788e369e02f2735592773bb7a85bd6a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

788e369e02f2735592773bb7a85bd6a7
Size

130KB
MD5

788e369e02f2735592773bb7a85bd6a7
SHA1

7308771d8ae9c51d33cd1e96f66e53aba6e5ba2f
SHA256

73f2dd14b64524f9a29669b9bbc22aab443d5cf236a031e28ac21ce7a0386520
SHA512

70fbec1ce9bb6ad814514ef0c174ef0e0311d0beddc110394fdee866efcbe6225162420272a272f13daf4e448c99518a6014f74fb265e9dbc8727f24e0135e82
SSDEEP

3072:jfpD9mc2ZZHs20AGLJwYk6G6nOGzrJ9zX8TeqY2YS9jl:vmc+VqLJ4By99L8TSq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
788e369e02f2735592773bb7a85bd6a7

Files

788e369e02f2735592773bb7a85bd6a7
.dll windows:4 windows x86 arch:x86

e041e2b961df9a8b600c746069215c2d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

RegisterClassW
OffsetRect
MessageBoxW
MessageBoxIndirectW
MessageBeep
GetMessageW
FillRect
EmptyClipboard
DispatchMessageW

kernel32

GetTimeZoneInformation
IsValidCodePage
HeapValidate
GetTickCount
GetCurrentProcessId
GetConsoleMode
ExitProcess
UnhandledExceptionFilter
SetHandleCount

advapi32

RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegCloseKey

comdlg32

GetOpenFileNameW
GetFileTitleW

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 69KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ