76efeb694a4781b75e65c6900e34084d | Triage

Sharing

General

Target

76efeb694a4781b75e65c6900e34084d
Size

42KB
MD5

76efeb694a4781b75e65c6900e34084d
SHA1

88ced53dc25a4b5e92f6942f9b67f70061e4f8cb
SHA256

9cef9b7534589526fe5500c06b9d1391757b5f3b0d9c0fa0ba0748e23002a937
SHA512

17c1bf6dcdd4dc77f0dc1a3eaa1a8e2bd8750ec55474e0c663012d261fe5cffba7829bc1ffe8638d8924282753eca2ddd515fd16bd378e0af598279d99ceae85
SSDEEP

768:m3w3UNTmG7vbrl6i3mE6x3rbiZiyCM+CVkp1/3k:mgkNTJbESRyidv+Cab/3k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76efeb694a4781b75e65c6900e34084d

Files

76efeb694a4781b75e65c6900e34084d
.exe windows:4 windows x86 arch:x86

98b13a71f757041e7749be31ce3b0a1b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamW
DialogBoxParamA
GetMenu
GetFocus
LoadCursorA
DrawTextW
CopyRect
IsMenu
GetWindowTextA

kernel32

GetStringTypeW
GetVersion
LCMapStringW
MultiByteToWideChar
GetModuleFileNameA
LCMapStringA
GetStartupInfoA
GetACP
lstrcpynW
GetCurrentProcess
CreateFileA
GetCPInfo
GetStringTypeA
lstrcpynA
GetOEMCP
GetFileType
TerminateProcess
lstrcatA
SetHandleCount
SetFilePointer
GetStdHandle
lstrcpyA
GetCommandLineA
WriteFile

advapi32

RegEnumKeyA
RegDeleteValueA
RegEnumValueA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyW
RegEnumKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegCreateKeyA

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ