77a531c73cfb4426964029e611f438cd | Triage

Sharing

General

Target

77a531c73cfb4426964029e611f438cd
Size

392KB
MD5

77a531c73cfb4426964029e611f438cd
SHA1

9078b6f8d51dce6a347379665f0f3a9494bead2e
SHA256

6d65f698915ffeb197d4c5852a8b5275eac96174b94a5a911e9e7dde2b21edeb
SHA512

ce25b192d8beeddae1c822dcc9c9fcc2bcbfe94e931b42f165626c171a117703732d6ce1bcd5a544646c732e0a6dda10263bd1289bfd2c0797efb70f2ca80a5f
SSDEEP

6144:nD/bumn1Ns48rVcrQfxy6cfQm72K/jJBFozz8zyNW91k28DdQrPvWbwCLcqujY6c:njKm1Ns/QQU605bpFJE5dQawwbeY4BQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77a531c73cfb4426964029e611f438cd

Files

77a531c73cfb4426964029e611f438cd
.exe windows:4 windows x86 arch:x86

19f7e1aa0f3af33cac44eec3804b7100

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
ExitProcess
GetCurrentProcess
LoadLibraryA
CloseHandle
CreateFileA
LCMapStringA

user32

wsprintfA
SetWindowLongA
CloseWindow
CharLowerBuffA
CreateWindowExA

advapi32

RegEnumKeyA
RegDeleteValueA
RegQueryValueA
RegEnumValueA
RegOpenKeyA
RegCloseKey
RegDeleteKeyA
RegCreateKeyA
RegSetValueA

Sections

.text
Size: 370KB - Virtual size: 372KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ