8548200f90702806086442d86c824f66b4b454b944a7a942b7ca42a457c68d48

Sharing

Copy URL Twitter E-mail

General

Target

8548200f90702806086442d86c824f66b4b454b944a7a942b7ca42a457c68d48
Size

3.5MB
MD5

f8ab0af7becca42e0244604b24f9d34b
SHA1

a073c0da67158461f9823b065ddc9efbec63283e
SHA256

8548200f90702806086442d86c824f66b4b454b944a7a942b7ca42a457c68d48
SHA512

c3d3f5bf9ebf8dca25ad32d1a0fd0fb96233f27f3a6cf23c085be22ec1e20b77ad686283c941b2cb9350f1d9eb1bcff5b817bfa0eabe66d337f0864f5d075105
SSDEEP

49152:SmLrD0wkrBarBJL0iTmCdHGQUUmgkV/wl6kLmZTCW8WeptoKYqjb4rOq0vTLRIzg:v0wK0gi3mBpV/wURBypUqjb4qvTFIZ6F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8548200f90702806086442d86c824f66b4b454b944a7a942b7ca42a457c68d48

Files

8548200f90702806086442d86c824f66b4b454b944a7a942b7ca42a457c68d48
.exe windows:6 windows x86

e237a24820b4cc8bbefe2deee7ee8623

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW

user32

InvalidateRgn

gdi32

CreateCompatibleDC

msimg32

TransparentBlt

winspool.drv

ClosePrinter

advapi32

RegEnumKeyA

shell32

SHGetMalloc

comctl32

InitCommonControlsEx

shlwapi

StrStrA

uxtheme

GetThemePartSize

ole32

OleLockRunning

oleaut32

VarBstrFromDate

oledlg

ord8

gdiplus

GdipCreateFromHDC

iphlpapi

GetAdaptersInfo

oleacc

LresultFromObject

imm32

ImmReleaseContext

winmm

PlaySoundA

msvcrt

strncpy

psapi

GetMappedFileNameW

Sections

.text
Size: 2.1MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e237a24820b4cc8bbefe2deee7ee8623

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

iphlpapi

oleacc

imm32

winmm

msvcrt

psapi

Sections

.text Size: 2.1MB - Virtual size: 4.0MB

.sedata Size: 1.2MB - Virtual size: 1.2MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 280KB - Virtual size: 280KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 2.1MB - Virtual size: 4.0MB

.sedata
Size: 1.2MB - Virtual size: 1.2MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 280KB - Virtual size: 280KB

.sedata
Size: 4KB - Virtual size: 4KB