760f8cdb70539d644b138efb0d255df1db679ea2364c0c5cd7760b495f190af4

Sharing

Copy URL Twitter E-mail

General

Target

760f8cdb70539d644b138efb0d255df1db679ea2364c0c5cd7760b495f190af4
Size

10.7MB
MD5

5ea8cfdb4f759dbd0a3f355108be0039
SHA1

39e456e3727f2dcc6e9720b206a9a7d396476bd7
SHA256

760f8cdb70539d644b138efb0d255df1db679ea2364c0c5cd7760b495f190af4
SHA512

bbf2c2746169cde7ae575afdd7ca72917d2388938ebabb7417b3ad49a6ff10649b4561fa266a357f70fc59622c38855bc4bcf04dae14d7f3dee13210d3dce63a
SSDEEP

196608:MX9e8l1TrPqIHHOSjXHhwUrcAj82szQAGjvMy2SWFsiW8I2hNKnE5EC:0euTnOSjXHlrcy82oGj0yyscICJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
760f8cdb70539d644b138efb0d255df1db679ea2364c0c5cd7760b495f190af4

Files

760f8cdb70539d644b138efb0d255df1db679ea2364c0c5cd7760b495f190af4
.exe windows:4 windows x86 arch:x86

a22059070673d3884379e346b8dae144

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

WSACleanup

kernel32

GetTimeZoneInformation

user32

ClientToScreen

gdi32

LineTo

msimg32

GradientFill

winspool.drv

OpenPrinterA

advapi32

RegQueryValueExA

shell32

Shell_NotifyIconA

ole32

CLSIDFromProgID

oleaut32

UnRegisterTypeLi

comctl32

ImageList_Draw

comdlg32

ChooseFontA

Sections

.text
Size: - Virtual size: 1006KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.svmp1
Size: - Virtual size: 4.0MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp2
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp3
Size: 496KB - Virtual size: 493KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp4
Size: 5.2MB - Virtual size: 5.2MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp5
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp6
Size: 420KB - Virtual size: 417KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a22059070673d3884379e346b8dae144

Headers

File Characteristics

Imports

winmm

ws2_32

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

comdlg32

Sections

.text Size: - Virtual size: 1006KB

.rdata Size: - Virtual size: 1.0MB

.data Size: - Virtual size: 328KB

.rsrc Size: 36KB - Virtual size: 34KB

.svmp1 Size: - Virtual size: 4.0MB

.svmp2 Size: 4.6MB - Virtual size: 4.6MB

.svmp3 Size: 496KB - Virtual size: 493KB

.svmp4 Size: 5.2MB - Virtual size: 5.2MB

.svmp5 Size: 12KB - Virtual size: 8KB

.svmp6 Size: 420KB - Virtual size: 417KB

.text
Size: - Virtual size: 1006KB

.rdata
Size: - Virtual size: 1.0MB

.data
Size: - Virtual size: 328KB

.rsrc
Size: 36KB - Virtual size: 34KB

.svmp1
Size: - Virtual size: 4.0MB

.svmp2
Size: 4.6MB - Virtual size: 4.6MB

.svmp3
Size: 496KB - Virtual size: 493KB

.svmp4
Size: 5.2MB - Virtual size: 5.2MB

.svmp5
Size: 12KB - Virtual size: 8KB

.svmp6
Size: 420KB - Virtual size: 417KB