408648015ec99e886ea8d2294a015ab38174ad782dcafc3609928c63dd77c436

Sharing

Copy URL Twitter E-mail

General

Target

408648015ec99e886ea8d2294a015ab38174ad782dcafc3609928c63dd77c436
Size

6.9MB
MD5

3873e5a18ed11e1873be3339ab64b842
SHA1

fc78cf6609106657c7be1754734f6e1f9923eaa7
SHA256

408648015ec99e886ea8d2294a015ab38174ad782dcafc3609928c63dd77c436
SHA512

386f81253c3f2b431b361057432b3a81f4746d4905caa8bd855551af95aede3398c56ad1dfa70ab69223dc13519a870dd8ae15ab0f76193821838eac54b49952
SSDEEP

98304:JUxtgVehxzwF+BFuK8cKYpebKuFKZ2e7A9TmQnaLfbQR15HPvsInb8cMX7rMGFR1:+xtgyOI8qpRwSRwTmQUG1ZvsI/6kGj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
408648015ec99e886ea8d2294a015ab38174ad782dcafc3609928c63dd77c436

Files

408648015ec99e886ea8d2294a015ab38174ad782dcafc3609928c63dd77c436
.dll windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

AlphaBlend
DllInitialize
GradientFill
TransparentBlt
cad
vSetDdrawflag

Sections

.flat
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Kj?
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

._Jt
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.B+9
Size: - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

jdkey1
Size: 3.3MB - Virtual size: 5.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jdkey2
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

.flat Size: - Virtual size: 4KB

.text Size: - Virtual size: 24KB

.rdata Size: - Virtual size: 24KB

.data Size: - Virtual size: 12KB

.pdata Size: - Virtual size: 4KB

.Kj? Size: - Virtual size: 1.5MB

._Jt Size: - Virtual size: 4KB

.B+9 Size: - Virtual size: 3.4MB

jdkey1 Size: 3.3MB - Virtual size: 5.0MB

jdkey2 Size: 3.7MB - Virtual size: 3.7MB

.rsrc Size: 512B - Virtual size: 4KB

.flat
Size: - Virtual size: 4KB

.text
Size: - Virtual size: 24KB

.rdata
Size: - Virtual size: 24KB

.data
Size: - Virtual size: 12KB

.pdata
Size: - Virtual size: 4KB

.Kj?
Size: - Virtual size: 1.5MB

._Jt
Size: - Virtual size: 4KB

.B+9
Size: - Virtual size: 3.4MB

jdkey1
Size: 3.3MB - Virtual size: 5.0MB

jdkey2
Size: 3.7MB - Virtual size: 3.7MB

.rsrc
Size: 512B - Virtual size: 4KB