bb7661996e34f136cef2ffe7e388c367e78e7c6066014199ebbb4852decdd2fa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb7661996e34f136cef2ffe7e388c367e78e7c6066014199ebbb4852decdd2fa
Size

42KB
MD5

2b8d5b284752727690d375882080c199
SHA1

4e9716feaa18cc213975498470284f9e385e8e13
SHA256

bb7661996e34f136cef2ffe7e388c367e78e7c6066014199ebbb4852decdd2fa
SHA512

b4996abd5442e7c780e3228b8ffb946b0c92ee456944f7f2979668844afbd6d5e5f9f3521fd8f85ed29f883a2a77cc8aab6924d2fc847ae01af2b97a7ca8cde3
SSDEEP

768:2Rl1AsOtOut4AxkQTZ8Ha9ToS6TSrxPODMA3ldxJS0+PvJ:CNuJt9rGK0HSrljOdxU0+Pv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb7661996e34f136cef2ffe7e388c367e78e7c6066014199ebbb4852decdd2fa

Files

bb7661996e34f136cef2ffe7e388c367e78e7c6066014199ebbb4852decdd2fa
.dll windows:4 windows x86 arch:x86

e25f84875e45cf7ba7f06b2a8b5acfec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

winmm

timeGetTime

mfc42

ord825

msvcrt

??1type_info@@UAE@XZ

user32

GetCapture

gdi32

GetTextMetricsA

comctl32

_TrackMouseEvent

ole32

CreateStreamOnHGlobal

olepro32

ord251

oleaut32

SysStringLen

gdiplus

GdipGetImageHeight

msvcp60

?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXID@Z

Exports

Exports

CreateVideoWindow
ReleaseVideoWindow

Sections

.text
Size: 34KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE