0bd5c5aef5b0dc69db3c4e204e6c284676e2b5c1764fc30c9382b874d0f15d99

Sharing

Copy URL

Twitter E-mail

General

Target

0bd5c5aef5b0dc69db3c4e204e6c284676e2b5c1764fc30c9382b874d0f15d99
Size

8.1MB
MD5

7a76878a6d54f07e19bcf7780c6931f3
SHA1

a1f69703e43a9291ff2d48edf95cd9fb4e9bddaf
SHA256

0bd5c5aef5b0dc69db3c4e204e6c284676e2b5c1764fc30c9382b874d0f15d99
SHA512

9e7a9d5c81e4ee2cb1e133ad2ed48a2a43396b21d99a1c23e68971de7138106a10bb201fab57873a64dac9668a819dc141ee8df4ce03a9ede440496e98851f31
SSDEEP

196608:WtmlAKq64tgsih8VlI+QZmZ7SHLWUreZN5+C7zujy2ba:Wtmlegsi6qbr8z+Yq3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0bd5c5aef5b0dc69db3c4e204e6c284676e2b5c1764fc30c9382b874d0f15d99

Files

0bd5c5aef5b0dc69db3c4e204e6c284676e2b5c1764fc30c9382b874d0f15d99
.exe windows x86

1c036f2da738e258cfc564270145d23e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

WSACleanup

kernel32

GetVersion
GetVersionExA

user32

IsIconic

gdi32

TextOutA

winspool.drv

OpenPrinterA

advapi32

RegOpenKeyExA

shell32

ShellExecuteA

ole32

CLSIDFromString

oleaut32

LoadTypeLi

comctl32

ord17

comdlg32

ChooseColorA

Sections

.text
Size: - Virtual size: 499KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.I?1
Size: - Virtual size: 4.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Bj1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.V@Z
Size: 8.1MB - Virtual size: 8.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c036f2da738e258cfc564270145d23e

Headers

File Characteristics

Imports

winmm

ws2_32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

comdlg32

Sections

.text Size: - Virtual size: 499KB

.rdata Size: - Virtual size: 148KB

.data Size: - Virtual size: 204KB

.I?1 Size: - Virtual size: 4.4MB

.Bj1 Size: 4KB - Virtual size: 2KB

.V@Z Size: 8.1MB - Virtual size: 8.1MB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: - Virtual size: 499KB

.rdata
Size: - Virtual size: 148KB

.data
Size: - Virtual size: 204KB

.I?1
Size: - Virtual size: 4.4MB

.Bj1
Size: 4KB - Virtual size: 2KB

.V@Z
Size: 8.1MB - Virtual size: 8.1MB

.rsrc
Size: 16KB - Virtual size: 12KB