02f34b84047fcf6122233797312efadf7baa795c5c140c9304a2cf918fa63497 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02f34b84047fcf6122233797312efadf7baa795c5c140c9304a2cf918fa63497
Size

1.9MB
MD5

d2cc3bea5084303dad36b05bb9d23c91
SHA1

0b7ec1ff6182640017d02baa34a378b7feb59c95
SHA256

02f34b84047fcf6122233797312efadf7baa795c5c140c9304a2cf918fa63497
SHA512

fc03be39e300c6828d17fabb6124e51185814c207a265732da3bc9a1b6028fd2f576a8153f1b8938ce79311f9a127ffef0b2151f4425be2c084ab3a0e07d4b26
SSDEEP

49152:uHQQCpBxBBG1MAmfB7mEAlf6cq+Ie46d//DU6ui//:uGpPBBht4ErBeNI6f/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02f34b84047fcf6122233797312efadf7baa795c5c140c9304a2cf918fa63497

Files

02f34b84047fcf6122233797312efadf7baa795c5c140c9304a2cf918fa63497
.exe windows:4 windows x86 arch:x86

9f10ca402e080a9ce9726b208c54ef4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

WSACleanup

kernel32

SetEndOfFile

user32

ScreenToClient

gdi32

TextOutA

winspool.drv

OpenPrinterA

advapi32

RegOpenKeyExA

shell32

Shell_NotifyIconA

ole32

CLSIDFromProgID

oleaut32

LHashValOfNameSys

comctl32

ord17

comdlg32

ChooseColorA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 892KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1008KB - Virtual size: 1008KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ