Patch-Movavi[.]Video[.]Editor[.]Plus[.]20[.]x-x86-x64-Astron[.]exe

Resubmissions

23/08/2023, 15:12

23/08/2023, 08:27

Target

Patch-Movavi.Video.Editor.Plus.20.x-x86-x64-Astron.exe
Size

406KB
MD5

1ddc8d6edd24e8ba4be3822964a13e8f
SHA1

642ba3f187b00d61f7728cc3e4aa725cf7135704
SHA256

f33c9b4f1f8503aeeb5573aa332653483092d252b2c8af9df024315b2eee52a2
SHA512

0a6e0fc01c63aad713aca7ca891f9a5dc4d686a856d5802fe69e912d08a37060b66f4172ddeee925d25cbba1c0c59f33a0c129c2b723a9b7c8b063cd40056066
SSDEEP

12288:gfigfW6F1EFkWdmHNilYXowy49nf2zBkF:gP+646LNlW62m

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Device/HarddiskVolume4/Users/praveenp.VIRTUSHOLDING/AppData/Roaming/Movavi Video Editor Plus 2020/Patch-Movavi.Video.Editor.Plus.20.x-x86-x64-Astron.exe

Patch-Movavi.Video.Editor.Plus.20.x-x86-x64-Astron.exe
.zip

Password: S@ndb0x!2023@@
Device/HarddiskVolume4/Users/praveenp.VIRTUSHOLDING/AppData/Roaming/Movavi Video Editor Plus 2020/Patch-Movavi.Video.Editor.Plus.20.x-x86-x64-Astron.exe
.exe windows x86

Password: S@ndb0x!2023@@

dc73a9bd8de0fd640549c85ac4089b87

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
ExitProcess
FindResourceA
FreeLibrary
GetModuleHandleA
GetProcAddress
GetTempPathA
LoadLibraryA
LoadResource
RtlMoveMemory
SizeofResource
VirtualAlloc
lstrcatA
CloseHandle
CreateFileA
FlushFileBuffers
WriteFile

Sections

.text
Size: 512B - Virtual size: 502B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 444KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 82B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
manifest.json