1f77b1255e906855a1ef827b82d3b9a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f77b1255e906855a1ef827b82d3b9a7
Size

178KB
MD5

1f77b1255e906855a1ef827b82d3b9a7
SHA1

eb34b714d57e3d28233ba89966b26a11d23a532d
SHA256

75ce1906c6383d45c00469345fe1feb7c2da72fc6c115dd628ba18e2f9f88b55
SHA512

3a5b839d2034258f618b22e1a7b446e8d714f9133aea69ca852633de7cd80a7fb1a04c4bad48ff132507148249a4a4573e099bc75076dbc175a8ad694848aac7
SSDEEP

3072:4A5cxOiKPkE5rTXYp09BB066yW0F9WR8XDFasAV36l+0mmYwdW1:4f6PZnYu7ag1F9WEazt0T5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f77b1255e906855a1ef827b82d3b9a7

Files

1f77b1255e906855a1ef827b82d3b9a7
.exe windows:4 windows x86 arch:x86

a37750828a5ef4a08aa843e6963a402b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

urlmon

URLDownloadToFileA

Sections

CODE
Size: 163KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE