73dfc78650a041498651f0f98e50b229 | Triage

Sharing

General

Target

73dfc78650a041498651f0f98e50b229
Size

106KB
MD5

73dfc78650a041498651f0f98e50b229
SHA1

eaf23e756c3f9b8b21680675e6f6fc18ace261a2
SHA256

dd6554ec601dafe47716487b171549bef651817226fecc1761f8cbf8bb04b06c
SHA512

1c56bdc2ca1877a95edfb8fefa14a3e48ded936c62cf324708ba19c1d53d9f9af0f84c76ffc624698d80d92e2da9a439c43fbcd447ba14e8c0f4b7ffac44ffa2
SSDEEP

3072:LBA2mRrwJ+U8520U2qkpLtjlmliXl9mu:tmRUsU8QHDk3Xr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73dfc78650a041498651f0f98e50b229

Files

73dfc78650a041498651f0f98e50b229
.exe windows:4 windows x86 arch:x86

9ba2451cb9e91b4b1add988a572ff3bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
GetParent
GetSystemMetrics
GetDC
TranslateMessage
GetDesktopWindow

kernel32

CopyFileA
lstrcmpA
DeleteFileA
lstrlenA
lstrcmpiA
GlobalFindAtomA
GetWindowsDirectoryA
lstrlenW
GetCommandLineA
GetSystemTime
lstrcmpiW
QueryPerformanceCounter
RemoveDirectoryA
GetModuleHandleA
RemoveDirectoryW
FindClose
VirtualAlloc
VirtualFree

gdi32

DeleteObject
SetTextColor
GetObjectA
CreatePalette
GetStockObject
SelectObject
SaveDC
CreateFontIndirectA
GetPixel
GetTextMetricsA
CreateSolidBrush
RestoreDC
SetMapMode
RectVisible
DeleteDC
SetStretchBltMode
SetTextAlign
GetDeviceCaps
CreateCompatibleDC
SelectPalette
LineTo

glu32

gluNurbsCallback

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ