General

  • Target

    Release.zip

  • Size

    347KB

  • MD5

    c52984d0bedfc22612973fd20866f167

  • SHA1

    cdb50afffdc8bf982843282a131b2925fe0d0dba

  • SHA256

    c2c22f20a9e6b16db03d995a17327ddebc0795bbc59bc5d2e91fdc46669d03f9

  • SHA512

    406f2bc84159705c597c9ed800b8b6a17fc21b92c3ecade7058b0df85f1950bd933d10d27c642382ff4aaa62f99ba9d0be8ace09ff54b4cf59f27221ea195c6a

  • SSDEEP

    6144:N7hEoI56GNNT/lR9QIN+4uW3ybIqFp5mL23hfiDz17YVIKDZqmjH811dUCQRI5Mp:zy56qhlR9Qo2WmFDgQfiuNQmjGdwRI5a

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • Release.zip
    .zip
  • FNFBot20.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • FNFBot20.exe.config
  • FNFDataAPI.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Newtonsoft.Json.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Newtonsoft.Json.xml
    .xml
  • WindowsInput.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsInput.xml
    .xml