75f7bea211000e2ceb493707b3fe39eb | Triage

Sharing

General

Target

75f7bea211000e2ceb493707b3fe39eb
Size

166KB
MD5

75f7bea211000e2ceb493707b3fe39eb
SHA1

a1468d137351b3241c7fa79d601c732a8f29bcc4
SHA256

2f10752172c62b567158e7877923d22f0d89ffc3c1897b62f344be588a266a0c
SHA512

4603eccf76a6d9f96217debda2cc2b299f373ece9be7e3ff61f66e4b5c7edd8c4f6f50e8b67d9439a34abcbe52b5688bfc845d5a43550e09e115425639e8afb5
SSDEEP

3072:t4TBeNXm+ApSHXaa3C6uji+LDssZDdWGH8cowPiTpgXqVEqOy:t8BexApSHXaa3C6u2v0dWGH8cowPRamq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75f7bea211000e2ceb493707b3fe39eb

Files

75f7bea211000e2ceb493707b3fe39eb
.exe windows:4 windows x86 arch:x86

a82e799a57840b0fa49a19e8ce5a541a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

OpenClipboard
PostMessageA
IsCharLowerA
GetMenu
PeekMessageW
PtInRect
GetCapture

kernel32

GetThreadLocale
lstrlenA
VirtualAlloc
GetModuleFileNameA
GetModuleHandleA
GetLocalTime
GetOEMCP
ExitProcess
GetLocaleInfoA
LoadLibraryA

shell32

SHFileOperationA
Shell_NotifyIconA
SHGetFileInfoA

gdi32

CreateFontIndirectA
SetBkMode
GetTextColor

Exports

Exports

_3UZ2Ksb5GP8X
lfbIVvg6J0hlVX
VPGdCjB66A
_OKlzho
_fzzFJ
_DQMq5XAzm@4

Sections

CODE
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 722B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.htdata
Size: 1024B - Virtual size: 781B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ