799cc33773e7e5bb4e5479f944cc7ac4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

799cc33773e7e5bb4e5479f944cc7ac4
Size

347KB
MD5

799cc33773e7e5bb4e5479f944cc7ac4
SHA1

8b417eb97d494c21e09d382fb1e1b6230eca0d0b
SHA256

fe6467ef5fad16adc9c73e7b3cfbbe925ccc6e8a369a2062df9b91bd7caaee84
SHA512

0819f9fb88e3ce1a4236a00fe7e05073809ca61729c5e5aa5cd2d38085fab14f926b6f9ea4ffe5b11ea82643743c3537f3d39cb23f6eb35e64bc5f483c7dd127
SSDEEP

6144:hQp8ix9RHA11SHeF4qjjo+5fUs+0KrQgEbJHSYBpE82v+JC+8F:crRHAQ+F4qPbfL+0qpEbAKc+Jz8F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
799cc33773e7e5bb4e5479f944cc7ac4

Files

799cc33773e7e5bb4e5479f944cc7ac4
.exe windows:4 windows x86 arch:x86

a1f34f4e87037b84e8757ae5def13fca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
FreeLibrary
GetProcAddress
EnumCalendarInfoExA
LoadLibraryW
WideCharToMultiByte
DeleteFileW
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
GlobalLock
GlobalUnlock
GlobalAlloc
GlobalFree

oleaut32

VARIANT_UserFree
GetErrorInfo
VarUI1FromUI4
SetErrorInfo
GetActiveObject
VariantInit
SysFreeString

msimg32

TransparentBlt

Sections

.text
Size: 233KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE