4c88c87dd8a21003fb69dbf7f0427d07bb61f2c57bb1336f5c5f3235f261f832

Sharing

Copy URL Twitter E-mail

General

Target

4c88c87dd8a21003fb69dbf7f0427d07bb61f2c57bb1336f5c5f3235f261f832
Size

15.0MB
MD5

9f906d71a9e7b71e20ec63d56af57359
SHA1

a7566c0e83f9b80793f3015fe2ec57224230743d
SHA256

4c88c87dd8a21003fb69dbf7f0427d07bb61f2c57bb1336f5c5f3235f261f832
SHA512

fd48db7a9963ce3b232da746ad7ca5dbade1c6a485be478e8b07d9ab7727dcae1fb375337dbf5fb0bd11d1606e1f619c347cc23d1ffc4f27f33859127fd1af69
SSDEEP

196608:DOMV2FtX+qmWhBKrUkX7jVALSYN/oEUXPXxmxKpdqC7MRPOZ+hsfMfTgjmpTR8Uz:r2F4DWhBKD5p7n57MskLQW+79ZlPjoD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c88c87dd8a21003fb69dbf7f0427d07bb61f2c57bb1336f5c5f3235f261f832

Files

4c88c87dd8a21003fb69dbf7f0427d07bb61f2c57bb1336f5c5f3235f261f832
.exe windows:4 windows x86

3de66679aa49d8892f77196d90a3f0e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock

user32

OpenClipboard

gdi32

ScaleWindowExtEx

winmm

midiStreamRestart

winspool.drv

ClosePrinter

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

OleInitialize

oleaut32

UnRegisterTypeLi

comctl32

ImageList_Destroy

ws2_32

ioctlsocket

comdlg32

ChooseColorA

Sections

.text
Size: - Virtual size: 524KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.svmp1
Size: - Virtual size: 5.5MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp2
Size: 7.1MB - Virtual size: 7.1MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp3
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp4
Size: 5.0MB - Virtual size: 5.0MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp5
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp6
Size: 388KB - Virtual size: 387KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3de66679aa49d8892f77196d90a3f0e5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

ws2_32

comdlg32

Sections

.text Size: - Virtual size: 524KB

.rdata Size: - Virtual size: 1.8MB

.data Size: - Virtual size: 182KB

.rsrc Size: 68KB - Virtual size: 66KB

.svmp1 Size: - Virtual size: 5.5MB

.svmp2 Size: 7.1MB - Virtual size: 7.1MB

.svmp3 Size: 2.5MB - Virtual size: 2.5MB

.svmp4 Size: 5.0MB - Virtual size: 5.0MB

.svmp5 Size: 12KB - Virtual size: 11KB

.svmp6 Size: 388KB - Virtual size: 387KB

.text
Size: - Virtual size: 524KB

.rdata
Size: - Virtual size: 1.8MB

.data
Size: - Virtual size: 182KB

.rsrc
Size: 68KB - Virtual size: 66KB

.svmp1
Size: - Virtual size: 5.5MB

.svmp2
Size: 7.1MB - Virtual size: 7.1MB

.svmp3
Size: 2.5MB - Virtual size: 2.5MB

.svmp4
Size: 5.0MB - Virtual size: 5.0MB

.svmp5
Size: 12KB - Virtual size: 11KB

.svmp6
Size: 388KB - Virtual size: 387KB