773ec96c1710ff644c616f8a68c9e7a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

773ec96c1710ff644c616f8a68c9e7a5
Size

18KB
MD5

773ec96c1710ff644c616f8a68c9e7a5
SHA1

ffa854aa8dcc1e8776477d78eb3f912be8d00998
SHA256

e101f85b11a63e641eb2999da5c17208d38b287e5b3ac5615148b71f3fc08f46
SHA512

68bc72206434df9117ebf4ca28a5325d7eb6bcca3aea95cf4ae768d341c39c3d95b288bb1a2589dc4884ec8208023ea6f5dfc6b0ecdef8ae71cdf9456a25c362
SSDEEP

384:j02TgW7UrZ8Kc1w4rvojKpr6D8jjvjj2fyiplVla0zx:Q2sWAdTjfj7a09

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
773ec96c1710ff644c616f8a68c9e7a5

Files

773ec96c1710ff644c616f8a68c9e7a5
.exe windows:4 windows x86 arch:x86

56bf77b126d4157a5d5b9d8f1bd6cd59

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatA
GetACP
GetModuleHandleA
IsDebuggerPresent
GlobalMemoryStatus
CreateIoCompletionPort
GetCurrentProcessId
VirtualProtect
LoadLibraryExA
GetStdHandle
InterlockedExchange
WaitForSingleObject
GetLogicalDrives
HeapDestroy
GetProcessVersion
HeapCreate
GetEnvironmentStringsA
GetTapeStatus
HeapQueryInformation
GetCurrentThread
GetProcessHeap

user32

ShowWindow
GetWindow
DrawTextA
BeginPaint
GetClassNameA
FillRect
ReleaseDC
GetDlgItem
FrameRect
EndPaint
GetParent
DragDetect
SetActiveWindow
GetCursorPos
GetWindowTextLengthA
wsprintfA
SetForegroundWindow
GetTitleBarInfo
GetFocus

advapi32

RegFlushKey
RegEnumKeyA
RegSetValueExA
RegCloseKey
RegCreateKeyA

setupapi

SetupCloseLog

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ