74d609f558dceb0ff82d24694051dee6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74d609f558dceb0ff82d24694051dee6
Size

164KB
MD5

74d609f558dceb0ff82d24694051dee6
SHA1

d6ab0bea6bc26998fb2f687a19d16f227bfbabd1
SHA256

ddb935e712865ebc4fb06613d43a889ed1648e8a4f92929c1095b3e8abc38bf9
SHA512

7e1f90eb5d99268e5c6f7c810106589ae76ec730c6641793dc9870cca334afc007ba7d1b9a5cf2e7b7f7107369d18e0123ed05c7fd971d6d774cc95c59838479
SSDEEP

3072:IhTT18pFKdhf8kSrkcodpo+fxspuurJv45ILe6LEl90y:W58nQJ8kSrkddAJrSmLe+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74d609f558dceb0ff82d24694051dee6

Files

74d609f558dceb0ff82d24694051dee6
.exe windows:4 windows x86 arch:x86

772665dc779b5feb863f60bceee468ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SetCapture
GetWindowInfo
InvalidateRgn
GetCapture
ExcludeUpdateRgn
ValidateRect
ValidateRgn
ReleaseCapture
GetUpdateRgn

kernel32

FileTimeToLocalFileTime
FindNextFileW
GetNextVDMCommand
LocalFileTimeToFileTime
LoadResource
FindResourceW
SetThreadPriority
CompareStringA
SetEnvironmentVariableW
SystemTimeToFileTime
EnumResourceNamesW
GetLocalTime
FreeLibrary
GetShortPathNameW
SetErrorMode
GetStringTypeW
FindClose
RegisterWaitForSingleObject
FileTimeToSystemTime
FindFirstFileW
SetCurrentDirectoryW
SearchPathW

Sections

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ