7a36551d9b6eed26eb150fa2068fee8a61724328151cae9d5c5efffe75b77355 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a36551d9b6eed26eb150fa2068fee8a61724328151cae9d5c5efffe75b77355
Size

7.5MB
MD5

452276b5c7e4e0160bf6d4cf59c4ee6a
SHA1

eb5cbdfe805c4c73f0017f910deea6ab4bfc30ae
SHA256

7a36551d9b6eed26eb150fa2068fee8a61724328151cae9d5c5efffe75b77355
SHA512

5e47badcfb652a114af3fd9cb947dc84bb426f0b946fa312947613199ab99908745be21e7e98951d0f4a0beed8c1cb5b4f01c0b2f210979ecd027f5c6a7e7eac
SSDEEP

196608:9l5tvpSKdIq6ixlaq4xHl/PvMjdunPNN1tF5qNTz5qldyHQsYV3r:VvI4oq4fnWsPNFF56fEsYB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a36551d9b6eed26eb150fa2068fee8a61724328151cae9d5c5efffe75b77355

Files

7a36551d9b6eed26eb150fa2068fee8a61724328151cae9d5c5efffe75b77355
.exe windows:4 windows x86 arch:x86

1674bdafd21d465bb12adb812c98986e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

user32

GetSysColorBrush

gdi32

SaveDC

winmm

midiStreamRestart

winspool.drv

ClosePrinter

comdlg32

GetFileTitleA

advapi32

RegCreateKeyExA

shell32

Shell_NotifyIconA

ole32

CoTaskMemFree

oleaut32

SysAllocStringLen

comctl32

ImageList_ReplaceIcon

oledlg

ord8

ws2_32

recv

Sections

.text
Size: 3.7MB - Virtual size: 24.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE