759e846391b799670090afb75174f66b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

759e846391b799670090afb75174f66b
Size

108KB
MD5

759e846391b799670090afb75174f66b
SHA1

ffc7cd0dacdd63addcfcb22e25e127707ac1f3b8
SHA256

e9d3d09d38e9ff4f21d7f6775bd76d9c8568db8a6302688c396b9230a6f70087
SHA512

1ccffb065634ad240cd6427179b398e01ff90164130f253b18b02e668e8ff25606aa21ae450c718fbd98d22a64987b5095dc34869eb7e822b7b9f0be90497896
SSDEEP

3072:upeWhJ9ScoIFJOzzhUgN1SJgLHRiqaPYLl:uQW4coh5CJ0l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
759e846391b799670090afb75174f66b

Files

759e846391b799670090afb75174f66b
.exe windows:5 windows x86 arch:x86

c1fc8d416e73b5008cf1e820aa408022

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextMetricsA
GetDeviceCaps
SaveDC
CreateFontIndirectA
SetStretchBltMode
CreateCompatibleDC
CreatePalette
SetTextColor
DeleteDC
SelectObject
CreateSolidBrush
RectVisible
GetPixel
GetObjectA
RestoreDC
LineTo
DeleteObject
GetClipBox
SelectPalette
GetStockObject
SetTextAlign

user32

CharNextA
TranslateMessage
GetDesktopWindow
GetSystemMetrics
GetDC
GetParent

kernel32

RemoveDirectoryW
FindClose
lstrcmpA
GetWindowsDirectoryA
lstrcmpiA
QueryPerformanceCounter
lstrlenA
lstrlenW
GetSystemTime
DeleteFileA
GetModuleHandleA
CopyFileA
RemoveDirectoryA
GetCommandLineA
GlobalFindAtomA
lstrcmpiW
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ