90a0b266c274a3a096267485ce177202dac4c69cb2ce161768fd9ad24772b6e8

Sharing

Copy URL Twitter E-mail

General

Target

90a0b266c274a3a096267485ce177202dac4c69cb2ce161768fd9ad24772b6e8
Size

3.2MB
MD5

a7231bb874bf89031c3d6dfb8a147222
SHA1

c8622a2b610d96a416c0734fdc7fad1e817fe1ae
SHA256

90a0b266c274a3a096267485ce177202dac4c69cb2ce161768fd9ad24772b6e8
SHA512

bfc454f909d42f029b0134843c4bdf860541cc2f1b5b4d2582ec859153a89c40422f3fdf7e7912d507199579b6278c3c8766b82c6b0ab9c39866a64a09128cc1
SSDEEP

98304:B/jdFxfCRsassTxQzULhQnZLqTuQKuRUTgf2vNmRaP:/KZsiOzUGLqaQKuRUT0cmRaP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
90a0b266c274a3a096267485ce177202dac4c69cb2ce161768fd9ad24772b6e8

Files

90a0b266c274a3a096267485ce177202dac4c69cb2ce161768fd9ad24772b6e8
.exe windows:5 windows x86

b5d2932f78f4cad902ae4eeb5fb46860

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW

comdlg32

GetFileTitleW

gdi32

CreateDIBitmap

imm32

ImmGetOpenStatus

kernel32

GetACP

msimg32

AlphaBlend

netapi32

Netbios

oleacc

AccessibleObjectFromWindow

oleaut32

SysAllocStringLen

shell32

SHAppBarMessage

shlwapi

PathRemoveFileSpecW

user32

CopyIcon

wininet

InternetOpenA

winmm

PlaySoundW

winspool.drv

OpenPrinterW

ws2_32

gethostbyname

gdiplus

GdipDisposeImage

ole32

CoInitializeEx

oledlg

OleUIBusyW

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

CODE
Size: 1.7MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5d2932f78f4cad902ae4eeb5fb46860

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

comdlg32

gdi32

imm32

kernel32

msimg32

netapi32

oleacc

oleaut32

shell32

shlwapi

user32

wininet

winmm

winspool.drv

ws2_32

gdiplus

ole32

oledlg

msvcrt

iphlpapi

psapi

Sections

CODE Size: 1.7MB - Virtual size: 2.6MB

.idata Size: 1.5MB - Virtual size: 1.5MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 27KB - Virtual size: 28KB

.idata Size: 4KB - Virtual size: 4KB

CODE
Size: 1.7MB - Virtual size: 2.6MB

.idata
Size: 1.5MB - Virtual size: 1.5MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 27KB - Virtual size: 28KB

.idata
Size: 4KB - Virtual size: 4KB