76601422f1b0c23f64d80171640430a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76601422f1b0c23f64d80171640430a7
Size

111KB
MD5

76601422f1b0c23f64d80171640430a7
SHA1

baafd13f0cd634ecd46f2e401091d7794b1cbd37
SHA256

e9e4915e13dc456157810779f17f8832f3a4571da379d35b99ebb76d1c943cd8
SHA512

9ca033eb252df8c11484084500c20a65f36ad0051141b322712c07ff2ea6c1f56efda5ce1bc466e8b313a5b8b27cc7f83c979b799a5f460853c1d21ee3ae8fbb
SSDEEP

1536:sizssYKmhP++lJ9tunSQsFNx5Im0jbku/NPkUO2uAjYq4NeH3i6EHAK/CP0o:fq+MKSQsXx5Im0/NVPpduAKN/CP0o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76601422f1b0c23f64d80171640430a7

Files

76601422f1b0c23f64d80171640430a7
.exe windows:5 windows x86 arch:x86

481f3527e651f3fb00ca5104e69790c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetMapMode
CreateFontIndirectA
GetClipBox
SaveDC
RectVisible
CreateSolidBrush
CreateCompatibleDC
SetTextAlign
GetDeviceCaps
SetTextColor
RestoreDC
LineTo
DeleteObject
SetStretchBltMode
SelectPalette
SelectObject
GetPixel
GetStockObject
DeleteDC
CreatePalette

kernel32

GetWindowsDirectoryA
GetCommandLineA
RemoveDirectoryA
lstrlenA
QueryPerformanceCounter
lstrcmpiW
lstrlenW
GlobalFindAtomA
GetModuleHandleA
lstrcmpA
DeleteFileA
CopyFileA
lstrcmpiA
RemoveDirectoryW
FindClose
GetSystemTime
VirtualAlloc
VirtualFree

user32

CharNextA
TranslateMessage
GetSystemMetrics
GetParent
GetDC
GetDesktopWindow

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ