522dba6e7ae8308b7c432f4c1f40d4a2c45434a9800837c170a95c0fa310329f

Sharing

Copy URL Twitter E-mail

General

Target

522dba6e7ae8308b7c432f4c1f40d4a2c45434a9800837c170a95c0fa310329f
Size

11.1MB
MD5

c71145c7d757a80c1c072936bf939448
SHA1

ff6850a096237729328d52cfdd763bcff27c0b19
SHA256

522dba6e7ae8308b7c432f4c1f40d4a2c45434a9800837c170a95c0fa310329f
SHA512

7a252612b7b7e10a3063bbe93217fef45345a19d353876ad8c6ad51404951898ffa337d37bc13e1b2c908df35054da3594c5f4baf41c1a415fec9c89dae1d604
SSDEEP

196608:m8WxnD43sXFJcSW6UeMhmgJUwHrz8EUSR12Mi+OG6k3NE/Zk9tlyS9x/1gkAO3l3:wxDesXFm6UPZuwHrz1R1I+OkC/Zubx/N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
522dba6e7ae8308b7c432f4c1f40d4a2c45434a9800837c170a95c0fa310329f

Files

522dba6e7ae8308b7c432f4c1f40d4a2c45434a9800837c170a95c0fa310329f
.exe windows x86

c418ca9ee58cea426297078a145b234c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamClose

ws2_32

ntohl

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

kernel32

CreateMutexA

user32

GetSysColorBrush

gdi32

CreateDCA

msimg32

GradientFill

winspool.drv

OpenPrinterA

comdlg32

GetFileTitleA

advapi32

RegCreateKeyExA

shell32

Shell_NotifyIconA

ole32

CLSIDFromProgID

oleaut32

VariantClear

comctl32

ImageList_Destroy

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 9.8MB - Virtual size: 12.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 308KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c418ca9ee58cea426297078a145b234c

Headers

File Characteristics

Imports

winmm

ws2_32

msvfw32

avifil32

kernel32

user32

gdi32

msimg32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

msvcrt

iphlpapi

psapi

Sections

.text Size: 9.8MB - Virtual size: 12.8MB

.sedata Size: 1.0MB - Virtual size: 1.0MB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 308KB - Virtual size: 308KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 9.8MB - Virtual size: 12.8MB

.sedata
Size: 1.0MB - Virtual size: 1.0MB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 308KB - Virtual size: 308KB

.sedata
Size: 4KB - Virtual size: 4KB