a139eb838509a9f336c5c41196e226e1

Sharing

Copy URL

Twitter E-mail

General

Target

a139eb838509a9f336c5c41196e226e1
Size

234KB
MD5

a139eb838509a9f336c5c41196e226e1
SHA1

ffb1e060536406efe64b1ad5671242d139b53cbe
SHA256

30e6dd43d727b94a5356540daae1318950d114c9d459e10722adf21efada1d17
SHA512

45bef8bb4f87fd42950b388c1c7d0680efd6b19ef796509218820b4b016e51a87c8261f434dbd817a5168f2c1a1a1675ffe852b87f2df3a9d7cf497d566d58ea
SSDEEP

6144:+VVYK8aNeg1bOSXF3eGYQxwf6uhaQx29U1gVlfloxtBEQ:+VVY8bOSXF3eGYQyThaQg9Vh8EQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a139eb838509a9f336c5c41196e226e1

Files

a139eb838509a9f336c5c41196e226e1
.exe windows:4 windows x86 arch:x86

16da28a7c245bd2c5422c8b8633df1f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

winmm

PlaySoundA

vulanhookpro

VulanHookDll

user32

CharNextA

gdi32

SetMapMode

comdlg32

GetSaveFileNameA

winspool.drv

ClosePrinter

advapi32

LookupPrivilegeValueA

shell32

Shell_NotifyIconA

comctl32

ord17

oledlg

ord8

ole32

CoRegisterMessageFilter

olepro32

ord253

oleaut32

SysStringLen

wsock32

WSAStartup

Sections

.text
Size: 112KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 59KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 22KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

16da28a7c245bd2c5422c8b8633df1f1

Headers

File Characteristics

Imports

kernel32

winmm

vulanhookpro

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

Sections

.text Size: 112KB - Virtual size: 320KB

.rsrc Size: 12KB - Virtual size: 12KB

.data Size: 59KB - Virtual size: 128KB

.text Size: 43KB - Virtual size: 43KB

.bss Size: - Virtual size: 22KB

.data Size: 7KB - Virtual size: 7KB

.text
Size: 112KB - Virtual size: 320KB

.rsrc
Size: 12KB - Virtual size: 12KB

.data
Size: 59KB - Virtual size: 128KB

.text
Size: 43KB - Virtual size: 43KB

.bss
Size: - Virtual size: 22KB

.data
Size: 7KB - Virtual size: 7KB