0b2a2fbd1f5941b400a499de24e812fe

Sharing

Copy URL Twitter E-mail

General

Target

0b2a2fbd1f5941b400a499de24e812fe
Size

1.0MB
MD5

0b2a2fbd1f5941b400a499de24e812fe
SHA1

1fa6e7eeef3c21f81c0dbcaf1c7b357418f374dd
SHA256

6b57825788918635e4fc926ada4c4003260e8614ce2301f326e65d30b9cdb25a
SHA512

351d71bc57e87cf2ed38b65f07863cf100fe5c264c3a32428b57eacc19859d0827b7398f6dd33bcdb60945fe65249399cf40be0a3d759e84869ab8d32e3c2b97
SSDEEP

24576:WyUysEI/X++Z2dsqZPdLDJQ4b9X5UEI//0hTibMtWOFKrbkq7rHxx8Na:WyUI8X+dZJJXj86TgOwr4qfxx8Na

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/3D Theme.exe
unpack001/Patch.exe

Files

0b2a2fbd1f5941b400a499de24e812fe
.rar
3D Theme.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 131B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 764KB - Virtual size: 764KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
3D Theme.jpg
.jpg
Patch.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 131B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 764KB - Virtual size: 764KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Read Me.txt

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 64KB - Virtual size: 63KB

.sdata Size: 512B - Virtual size: 131B

.rsrc Size: 764KB - Virtual size: 764KB

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 64KB - Virtual size: 63KB

.sdata Size: 512B - Virtual size: 131B

.rsrc Size: 764KB - Virtual size: 764KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 64KB - Virtual size: 63KB

.sdata
Size: 512B - Virtual size: 131B

.rsrc
Size: 764KB - Virtual size: 764KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 64KB - Virtual size: 63KB

.sdata
Size: 512B - Virtual size: 131B

.rsrc
Size: 764KB - Virtual size: 764KB

.reloc
Size: 512B - Virtual size: 12B