fd0afcef607c2a0c164a42c1412a6e1f6bb1da05170bfe63538a645a20ff560a

Sharing

Copy URL Twitter E-mail

General

Target

fd0afcef607c2a0c164a42c1412a6e1f6bb1da05170bfe63538a645a20ff560a
Size

1.4MB
MD5

a2facc698383acd77f8ad038febc23f7
SHA1

bdc41d3a0536fe0ee1db61c45566aaf61cf6c6e7
SHA256

fd0afcef607c2a0c164a42c1412a6e1f6bb1da05170bfe63538a645a20ff560a
SHA512

df02fb49322c280dcf79cf93ac2861f9ef8694094830883e7d1b0c702b04dd130a242be5fb44dd1cb9a33b18437f983eb8a6ec1af9b6f80254364d333fcd0b91
SSDEEP

24576:nldjq+e3xrMrap+AFTGOkxLyHGawnktuMf4zjIsEQDiAzh/CUBJwJRV2cEOs:lFK3xrMraYAF4gmaZ1qHzh/CUoR9En

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd0afcef607c2a0c164a42c1412a6e1f6bb1da05170bfe63538a645a20ff560a

Files

fd0afcef607c2a0c164a42c1412a6e1f6bb1da05170bfe63538a645a20ff560a
.exe windows:4 windows x86

895a0d7b91e04787810dc044d68893d8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

kernel32

GetEnvironmentStringsW

user32

GetSysColorBrush

gdi32

SaveDC

winmm

midiStreamRestart

winspool.drv

ClosePrinter

comdlg32

ChooseColorA

advapi32

RegCreateKeyExA

shell32

Shell_NotifyIconA

ole32

CoFreeUnusedLibraries

oleaut32

VariantCopy

comctl32

_TrackMouseEvent

oledlg

ord8

ws2_32

getpeername

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 464KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1000KB - Virtual size: 1000KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

895a0d7b91e04787810dc044d68893d8

Headers

File Characteristics

Imports

msvfw32

avifil32

kernel32

user32

gdi32

winmm

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

ws2_32

msvcrt

iphlpapi

psapi

Sections

.text Size: 464KB - Virtual size: 1.0MB

.sedata Size: 1000KB - Virtual size: 1000KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 464KB - Virtual size: 1.0MB

.sedata
Size: 1000KB - Virtual size: 1000KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.sedata
Size: 4KB - Virtual size: 4KB