fad3bd4fda1f82a8d0a56b2f0e9c2253de484b7e95382d6742fe98e84fc36444

Sharing

Copy URL Twitter E-mail

General

Target

fad3bd4fda1f82a8d0a56b2f0e9c2253de484b7e95382d6742fe98e84fc36444
Size

2.5MB
MD5

9d6adc4f553a84e305981bcc2e8cab1f
SHA1

83d1805757149c65819842ef946aa6c9ed1d6848
SHA256

fad3bd4fda1f82a8d0a56b2f0e9c2253de484b7e95382d6742fe98e84fc36444
SHA512

d89a68ca2c164712530012b412d8e758893249002a7b5a1fb4b16bf700a76808991ef83f1f1618935dd7a1f58de04a4ea6b9073b41051ff0570f99567f2cce60
SSDEEP

49152:jHkt4/ZX0yTrGayBS8hTtV9DSU8vjNHtP8NBVOYlcKrpgroRh5H:jHjGyT1yb9epvDSrlXF59

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fad3bd4fda1f82a8d0a56b2f0e9c2253de484b7e95382d6742fe98e84fc36444

Files

fad3bd4fda1f82a8d0a56b2f0e9c2253de484b7e95382d6742fe98e84fc36444
.exe windows:4 windows x86

6c7e53c11678ab5eee2b6e863a643c0d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

WSACleanup

kernel32

GetTimeZoneInformation

user32

SystemParametersInfoA

gdi32

ExtSelectClipRgn

msimg32

GradientFill

winspool.drv

OpenPrinterA

advapi32

RegOpenKeyExA

shell32

Shell_NotifyIconA

ole32

CLSIDFromProgID

oleaut32

UnRegisterTypeLi

comctl32

ImageList_Draw

comdlg32

ChooseColorA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 1.5MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c7e53c11678ab5eee2b6e863a643c0d

Headers

File Characteristics

Imports

winmm

ws2_32

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

comdlg32

msvcrt

iphlpapi

psapi

Sections

.text Size: 1.5MB - Virtual size: 2.7MB

.sedata Size: 1.0MB - Virtual size: 1.0MB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 1.5MB - Virtual size: 2.7MB

.sedata
Size: 1.0MB - Virtual size: 1.0MB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.sedata
Size: 4KB - Virtual size: 4KB