76e1ce7af18b8f98f54cb3988c8db94d | Triage

Sharing

General

Target

76e1ce7af18b8f98f54cb3988c8db94d
Size

83KB
MD5

76e1ce7af18b8f98f54cb3988c8db94d
SHA1

48db2943fb2822dfddbfbeed303e2f495a452413
SHA256

8188477d90f37eb38fbd7cc6793d98b5498b2b33f5b0c57b0f7d9acf3531a004
SHA512

f552bced70810ff071bd23df385ac7ef92c414ef0243c260436483a35dd607fd98785311bb3c4b7281faa98224996f47a777f5bf923f9692e203a268187c8c91
SSDEEP

1536:dx2rn4QezSvEFZIn0w2nio+dU2HSZPg68z1jGlQYMlD2L:SDwjfIRC4iOkiYM1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76e1ce7af18b8f98f54cb3988c8db94d

Files

76e1ce7af18b8f98f54cb3988c8db94d
.exe windows:5 windows x86 arch:x86

6bfb3f0f133503bf4bd32b8a42283304

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
malloc
free
memcpy
rand

comctl32

ord17

kernel32

CloseHandle
CreateMutexA
CreateEventA
VirtualQuery
GetModuleHandleA
WaitForSingleObject
SetEvent

user32

TranslateAcceleratorA
TranslateMessage
LoadStringA
GetMessageA
PostMessageA
LoadAcceleratorsA
MoveWindow
SetWindowPos
CreateWindowExA
InvalidateRect
GetScrollRange
SetScrollRange
SendMessageA
GetWindowRect
SetTimer
SetWindowTextA
DispatchMessageA
ShowWindow

Exports

Exports

?GetKJglfdjglfd@@YGPAXXZ
?GetKfdsjgld@@YGPAXXZ
?GetKfdskgod@@YGPAXXZ
?GetUfidgldfgd@@YGPAXXZ
?GetWjktfdyfhm@@YGPAXXZ

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 236B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ