7770ca6631e75cb1b5ce55e4b5161c6a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7770ca6631e75cb1b5ce55e4b5161c6a
Size

305KB
MD5

7770ca6631e75cb1b5ce55e4b5161c6a
SHA1

6663c1651329347b6ca36f20124591185e2d21fc
SHA256

4a12ede4943995c1e0096aa4c606dfcdfc9c1f040888ffad563d414951dc97ff
SHA512

4b2ca37441e0b11e20052cf24737880b02ed090e7c87523ef608060eb7624f5a0e165ab3f74d41baf87997ea3c621d097c0940b75d802cd3319dc702deb1536e
SSDEEP

6144:5q4V+TTNkMe/NexW/ERcWlJDEcIorMt0U4u7HlO3A3:NVWTi/4xQERcSJVIoQt0U4ub9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7770ca6631e75cb1b5ce55e4b5161c6a

Files

7770ca6631e75cb1b5ce55e4b5161c6a
.exe windows:4 windows x86 arch:x86

0eed57a51e9326c8ad4c2c2ffcaa0371

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SuspendThread
GetFileSize
SetEndOfFile
CloseHandle
CreateMutexW
HeapCreate
HeapDestroy
GetSystemInfo
FindClose
DeleteFileA
SetLastError
ExitProcess
HeapSize
GetTickCount
GetTickCount
GetCurrentDirectoryA
InitializeCriticalSection
CreateFileA
GetStartupInfoW
GetModuleHandleA
AddAtomA
WaitForSingleObject
ReleaseMutex
ResetEvent
GetEnvironmentVariableA

shell32

DragFinish
DragQueryFileA
ExtractIconA
DragAcceptFiles
ShellMessageBoxA
DllUnregisterServer
SHGetMalloc
SHFree
StrChrA
DuplicateIcon
SHGetDiskFreeSpaceA
ShellAboutA
SHGetSettings

dswave

DllGetClassObject
DllGetClassObject
DllGetClassObject
DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ