f7204eed37a52bdae21a2da8a0f4498251f8c30e340730c738e926aa8dc9b960

Sharing

Copy URL Twitter E-mail

General

Target

f7204eed37a52bdae21a2da8a0f4498251f8c30e340730c738e926aa8dc9b960
Size

1.6MB
MD5

162420e479c2f5a71f29f052f7fe5a01
SHA1

49cc82cfaec639f6c7371ab8e236273f67c5984b
SHA256

f7204eed37a52bdae21a2da8a0f4498251f8c30e340730c738e926aa8dc9b960
SHA512

6a95bfed806353cb6327562d063c82394f7300c01df6434ea4b184a8d6791ba625f2d3c2ff6900e2618ecc72d9a4cc1a8af115b2466bb886fa8ecc253df63d26
SSDEEP

49152:DIbH6g3jAe4O+F5Zp9vPM+yaZg9v2seIX6j6/dShjs8:UbH6g3M/zbvP/y2KusJP/QhJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7204eed37a52bdae21a2da8a0f4498251f8c30e340730c738e926aa8dc9b960

Files

f7204eed37a52bdae21a2da8a0f4498251f8c30e340730c738e926aa8dc9b960
.exe windows:4 windows x86

f47212eed18e1b90d76c9c4fbb4b8b77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

WSACleanup

version

VerLanguageNameA

kernel32

GetWindowsDirectoryA

user32

GetSystemMenu

gdi32

TextOutA

winspool.drv

OpenPrinterA

advapi32

RegQueryValueExA

shell32

Shell_NotifyIconA

ole32

CLSIDFromString

oleaut32

SysFreeString

comctl32

ord17

comdlg32

ChooseColorA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 500KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1004KB - Virtual size: 1004KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f47212eed18e1b90d76c9c4fbb4b8b77

Headers

File Characteristics

Imports

winmm

ws2_32

version

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

comdlg32

msvcrt

iphlpapi

psapi

Sections

.text Size: 500KB - Virtual size: 1.3MB

.sedata Size: 1004KB - Virtual size: 1004KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 72KB - Virtual size: 72KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 500KB - Virtual size: 1.3MB

.sedata
Size: 1004KB - Virtual size: 1004KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 72KB - Virtual size: 72KB

.sedata
Size: 4KB - Virtual size: 4KB