5578775379277deff128a14c0e3ff7b2 | Triage

Sharing

General

Target

5578775379277deff128a14c0e3ff7b2
Size

626KB
MD5

5578775379277deff128a14c0e3ff7b2
SHA1

124f255f80c809194085b4ffa1c77b8674533400
SHA256

0bd48032a06c6bc8cb1375220bc2f24293b977f14957ad58dbfe36eb63b8397a
SHA512

537ca8784d419bd0aff951db57d5bfced771dc6ea8dedd61ae8113ca1c350c4914e64b22a2e672e41d774fda2cbe4c2c40b90e25cf12baa2cbfdd6b4ffb3bfa4
SSDEEP

12288:SsLLKhoq8/5s2IyV2G0hRpS8sXdRVXdKtqmRO8s3AMe:3c8G2IyAFq8sXd0t8xe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5578775379277deff128a14c0e3ff7b2

Files

5578775379277deff128a14c0e3ff7b2
.exe windows:4 windows x86 arch:x86

2403a2e24a4e991ee02990ac32271530

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetKeyboardType
CreateWindowExA

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
DeleteCriticalSection
TlsSetValue
lstrcpyA
Sleep

advapi32

RegQueryValueExA
RegSetValueExA

oleaut32

SysFreeString
SafeArrayPtrOfIndex
GetErrorInfo

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

IsEqualGUID
CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

wininet

InternetSetOptionA

urlmon

CoInternetCreateZoneManager

winmm

waveOutSetVolume

Sections

.text
Size: 42KB - Virtual size: 948KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE