4c5033beecbeedb022fe810c3ccd3393

Sharing

Copy URL Twitter E-mail

General

Target

4c5033beecbeedb022fe810c3ccd3393
Size

598KB
MD5

4c5033beecbeedb022fe810c3ccd3393
SHA1

564994b2f33b5cd8df6b9825229c6a8bb443e7b3
SHA256

f53da3c4d52e3ca2d13f7d947fc34605bd7240ef6dd221920d3808ad329ff3d0
SHA512

5ff13379c9b4a8211e04b85d174b62ac2e23ad0b583a0aca7e8ad321aa04df2c45d033506843f0b0b78fb5fd6090bbc3740fcd31c144cb8f2f7fe421170ec318
SSDEEP

12288:8MqMgH5tCp6YECunKc/6u2fGNwLgdPQAght0r73sIQG7Q8lIP8wE:8ME9Y1uKI2fvg+ksIc2qhE

Score

3^/10

Malware Config

Signatures

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Master.exe
unpack001/player.exe
unpack001/slave.exe
unpack001/uninstall_slave.exe

Files

4c5033beecbeedb022fe810c3ccd3393
.rar
Master.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Sn
Size: - Virtual size: 720KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

>��
Size: 289KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
file_id.diz
license.txt
player.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Sn
Size: - Virtual size: 176KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

>��
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
readme.txt
sample.flm
slave.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Sn
Size: - Virtual size: 296KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

>��
Size: 138KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
uninstall_slave.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Sn
Size: - Virtual size: 128KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

>��
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
vendor.txt
新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

Sn Size: - Virtual size: 720KB

>�� Size: 289KB - Virtual size: 292KB

.rsrc Size: 20KB - Virtual size: 24KB

Headers

File Characteristics

Sections

Sn Size: - Virtual size: 176KB

>�� Size: 52KB - Virtual size: 52KB

.rsrc Size: 2KB - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

Sn Size: - Virtual size: 296KB

>�� Size: 138KB - Virtual size: 140KB

.rsrc Size: 4KB - Virtual size: 8KB

Headers

File Characteristics

Sections

Sn Size: - Virtual size: 128KB

>�� Size: 18KB - Virtual size: 20KB

.rsrc Size: 2KB - Virtual size: 4KB

Sn
Size: - Virtual size: 720KB

>��
Size: 289KB - Virtual size: 292KB

.rsrc
Size: 20KB - Virtual size: 24KB

Sn
Size: - Virtual size: 176KB

>��
Size: 52KB - Virtual size: 52KB

.rsrc
Size: 2KB - Virtual size: 4KB

Sn
Size: - Virtual size: 296KB

>��
Size: 138KB - Virtual size: 140KB

.rsrc
Size: 4KB - Virtual size: 8KB

Sn
Size: - Virtual size: 128KB

>��
Size: 18KB - Virtual size: 20KB

.rsrc
Size: 2KB - Virtual size: 4KB