74f7fd09b7aff4756555e15b8bad4604 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74f7fd09b7aff4756555e15b8bad4604
Size

794KB
MD5

74f7fd09b7aff4756555e15b8bad4604
SHA1

5ad9d442bfb9896ce82b073c546426094a25f597
SHA256

2dd5b5d0d27426ca34c2da41012c28b5ba9372dd180d3553a18ecd1cd8ca27b5
SHA512

abdd5975256f0c5ebe65d60b08a90452e8357a43bb9ba64446760704bceec2bb6d1639745852dce1d1905bd992220665439b99684bd5e3cc810b5cbad37bd7c7
SSDEEP

12288:EPak7vV5grOAf+h7BVRCcEt74IUmFVm0kQzuRL4fylGoIolBgRc+LDgkaU:6aSDgyAfCBXCnN4IUokAyKzbIBn8kkaU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74f7fd09b7aff4756555e15b8bad4604

Files

74f7fd09b7aff4756555e15b8bad4604
.exe windows:4 windows x86 arch:x86

23f45e1d6eaea8abe381b487ba34de42

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress
VirtualAlloc
VirtualFree
VirtualProtect

user32

CharNextA

advapi32

RegCloseKey

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

SaveDC

comctl32

ImageList_Add

Sections

.PACKMAN
Size: - Virtual size: 3.7MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.PACKMAN
Size: 794KB - Virtual size: 796KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE