78678e4748fd99c8efcde5f658b34cfb

Sharing

Copy URL

Twitter E-mail

General

Target

78678e4748fd99c8efcde5f658b34cfb
Size

52KB
MD5

78678e4748fd99c8efcde5f658b34cfb
SHA1

78dd1153105ee0df76e1f5ab257d95bd0e4ce72d
SHA256

e0da3a1a1a002c2bf79821057abce9d8b94d651b8c32ee84573853c14e10eff6
SHA512

cefc5eb5fa493ca94a0410b773ca1c9ef5d9c2a3a70f3e9ccec248cb58e99e2e62a316f0369de8dbc44c6aa5d119a6d5545d0ad93309dda3e0fd32e6cf65508e
SSDEEP

768:f9XfnNylGVLE04PAq9fYAx/zNi0JsF9OPWX0cInnsHQLhAgBU2uL:fpfnYlId4P7fXU9KWENsW2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78678e4748fd99c8efcde5f658b34cfb

Files

78678e4748fd99c8efcde5f658b34cfb
.dll windows:4 windows x86 arch:x86

2b4ed0ac3c6cdaae645a6acdd44e4c4b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

SHEnumKeyExA
UrlCanonicalizeA

kernel32

Beep
DnsHostnameToComputerNameA
ExitProcess
GetComputerNameA
GetBinaryTypeA
CancelIo
BackupRead
lstrlenA
FlushViewOfFile
GetWindowsDirectoryW
GetCurrentDirectoryA
GetComputerNameW
GetCurrentDirectoryW
lstrcmpW
HeapAlloc
GetProcessHeap
HeapFree
GetSystemDirectoryA

advapi32

GetUserNameA
GetUserNameW

winmm

DrvGetModuleHandle
GetDriverModuleHandle
mmioOpenA

Exports

Exports

nfpeecc

Sections

.code
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 919B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 550B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b4ed0ac3c6cdaae645a6acdd44e4c4b

Headers

File Characteristics

Imports

shlwapi

kernel32

advapi32

winmm

Exports

Exports

Sections

.code Size: 22KB - Virtual size: 21KB

.rdata Size: 1024B - Virtual size: 919B

.data Size: 24KB - Virtual size: 24KB

.data Size: 512B - Virtual size: 1B

.rsrc Size: 512B - Virtual size: 1B

.reloc Size: 512B - Virtual size: 1B

.reloc Size: 512B - Virtual size: 1B

.rsrc Size: 1024B - Virtual size: 760B

.reloc Size: 1024B - Virtual size: 550B

.code
Size: 22KB - Virtual size: 21KB

.rdata
Size: 1024B - Virtual size: 919B

.data
Size: 24KB - Virtual size: 24KB

.data
Size: 512B - Virtual size: 1B

.rsrc
Size: 512B - Virtual size: 1B

.reloc
Size: 512B - Virtual size: 1B

.reloc
Size: 512B - Virtual size: 1B

.rsrc
Size: 1024B - Virtual size: 760B

.reloc
Size: 1024B - Virtual size: 550B