752f31ea4fd8fb6d22b304d3c18b7577 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

752f31ea4fd8fb6d22b304d3c18b7577
Size

2.0MB
MD5

752f31ea4fd8fb6d22b304d3c18b7577
SHA1

8d16145ff9de8e2f798d951e7ae4afce8428be7d
SHA256

dabfb02942c8e50256f45636793eb21e47d8c15e9f835f2340a9412a0b2d2aad
SHA512

30c2304a8198ad43e71ae594ba4ed965d2b187cd1ab037f8dfacbfe8660c91e33d53336c718163abc96378623061c6202a1bc6bdc565a375fba21a4d2b6a7659
SSDEEP

49152:ZiEcbfyvAeBEs03/95DeSjZnZVPSwwrd:AnOrBEs015S2ZVW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
752f31ea4fd8fb6d22b304d3c18b7577

Files

752f31ea4fd8fb6d22b304d3c18b7577
.exe windows:4 windows x86 arch:x86

f4089fe30323b0998ab170aa1ab245a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

Sections

CODE
Size: 1.9MB - Virtual size: 15.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE