9abfa4e7bae6f448567204c70f543abbf921cff2ce73d51f2fc809e07a3d7ade

Sharing

Copy URL Twitter E-mail

General

Target

9abfa4e7bae6f448567204c70f543abbf921cff2ce73d51f2fc809e07a3d7ade
Size

3.9MB
MD5

06c3bfcb10bd937945902d1963da5f99
SHA1

6c821fffccc3f36d0321e1bda4ad1ec762cef113
SHA256

9abfa4e7bae6f448567204c70f543abbf921cff2ce73d51f2fc809e07a3d7ade
SHA512

789e9be4b90e38bd60716a55dafe71e327e009429f1606ec8e8c852639a0886171cfbce9c8bfa6991360abda828c8e2167dafd9a3d1ede861b56ce4ee81e7828
SSDEEP

98304:z4L7mNI+oAAvAo0ufZIN5ogfQsIY+TMahVj:pNIhKTo6NygfQpTN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9abfa4e7bae6f448567204c70f543abbf921cff2ce73d51f2fc809e07a3d7ade

Files

9abfa4e7bae6f448567204c70f543abbf921cff2ce73d51f2fc809e07a3d7ade
.exe windows x86

6bf732504ef26509a17965d5f68f5b80

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

WSAAsyncSelect

rasapi32

RasHangUpA

kernel32

GetWindowsDirectoryA

user32

PostQuitMessage

gdi32

LineTo

msimg32

GradientFill

winspool.drv

DocumentPropertiesA

advapi32

RegQueryValueExA

shell32

SHGetSpecialFolderPathA

ole32

CoGetClassObject

oleaut32

SysAllocStringLen

comctl32

ImageList_Draw

oledlg

ord8

wininet

InternetCanonicalizeUrlA

comdlg32

ChooseColorA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 1.5MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sedata
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6bf732504ef26509a17965d5f68f5b80

Headers

File Characteristics

Imports

winmm

ws2_32

rasapi32

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

wininet

comdlg32

msvcrt

iphlpapi

psapi

Sections

.text Size: 1.5MB - Virtual size: 3.0MB

.sedata Size: 2.3MB - Virtual size: 2.3MB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 1.5MB - Virtual size: 3.0MB

.sedata
Size: 2.3MB - Virtual size: 2.3MB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.sedata
Size: 4KB - Virtual size: 4KB