6a39c64de3b
Size

352KB
MD5

02c76067cb10513d1fa6c6a39c64de3b
SHA1

fbe6585664647146ddb2733c5439f5a9396d3e32
SHA256

15f120659593d6825d049e78bd2a1488469983fe0de4ac94cda9461ca125c3fb
SHA512

26aa139968e43fe07f303717c6a9be2d6388d156ba59be8bb2a5fcb93e515dfa212227aefa53af13681ff3a17a7bf3f726fb4dc8f2c322597492f178839358f9
SSDEEP

6144:q/V6Jo5NwnH6HyfH8oFvkq5HRjgWeSiQ6pdKKZL512MqNm:Go+3wHgkkqgRSihd9+Nm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02c76067cb10513d1fa6c6a39c64de3b

Files

02c76067cb10513d1fa6c6a39c64de3b
.exe windows:4 windows x86 arch:x86

99d400b4059140240feb38c46e4624b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetProcAddress
VirtualAlloc
GetSystemTime
GetModuleHandleA
InterlockedExchange
GetLastError
DeleteFileA
CreateFileA
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
WriteFile
RtlUnwind
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeW

user32

LoadIconA
LoadStringA

ole32

CoCreateInstance

msvfw32

DrawDibEnd

winmm

mixerSetControlDetails
waveInClose

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 280KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ