4a74631c622a814150cfdf89327e4590N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a74631c622a814150cfdf89327e4590N
Size

6.5MB
MD5

4a74631c622a814150cfdf89327e4590
SHA1

70ea632fb30d621ddb34f6555ade586c02e7986e
SHA256

aec36e238022820f98251101cbac081b25ff309fb4e72d85d5081ec9ee304efd
SHA512

77a29b89abc27701322564244491f56922690e61584db5169934ed6f24bfe2f51126ad67b8f1ad44e91e074c4edbb412254b677e61e13fc08bd810c0627eb3fb
SSDEEP

196608:+ikViV1w+wBwp2AHGx9MvS0JDbWvYcvzrkl6:gViVcBw3HGfM60lbuvn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a74631c622a814150cfdf89327e4590N

Files

4a74631c622a814150cfdf89327e4590N
.exe windows:4 windows x86 arch:x86

006b0345a21fec5854f3a4c6ce69836c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

mpr

WNetGetUserA

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CLSIDFromString

comctl32

FlatSB_SetScrollPos

winspool.drv

WritePrinter

shell32

ShellExecuteA

comdlg32

PrintDlgA

wsock32

__WSAFDIsSet

oledlg

OleUIInsertObjectA

netapi32

Netbios

usp10

ScriptApplyDigitSubstitution

winmm

timeGetTime

Sections

CODE
Size: 6.4MB - Virtual size: 13.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE