9bb33a910744324bf3b686fa8c272c58 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9bb33a910744324bf3b686fa8c272c58
Size

212KB
MD5

9bb33a910744324bf3b686fa8c272c58
SHA1

326720f07f26c585d0200fd25994ce1519b0db2f
SHA256

6da419643859d1edbd038cc7d020c4ab363b069c97474f7c40c0b50431f7ead2
SHA512

12d18dbc4afc2d1e0f5ac05b0853bf65a31e09c6067c91439b98e8a6ed623a4764f9727998bb6e9f0a6ae9b5ef0130da578d6cc094cf152a03b87c97f5042f47
SSDEEP

3072:xRcnzZk+NW2PYU2xQ9oxQ+j20qDIWEGK8BPOI5s8DxSj8BPOI5s8DxIhXIgHtVk:x6n1k+E2PF2Fxtj20qDbG7v4G7Zh4j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9bb33a910744324bf3b686fa8c272c58

Files

9bb33a910744324bf3b686fa8c272c58
.exe windows:4 windows x86 arch:x86

7f29a634635b81ec2ca9ece0f2d9b568

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
GetModuleHandleA
GetProcAddress

netapi32

NetUserAdd

avicap32

capCreateCaptureWindowA

Sections

.text
Size: 205KB - Virtual size: 310KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 652B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE