748846428f3eedadc3c580c527ac805f7dd9f8e1d7d9679c7f9da19fa0f1c76e

Sharing

Copy URL Twitter E-mail

General

Target

748846428f3eedadc3c580c527ac805f7dd9f8e1d7d9679c7f9da19fa0f1c76e
Size

4.4MB
MD5

8206b868c0481c8d9192da873600f5f4
SHA1

5b665297b6c534ba097bf0b405453e29a9d63bda
SHA256

748846428f3eedadc3c580c527ac805f7dd9f8e1d7d9679c7f9da19fa0f1c76e
SHA512

e67aea860bd8a719f8e2e35faf0cf1e332f726a23363fa500fa68bb39c5f61ee03cd51106797ac7b965a67c7a171fbb35cfb2718f724aa69cbb182913c5af7ef
SSDEEP

98304:UxWHerZOA52zIsLP1JNksMt0xGtOlgmr2C:JHdA6IcPnNkzt0xGtOSm/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
748846428f3eedadc3c580c527ac805f7dd9f8e1d7d9679c7f9da19fa0f1c76e

Files

748846428f3eedadc3c580c527ac805f7dd9f8e1d7d9679c7f9da19fa0f1c76e
.xll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetUSBDriveInfo
RtmGetVersion
RtmGetVersion2
StartupFunc
WeRTlwN
XyWaaQ
cWeuyRtj
xlAddInManagerInfo
xlAddInManagerInfo12
xlAutoClose
xlAutoOpen

Sections

Size: 560KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 110KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 11KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 294KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 297KB - Virtual size: 13.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 560KB - Virtual size: 1.5MB

Size: 110KB - Virtual size: 336KB

Size: 2KB - Virtual size: 36KB

Size: - Virtual size: 84KB

Size: 3KB - Virtual size: 4KB

Size: 512B - Virtual size: 4KB

Size: 11KB - Virtual size: 328KB

Size: 2KB - Virtual size: 8KB

.rsrc Size: 294KB - Virtual size: 296KB

Size: 297KB - Virtual size: 13.0MB

Size: 3.2MB - Virtual size: 3.2MB

.rsrc
Size: 294KB - Virtual size: 296KB