General

  • Target

    387068f7f7b37ece3b4a4e0b37778468

  • Size

    2.5MB

  • MD5

    387068f7f7b37ece3b4a4e0b37778468

  • SHA1

    c5051dc3fc713ad27438ceb7f4825f920f9d8e0d

  • SHA256

    6e1ecfbeb5f7b87342b86bc7f2ca02e556e7aca8041afc1092988ece59fca901

  • SHA512

    b256361baa016408414435603cf1725c5e45e14ce51cff3a7f2fff3718b0bee4e4d09cb5bd17ba740733a64066a387882755c46bac49bb60f4a264b9e0c10842

  • SSDEEP

    49152:i1z4i0/CMv1HaLyF1FXmeCeyYoY4H+VI+USuRWEZd31:Qcik5FHXmuyvHf/HL31

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs

Files

  • 387068f7f7b37ece3b4a4e0b37778468
    .rar
  • Keymaker/Keymaker.exe
    .exe windows:4 windows x86 arch:x86

    9932ea624e4641f4d49c2c307092d45f


    Headers

    Imports

    Sections

  • Patch/DocumentsRescuePro.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • arn.nfo
  • documentsrescuepro_setup.exe
    .exe windows:4 windows x86 arch:x86

    dd1742eadfc6df18ded3c26ae64ad610


    Headers

    Imports

    Sections

  • 安装说明.url
    .url