OGR_1-3[.]zip | Triage

Resubmissions

21/02/2024, 00:46

240221-a44e8agg4t 9

21/02/2024, 00:43

240221-a2x6esgg2y 9

Sharing

Copy URL

Twitter E-mail

General

Target

OGR_1-3.zip
Size

2.7MB
MD5

e67d9a6533c29fbb4f042d9dc8864c59
SHA1

acc0373e9a4fd58fd44e2bd00ac4ca773acd2573
SHA256

616e24989f1bdb1b8b78cbb946845fa9cdb971f9aa738acf5b6a146c80fd2b46
SHA512

f219c68e9b140b728692cd78ac1101cfda87bbbd8080292f1d57602a6df2d0c67c9212a3571d8cf698a65dce5b1f7ba11281de29770c0c1a1ee9cce56b8a0541
SSDEEP

49152:1iUxQuFaoFlLfiIzJWeJ+sTpMf3ZxX9O+MCb/yiEb2PDGlqGkI9:EmBljiMJIssn9Zz7yJcDS9

Score

3^/10

Malware Config

Signatures

Unsigned PE 7 IoCs

Checks for missing Authenticode signature.

resource
unpack001/OGR.exe
unpack001/OGR_Fre.dll
unpack001/OGR_Ger.dll
unpack001/OGR_Mar.dll
unpack001/OGR_Rus.dll
unpack001/OGR_Spa.dll
unpack001/OGR_Ukr.dll

Files

OGR_1-3.zip
.zip
OGR.cfg
OGR.exe
.exe windows:5 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 1.2MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

drkekthw
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ltlobknn
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
OGR_Fre.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
OGR_Ger.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
OGR_Mar.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 167KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
OGR_Rus.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
OGR_Spa.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
OGR_Ukr.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comctl32

Sections

Size: 1.2MB - Virtual size: 2.3MB

.rsrc Size: 52KB - Virtual size: 153KB

.idata Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 1.8MB

drkekthw Size: 1.2MB - Virtual size: 1.2MB

ltlobknn Size: 512B - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

.rsrc Size: 168KB - Virtual size: 168KB

Headers

DLL Characteristics

File Characteristics

Sections

.rsrc Size: 168KB - Virtual size: 167KB

Headers

DLL Characteristics

File Characteristics

Sections

.rsrc Size: 167KB - Virtual size: 166KB

Headers

DLL Characteristics

File Characteristics

Sections

.rsrc Size: 168KB - Virtual size: 167KB

Headers

DLL Characteristics

File Characteristics

Sections

.rsrc Size: 168KB - Virtual size: 168KB

Headers

DLL Characteristics

File Characteristics

Sections

.rsrc Size: 167KB - Virtual size: 167KB

.rsrc
Size: 52KB - Virtual size: 153KB

.idata
Size: 512B - Virtual size: 4KB

drkekthw
Size: 1.2MB - Virtual size: 1.2MB

ltlobknn
Size: 512B - Virtual size: 4KB

.rsrc
Size: 168KB - Virtual size: 168KB

.rsrc
Size: 168KB - Virtual size: 167KB

.rsrc
Size: 167KB - Virtual size: 166KB

.rsrc
Size: 168KB - Virtual size: 167KB

.rsrc
Size: 168KB - Virtual size: 168KB

.rsrc
Size: 167KB - Virtual size: 167KB