e63cc51fa2e53c6c783caca8d96c62bc7d69996c3cd3f7ded6b433eaee6c7f98

Sharing

Copy URL Twitter E-mail

General

Target

e63cc51fa2e53c6c783caca8d96c62bc7d69996c3cd3f7ded6b433eaee6c7f98
Size

3.4MB
MD5

5dd7f2a3ec1bd85b19818c69301d2a4a
SHA1

ff4110657da3123c5d25c388b41b6963a17f7574
SHA256

e63cc51fa2e53c6c783caca8d96c62bc7d69996c3cd3f7ded6b433eaee6c7f98
SHA512

5248d27ddb1bf24cb6fec4aa9283655e7ed469a00b2e7472837ecfa84d60b28b846f90546470a31347e1b926fc33fa6c5ad900da3ff6d3f54c8a95a8188fafd3
SSDEEP

98304:rL0P0ueQ4/JNFIg+m6RURuN1Jsvm3tw5/cuT:H0d4/JNOg+DFBwtcuT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e63cc51fa2e53c6c783caca8d96c62bc7d69996c3cd3f7ded6b433eaee6c7f98

Files

e63cc51fa2e53c6c783caca8d96c62bc7d69996c3cd3f7ded6b433eaee6c7f98
.exe windows:5 windows x86

b69794b441658b13cab09617792d755a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

xinput9_1_0

XInputGetCapabilities

kernel32

HeapAlloc

user32

ShowWindow

advapi32

OpenServiceA

winmm

timeGetTime

dwmapi

DwmExtendFrameIntoClientArea

d3d11

D3D11CreateDeviceAndSwapChain

imm32

ImmSetCompositionWindow

d3dcompiler_47

D3DCompile

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

shell32

SHGetFolderPathW

ws2_32

select

rasapi32

RasGetConnectStatusA

gdi32

LineTo

winspool.drv

OpenPrinterA

ole32

OleInitialize

oleaut32

SafeArrayUnaccessData

comctl32

ImageList_Destroy

wininet

InternetCloseHandle

comdlg32

GetSaveFileNameA

Sections

.text
Size: 302KB - Virtual size: 748KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 191KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b69794b441658b13cab09617792d755a

Headers

DLL Characteristics

File Characteristics

Imports

xinput9_1_0

kernel32

user32

advapi32

winmm

dwmapi

d3d11

imm32

d3dcompiler_47

msvcrt

iphlpapi

psapi

shell32

ws2_32

rasapi32

gdi32

winspool.drv

ole32

oleaut32

comctl32

wininet

comdlg32

Sections

.text Size: 302KB - Virtual size: 748KB

.sedata Size: 2.9MB - Virtual size: 2.9MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 191KB - Virtual size: 192KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 302KB - Virtual size: 748KB

.sedata
Size: 2.9MB - Virtual size: 2.9MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 191KB - Virtual size: 192KB

.sedata
Size: 4KB - Virtual size: 4KB