4edbe824e7d0c275d55302dfdeec34a3

Sharing

Copy URL Twitter E-mail

General

Target

4edbe824e7d0c275d55302dfdeec34a3
Size

342KB
MD5

4edbe824e7d0c275d55302dfdeec34a3
SHA1

c0b5ef960e27124d77f0290752bfa219f3de620b
SHA256

915506bad73765143d81cdae28aeb139c20b4c289855aa211e2e972533255a5a
SHA512

48c7996eff93e24fdb9ff2ab1d5481b43908501a58f89c3c7b5b7dd0b6e0e7bc56ebba125626e9b05b049145a7c4b52375c6a8eae0362625a0e7bbb3cc64116d
SSDEEP

6144:hNX/OGbb0opD+KBnCg17xASkNWXOvYyKqljm2t5tZw0ytNBDNuDJszP:HPgaawnhyoXO3KWtw5XBDNuDi

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SuperProxy.exe
unpack001/uninstall.exe

Files

4edbe824e7d0c275d55302dfdeec34a3
.zip
Address.Ini
EN_Res.ini
GB_Res.ini
SuperProxy.exe
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

.peco
Size: 257KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.peco
Size: 22KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.peco
Size: 7KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.peco
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
superproxy.ini
uninstall.exe
.exe windows:4 windows x86 arch:x86

288ade89447ba4759a6a1afe847c600d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
ExitProcess
VirtualAlloc
GetFileSize
CreateFileA
ReadFile
GetCommandLineA
SetCurrentDirectoryA
ResumeThread
SetThreadPriority
CreateProcessA
CloseHandle
WriteFile
GetCurrentDirectoryA
OpenMutexA
FindClose
FindFirstFileA
lstrcpyA
lstrcpynA
lstrcatA
GetShortPathNameA
GetFileAttributesA
WritePrivateProfileStringA
GetPrivateProfileStringA
Sleep
DeleteFileA
SetFileAttributesA
FindNextFileA
RemoveDirectoryA
CopyFileA
SetFilePointer
GetWindowsDirectoryA
GetTempPathA
CompareStringA
InterlockedIncrement
GetModuleHandleA
MultiByteToWideChar
SetErrorMode
LoadLibraryExA
GetLastError
GetProcAddress
lstrlenA
FreeLibrary
LoadLibraryA
WaitForSingleObject
GetModuleFileNameA

user32

GetWindowLongA
LoadIconA
SetClassLongA
SendMessageA
EndDialog
DialogBoxParamA
ShowWindow
SetWindowPos
PostMessageA
SetDlgItemTextA
FindWindowA
EnumWindows
GetWindowTextA
wvsprintfA
MessageBoxA
wsprintfA
SetWindowTextA
GetWindowRect
GetDlgItem
EnableWindow
SendDlgItemMessageA

gdi32

RemoveFontResourceA

advapi32

RegCloseKey
RegEnumKeyExA
RegOpenKeyExA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA

shell32

SHChangeNotify

ole32

OleInitialize
OleUninitialize

oleaut32

LoadTypeLi
UnRegisterTypeLi

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Shared
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninstall.ini
user.ini
ǳԴ.url
.url
˵.htm
.html .js polyglot

Sharing

General

Malware Config

Signatures

Files

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

Imports

kernel32

user32

Sections

.peco Size: 257KB - Virtual size: 568KB

.peco Size: 22KB - Virtual size: 84KB

.peco Size: 7KB - Virtual size: 68KB

.rsrc Size: 31KB - Virtual size: 136KB

.peco Size: 10KB - Virtual size: 12KB

288ade89447ba4759a6a1afe847c600d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 512B - Virtual size: 4B

.data Size: 1024B - Virtual size: 8KB

.idata Size: 2KB - Virtual size: 2KB

.Shared Size: 512B - Virtual size: 4B

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 1KB - Virtual size: 1KB

.peco
Size: 257KB - Virtual size: 568KB

.peco
Size: 22KB - Virtual size: 84KB

.peco
Size: 7KB - Virtual size: 68KB

.rsrc
Size: 31KB - Virtual size: 136KB

.peco
Size: 10KB - Virtual size: 12KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 512B - Virtual size: 4B

.data
Size: 1024B - Virtual size: 8KB

.idata
Size: 2KB - Virtual size: 2KB

.Shared
Size: 512B - Virtual size: 4B

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 1KB - Virtual size: 1KB