b41148efa68cc5d1ef66710272c97dbe81bb8228f69c04a7587abc175302d3e2 | Triage

Sharing

General

Target

b41148efa68cc5d1ef66710272c97dbe81bb8228f69c04a7587abc175302d3e2
Size

1.0MB
MD5

14a069ac6affce52154e10289ac2c87f
SHA1

51d77892b5d2bfcd1c2e88bd16a49760b79b55ec
SHA256

b41148efa68cc5d1ef66710272c97dbe81bb8228f69c04a7587abc175302d3e2
SHA512

bfb8ec99c7d5d75660434deff17c04001c1b29215a7153a905728f0fb4231f33fa34e89f119990cba0de9230366f0b4b5ec703e9aa011d0fb9ed5b635552fa5a
SSDEEP

24576:fkF2/pv11E0J/dWLDPwfgX7MMdy40MZnCLL4N732urq:fH6uFWPwfq7MsxvnCn4N7dq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b41148efa68cc5d1ef66710272c97dbe81bb8228f69c04a7587abc175302d3e2

Files

b41148efa68cc5d1ef66710272c97dbe81bb8228f69c04a7587abc175302d3e2
.exe windows:4 windows x86 arch:x86

edb62c33ddf74747f5972c5db0debbab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

winmm

midiStreamOut

ws2_32

htons

user32

GetWindow

gdi32

ExtSelectClipRgn

winspool.drv

OpenPrinterA

advapi32

RegOpenKeyExA

shell32

Shell_NotifyIconA

ole32

CLSIDFromProgID

oleaut32

UnRegisterTypeLi

comctl32

ord17

comdlg32

ChooseFontA

Sections

.text
Size: 1021KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE