dd9cd8478149a32518c1eac8b507a29d7c86107d3f17e9f37be42e04620daeb4

Sharing

Copy URL

Twitter E-mail

General

Target

dd9cd8478149a32518c1eac8b507a29d7c86107d3f17e9f37be42e04620daeb4
Size

3.4MB
MD5

43d86e6f3a90eb82bf19c09fec44ce62
SHA1

4256ba87c0506703ad1231f11798d2018b51ae3e
SHA256

dd9cd8478149a32518c1eac8b507a29d7c86107d3f17e9f37be42e04620daeb4
SHA512

78a2fa086eacdbe92671fe9012e22c34556192420d884823e93be757139cda1c4fa9f4ec23b6fb36bec59fd85219f1feb0798af1d2f21ed3e725edcd133d1cbc
SSDEEP

49152:Gm8+JcLMu9AirAz2VYPd5nRYj0M+xY/RLlg0K9VBuG5MB6pVY9W0PM2:Y3OgA6VYPdRCt+mRxwuG5azM2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd9cd8478149a32518c1eac8b507a29d7c86107d3f17e9f37be42e04620daeb4

Files

dd9cd8478149a32518c1eac8b507a29d7c86107d3f17e9f37be42e04620daeb4
.exe windows:4 windows x86

b74eef0392500860a4c7696a174b9a3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersInfo

winmm

midiStreamOut

ws2_32

socket

rasapi32

RasGetConnectStatusA

kernel32

TerminateThread

user32

SetTimer

gdi32

RectVisible

winspool.drv

DocumentPropertiesA

advapi32

RegQueryValueExA

shell32

Shell_NotifyIconA

ole32

StgCreateDocfileOnILockBytes

oleaut32

VariantChangeType

comctl32

ord17

oledlg

ord8

wininet

InternetCanonicalizeUrlA

comdlg32

GetFileTitleA

msvcrt

strncpy

psapi

GetMappedFileNameW

Sections

.text
Size: 2.3MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.m
Size: 1024KB - Virtual size: 1024KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.m
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b74eef0392500860a4c7696a174b9a3a

Headers

File Characteristics

Imports

iphlpapi

winmm

ws2_32

rasapi32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

wininet

comdlg32

msvcrt

psapi

Sections

.text Size: 2.3MB - Virtual size: 3.6MB

.m Size: 1024KB - Virtual size: 1024KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 28KB - Virtual size: 28KB

.m Size: 4KB - Virtual size: 4KB

.text
Size: 2.3MB - Virtual size: 3.6MB

.m
Size: 1024KB - Virtual size: 1024KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 28KB - Virtual size: 28KB

.m
Size: 4KB - Virtual size: 4KB