7feabc0c08fbe1f90e5d52922f223fd7866a35b55074d331a59e8a291e1a7834

Sharing

Copy URL Twitter E-mail

General

Target

7feabc0c08fbe1f90e5d52922f223fd7866a35b55074d331a59e8a291e1a7834
Size

14.7MB
MD5

60583250f0253d6a0f69d00628d8edad
SHA1

5e855df29881315d8eec5426fb7eb115180be408
SHA256

7feabc0c08fbe1f90e5d52922f223fd7866a35b55074d331a59e8a291e1a7834
SHA512

8701d9712ee8a76b3bcec821b89d729ecd55750ca6aeee8f08644250c08df210f41f6569904ee619b904ade9d1553f646b705fdb5e52e394bafc7f716443630d
SSDEEP

393216:SHtPlddfhI2Vh+NtLqiPEhvomgZvK5CF1eqNmv:wpHVhhkNt7MSCktNmv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7feabc0c08fbe1f90e5d52922f223fd7866a35b55074d331a59e8a291e1a7834

Files

7feabc0c08fbe1f90e5d52922f223fd7866a35b55074d331a59e8a291e1a7834
.dll windows:5 windows x86

372b4e625df51fdf88851267f05110f1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

waveOutRestart

ws2_32

inet_ntoa

kernel32

GetVersion
GetVersionExA
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

GetSysColorBrush
CharUpperBuffW

gdi32

ExtSelectClipRgn

winspool.drv

OpenPrinterA

advapi32

RegQueryValueA

shell32

Shell_NotifyIconA

ole32

OleInitialize

oleaut32

UnRegisterTypeLi

comctl32

ImageList_Destroy

comdlg32

GetFileTitleA

Exports

Exports

AWEGetObject16
AWEGetObject32
AWEManager
AWESetObject16

Sections

.text
Size: - Virtual size: 920KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.g_/
Size: - Virtual size: 11.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.7TY
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0XX
Size: 14.6MB - Virtual size: 14.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

372b4e625df51fdf88851267f05110f1

Headers

File Characteristics

Imports

winmm

ws2_32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

comdlg32

Exports

Exports

Sections

.text Size: - Virtual size: 920KB

.rdata Size: - Virtual size: 146KB

.data Size: - Virtual size: 329KB

.g_/ Size: - Virtual size: 11.2MB

.7TY Size: 4KB - Virtual size: 2KB

.0XX Size: 14.6MB - Virtual size: 14.6MB

.reloc Size: 4KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: - Virtual size: 920KB

.rdata
Size: - Virtual size: 146KB

.data
Size: - Virtual size: 329KB

.g_/
Size: - Virtual size: 11.2MB

.7TY
Size: 4KB - Virtual size: 2KB

.0XX
Size: 14.6MB - Virtual size: 14.6MB

.reloc
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 4KB