077b60cdf2b0921ebbf56d0dfa22eaf5 | Triage

Sharing

General

Target

077b60cdf2b0921ebbf56d0dfa22eaf5
Size

196KB
MD5

077b60cdf2b0921ebbf56d0dfa22eaf5
SHA1

e1e4fa74323d4711d64ce55f199134c0711f44f4
SHA256

e9805ae348252170f2737bcfbb1a78b36fd48aa4179f85a841d14c5df3528b55
SHA512

3ac27a58457ab4d4d13d0047e92ebfde2711a2ebba336cae6eefa9975eef05827bea4682da00797f1c5728642f2ba80e2278178917ddcdbb9686b495f3331988
SSDEEP

3072:A221r53eBs9hu/cdUb/VjV/iadyYA50a8zeRkgFcb0CLt72:A2GrxeB0MVZV/iaE0aieRkgFcB7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
077b60cdf2b0921ebbf56d0dfa22eaf5

Files

077b60cdf2b0921ebbf56d0dfa22eaf5
.exe windows:4 windows x86 arch:x86

9d6e565fa06ac019bb1cda2e593a64b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
CharNextA
GetDesktopWindow
GetSystemMetrics

kernel32

lstrlenA
GetModuleHandleW
GetLastError
MulDiv
IsDebuggerPresent
GlobalFindAtomW
DeleteFileA
GetUserDefaultLangID
lstrcmpiW
GetACP
GetCurrentProcess
GetTickCount
GetOEMCP
lstrcmpA
DeleteFileW
SetLastError
QueryPerformanceCounter
GetModuleHandleA
GetCommandLineW
GetCurrentThread
LoadLibraryW
lstrlenW
GlobalFindAtomA
GetDriveTypeA
lstrcmpiA
GetStartupInfoA
GetCurrentThreadId
GetVersion
Sleep
GetThreadLocale
VirtualAlloc
GetProcessHeap
GetCurrentProcessId
GetWindowsDirectoryA
RemoveDirectoryA
GetConsoleOutputCP
GetCommandLineA
CopyFileA
SetCurrentDirectoryA

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ