fee0ae76cec4c1a8d3da0fa881b5c2ae230b6f9b8c2010088d1c45a5e61cf606 | Triage

Sharing

General

Target

fee0ae76cec4c1a8d3da0fa881b5c2ae230b6f9b8c2010088d1c45a5e61cf606
Size

4.9MB
MD5

18694a6fee2823d3325730d355bc45d8
SHA1

7481bbc41f231212d0d39b869e9a73b6a9fd54e1
SHA256

fee0ae76cec4c1a8d3da0fa881b5c2ae230b6f9b8c2010088d1c45a5e61cf606
SHA512

c0109d702525a3d72f46ee097d66e72237253a5ce0c72e2571171fa0be2861ba5f9a671adda9271ba7c5a96e629125d1593ebdb905936968bcd1880496793e0b
SSDEEP

98304:AoHNZepsSVs2Z/oexNikDBqb+9y6z593NWvQW52ivHjOLM5yol+rQ29iwFBcSU5X:AotZgs21BRLdoQlSOLM8gYQ2EMBBa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fee0ae76cec4c1a8d3da0fa881b5c2ae230b6f9b8c2010088d1c45a5e61cf606

Files

fee0ae76cec4c1a8d3da0fa881b5c2ae230b6f9b8c2010088d1c45a5e61cf606
.exe windows:5 windows x86 arch:x86

f427ec01d51b9c584dcb332a494f35bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

oleaut32

SysFreeString

advapi32

RegQueryValueExA

user32

GetKeyboardType

gdi32

UnrealizeObject

version

VerQueryValueW

mpr

WNetGetConnectionA

ole32

CreateStreamOnHGlobal

comctl32

_TrackMouseEvent

shell32

ShellExecuteA

comdlg32

GetOpenFileNameA

wsock32

WSACleanup

gdiplus

GdipSetStringFormatLineAlign

Sections

.text
Size: 4.0MB - Virtual size: 8.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE