710d0f94bdbafa9c8fea31e1cee68ec3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

710d0f94bdbafa9c8fea31e1cee68ec3
Size

138KB
MD5

710d0f94bdbafa9c8fea31e1cee68ec3
SHA1

27212dd4c3c1f3bfc824bc1396e524454f3ebbd4
SHA256

8189ce03cc9aaf3bff8a2880ec7e43809858af1e16db629b86be33d6c9557fcb
SHA512

bc4072139c9f718a6571917bc2653ca2584e964dfdb976b8bc8c0f8265d4188e5fa16f92f937cb79974177035e4fe39ba75545bb6a11dbdde455efd6e76c7117
SSDEEP

3072:EXDYgAo12dmS7WYvMiPe2cZNedRKOxycw26cXa0RDozXgn:8jZ12dt7WxiPe28Ne3jMcw2pXa0ezM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
710d0f94bdbafa9c8fea31e1cee68ec3

Files

710d0f94bdbafa9c8fea31e1cee68ec3
.exe windows:5 windows x86 arch:x86

45c625a10ac9caa53bfe4cc83aea9c85

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveInOpen
waveInGetNumDevs
waveInClose
waveInAddBuffer
waveInPrepareHeader

msimg32

TransparentBlt

kernel32

SetErrorMode
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
ExitProcess
ReadConsoleA
FreeConsole
WriteConsoleA

user32

CreateMenu
UpdateWindow
GetWindowLongA
CreateWindowExA
DefWindowProcA
EnableMenuItem
LoadMenuA

gdi32

CreateDCA
StretchBlt
SelectObject
SelectPalette
DeleteDC
DeleteObject
BitBlt
GetObjectA

comdlg32

ChooseFontA

shell32

ShellExecuteA

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ