77bcdfb4fc1c5572e237998e9aa0879c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77bcdfb4fc1c5572e237998e9aa0879c
Size

48KB
MD5

77bcdfb4fc1c5572e237998e9aa0879c
SHA1

3f81799636b90c68a2407acc1c50ffd24e203511
SHA256

efe14802b22307075a9c0a8fefebae7b477010e3df438d0651d2240563fe8074
SHA512

3ad4959c3e7e9d0d33433acb638afadc62ff2b45f74dc26f2aca41b896e0e16e2f46fce4a1b2611b5ae57225768ed6e94e402eb2102e81e81d16f730fe10c1eb
SSDEEP

768:RmDRisE3X6twSvxG4NCe/HIZe10PkrJf7JiiyXwAH6O1hK0A19mo:uf6S5GC3IO0PuJQXJ6O1Q1/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77bcdfb4fc1c5572e237998e9aa0879c

Files

77bcdfb4fc1c5572e237998e9aa0879c
.exe windows:5 windows x86 arch:x86

893073f718f0b859323d903ae728061f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptCreateHash
CryptReleaseContext
DuplicateTokenEx
RegCloseKey
RegDeleteValueA
RegQueryValueExA

kernel32

lstrlenW

user32

CharLowerBuffA
CloseDesktop
CloseWindowStation
DispatchMessageA
DrawIcon
FindWindowExA
GetClipboardData
GetMessageA
GetWindowTextA
GetWindowThreadProcessId
LoadCursorA
OpenWindowStationA
PeekMessageA
SetProcessWindowStation

Sections

.text
Size: 38KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ