57f4119ca3fbc31b45a41550d6aa5bd4039d2b9b8aae2e6e7a9b426a82cb98fe

Sharing

Copy URL

Twitter E-mail

General

Target

57f4119ca3fbc31b45a41550d6aa5bd4039d2b9b8aae2e6e7a9b426a82cb98fe
Size

11.1MB
MD5

db4f26214e736a5f9790e656a742d8f3
SHA1

da117149e98bddf35f943e0edd3b58bc1a64eb75
SHA256

57f4119ca3fbc31b45a41550d6aa5bd4039d2b9b8aae2e6e7a9b426a82cb98fe
SHA512

0167fa35df4b3e9e4efb3d0ab3ec28b8dfa86836fe10cd6e79b60f779a58c3c55b1d04771a88a25f538e815cb3cdcad1d331ea95e5a433080bfef936626455e7
SSDEEP

196608:F2gMdEY8gHfRunZ+y4Tqy3Smbc4LJ9SBRLdc3yOUz9Uj5a6bJ3:wdT8g/RAZ+lqy3SmI4LJ9GsdUOla6J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57f4119ca3fbc31b45a41550d6aa5bd4039d2b9b8aae2e6e7a9b426a82cb98fe

Files

57f4119ca3fbc31b45a41550d6aa5bd4039d2b9b8aae2e6e7a9b426a82cb98fe
.exe windows:6 windows x86

88894c8fc22f6f6400cf28dcad48f20b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

comctl32

InitCommonControls

user32

CharUpperBuffW

Sections

Size: - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Hkh
Size: - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rkcaunfh
Size: - Virtual size: 816KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qercsekw
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.\"3
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.R@Z
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.4M8
Size: 7.9MB - Virtual size: 7.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

88894c8fc22f6f6400cf28dcad48f20b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comctl32

user32

Sections

Size: - Virtual size: 280KB

.Hkh Size: - Virtual size: 3.3MB

.idata Size: - Virtual size: 4KB

rkcaunfh Size: - Virtual size: 816KB

qercsekw Size: - Virtual size: 4KB

.\"3 Size: - Virtual size: 1.1MB

.R@Z Size: 1024B - Virtual size: 864B

.4M8 Size: 7.9MB - Virtual size: 7.9MB

.reloc Size: 2KB - Virtual size: 1KB

.rsrc Size: 3.2MB - Virtual size: 3.2MB

.Hkh
Size: - Virtual size: 3.3MB

.idata
Size: - Virtual size: 4KB

rkcaunfh
Size: - Virtual size: 816KB

qercsekw
Size: - Virtual size: 4KB

.\"3
Size: - Virtual size: 1.1MB

.R@Z
Size: 1024B - Virtual size: 864B

.4M8
Size: 7.9MB - Virtual size: 7.9MB

.reloc
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 3.2MB - Virtual size: 3.2MB