771443f447689ff3cd7a648b15eb24c3 | Triage

Sharing

General

Target

771443f447689ff3cd7a648b15eb24c3
Size

199KB
MD5

771443f447689ff3cd7a648b15eb24c3
SHA1

1df1b6ca539261abfda07a5005821f1158dc62fe
SHA256

003fd8ad5378d0ad46a956412d226768e54424492548754a12a271c8d0882933
SHA512

fd4d94d54da0ab5225da91b0a86aff9d03655e7b0ad07ac7577f874deb9093f62ac291e85c09f27a3106901ccfeef84e4d9e3013f4519609dcb9ccdcb8a83a1e
SSDEEP

3072:t0qBn6/HBq3qAdGhS4k5p5pU4T4B+jca8Wz/9DMFIW925pOLA/hmqVvTVLC4HTkv:t9+Bq3qnop535+Wzmw5pSqpheLweV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
771443f447689ff3cd7a648b15eb24c3

Files

771443f447689ff3cd7a648b15eb24c3
.exe windows:5 windows x86 arch:x86

79c360af4a76c2eef7e51ffef10a2f8a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
WriteFile
RemoveDirectoryA
CloseHandle
GetCommandLineA
FindClose
RemoveDirectoryA
CreateDirectoryA
GetModuleFileNameA
WaitForMultipleObjects
DeleteAtom
SetVolumeLabelA
IsBadWritePtr
GetDriveTypeW
FindAtomA
GetFileType
CreateSemaphoreW
CreatePipe
ClearCommBreak
AddAtomA
GetModuleHandleA
ExitThread
HeapFree
HeapCreate
SetEndOfFile

clbcatq

CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup
CoRegCleanup

mtxdm

GetDispenserManager
GetDispenserManager
GetDispenserManager
GetDispenserManager

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE