385dbc9e164cacd15ed5e89c7d2e9503 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

385dbc9e164cacd15ed5e89c7d2e9503
Size

3.8MB
MD5

385dbc9e164cacd15ed5e89c7d2e9503
SHA1

8cd195e8b796f2ddb083795b18d4260e7b79ac6a
SHA256

b7ab88afb8a795f9d73e57b8d8b9cf033663250d9757b187e1d9efb07ffc68e2
SHA512

9b0c78e8f91a5e6bd8ad474e9a115d18189fe86f697560c11df16a941487bb08bd80d6656fce20689418a27b55229956401b758f0ea845f0a0f3be630314f4ce
SSDEEP

98304:AM5oMFQKBP0W2swbYJye9YzektQa8ZxUltvJdr6:f5oCh0W2IJye9nktAZxsnF6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Smart Driver Updater 3.3.0.0 DC 16.04.2013 Rus Portable/Smart Driver Updater 3.3.0.0 DC 16.04.2013 Rus Portable.exe

Files

385dbc9e164cacd15ed5e89c7d2e9503
.rar
Smart Driver Updater 3.3.0.0 DC 16.04.2013 Rus Portable/Smart Driver Updater 3.3.0.0 DC 16.04.2013 Rus Portable.exe
.exe windows:5 windows x86 arch:x86

bc10594f0e5b090521adac523994d99c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
HeapFree
GetTickCount
GetModuleFileNameW
SetEnvironmentVariableW
GetSystemInfo
MapViewOfFile
GetLastError
CreateFileW
CreateFileMappingW
UnmapViewOfFile
GetFileInformationByHandle
CloseHandle
VirtualAlloc
VirtualFree
GetModuleHandleA
GetFileSizeEx
GetProcAddress
LoadLibraryW

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xcpad
Size: - Virtual size: 18.2MB

.idata
Size: 1024B - Virtual size: 654B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 289KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ