75ccaf4bad5210b8ee785b1285d24522 | Triage

Sharing

General

Target

75ccaf4bad5210b8ee785b1285d24522
Size

427KB
MD5

75ccaf4bad5210b8ee785b1285d24522
SHA1

c6c9df46508f1d0e0df1d5f094e83796bf0e749e
SHA256

e25312ed36a1255c67f16bf9b545a98185ccd071c78bd703885e9d3fdbc62c63
SHA512

d07cf75fb4732d9140ec96bbbb8d9ff1a55301dee78f5c33f50bfcd97d7c121a1f8bb39c7082c4d905a856cea2b40a590186860085987b158e845d42b7d69c66
SSDEEP

6144:zcwuO3NYDsNAdnQWMAN6l5yjiqXRZtWpfvxs5kiha0Al3EsRy2LaQt:zc7O3N50BMukyHgG51A5WQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75ccaf4bad5210b8ee785b1285d24522

Files

75ccaf4bad5210b8ee785b1285d24522
.exe windows:4 windows x86 arch:x86

96aad2ba90998ed4b7266ce9fa58fd68

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
GlobalFree
GetLastError
CloseHandle
GetACP
GlobalAddAtomA
EnterCriticalSection
HeapCreate
SetErrorMode
FoldStringA
RaiseException
InterlockedExchange
LoadLibraryExA
LockResource
SetConsoleCP
Sleep
GetStdHandle
GetLocaleInfoA
GlobalDeleteAtom
VirtualProtect
GetDriveTypeA

user32

ClipCursor
GetWindow
IsIconic
DrawEdge
ReleaseDC
GetCursorPos
GetFocus
ShowWindow
GetClassNameA
DrawTextA
GetWindowTextA
GetMenuItemInfoA
GetParent
GetActiveWindow
CharToOemBuffA
ValidateRect
SetForegroundWindow
EndPaint
BeginPaint

version

VerFindFileA
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerInstallFileA

rasadhlp

WSAttemptAutodialName

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ