f75178fcf8b5120cb8883b472e6afe48b26cec92a12b72f7efdc256d61314cc0

Sharing

Copy URL Twitter E-mail

General

Target

f75178fcf8b5120cb8883b472e6afe48b26cec92a12b72f7efdc256d61314cc0
Size

4.6MB
MD5

31637e1673420f84835ab3e47ff77e36
SHA1

6cf891cb13d9a68b6153e4d757dcd32f31b24244
SHA256

f75178fcf8b5120cb8883b472e6afe48b26cec92a12b72f7efdc256d61314cc0
SHA512

6806122b6035b0a1880706c0ed7f4d428f3d78b6180bb0e0819851b22719e17ac8f3a6bcbe95bcf9b8cae51c418e3024cba8ca88d36aee516c6b8ad70d3e8627
SSDEEP

98304:yEUPdwRITW1WLRQR47No4EjpwLhLLrLLLLLLLLLLLwLLLLLLLLLLLL4LkLJLLLLg:TSWD4GAm9Y304Jp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f75178fcf8b5120cb8883b472e6afe48b26cec92a12b72f7efdc256d61314cc0

Files

f75178fcf8b5120cb8883b472e6afe48b26cec92a12b72f7efdc256d61314cc0
.exe windows x86

d759a7933494c49eaec5336e945b3c6a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA

user32

RegisterClassA

ole32

OleRegGetUserType

shlwapi

StrFormatByteSizeW

gdi32

SetViewportOrgEx

advapi32

RegQueryValueExA

shell32

ord165

oleaut32

OleSavePictureFile

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

rasapi32

RasHangUpA

winmm

waveOutWrite

winspool.drv

ClosePrinter

comctl32

ImageList_Destroy

ws2_32

recv

wininet

InternetCloseHandle

comdlg32

GetFileTitleA

Sections

.text
Size: 936KB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d759a7933494c49eaec5336e945b3c6a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

shlwapi

gdi32

advapi32

shell32

oleaut32

msvcrt

iphlpapi

psapi

rasapi32

winmm

winspool.drv

comctl32

ws2_32

wininet

comdlg32

Sections

.text Size: 936KB - Virtual size: 3.8MB

.sedata Size: 2.7MB - Virtual size: 2.7MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 1.0MB - Virtual size: 1.0MB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 936KB - Virtual size: 3.8MB

.sedata
Size: 2.7MB - Virtual size: 2.7MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

.sedata
Size: 4KB - Virtual size: 4KB