BallinHoop-All in One (1)[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

BallinHoop-All in One (1).exe
Size

30.6MB
MD5

42fdb8155c7d72126ea45451b6ca51dd
SHA1

3c519434fa53b5e94fdac1c5f753b7fa15fc23a9
SHA256

b9122073885f3a90bfc4eb9c0c6e3ed1969402265d6321c44158cfb10afb6217
SHA512

eb954c2bc487ba5646d75181f0a679c21ca6f59ef2ccec07c676925dfedd2899db3f495aab62a8801b1b89918fc84450747da0dd2a0c9e74f4335f9225425c82
SSDEEP

786432:5JhvJ/sameSysPwcwiVoQJPCOXyicDIZipeuh5tcHKc3pD/:5XJ/P0waoQfXyrUZipvh5txc3Z/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
BallinHoop-All in One (1).exe

Files

BallinHoop-All in One (1).exe
.exe windows:4 windows x86 arch:x86

66f636fe2ee73380d21304c6a91abc8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
RaiseException

ole32

OleUninitialize

user32

PostMessageA
AppendMenuA

atl

ord47

shell32

DragQueryFileA
ShellExecuteA

gdi32

GetDeviceCaps
LineTo

advapi32

ControlService
RegQueryValueExA

winspool.drv

ClosePrinter
DocumentPropertiesA

comctl32

ord17
ImageList_Destroy

oledlg

ord8

oleaut32

SafeArrayUnaccessData
LoadTypeLi

shlwapi

PathFileExistsA

winmm

waveOutGetNumDevs

ws2_32

inet_addr

comdlg32

GetSaveFileNameA

Sections

.text
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 467KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 248KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.svmp1
Size: - Virtual size: 13.4MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp2
Size: 14.3MB - Virtual size: 14.3MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp3
Size: 4.8MB - Virtual size: 4.8MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svmp4
Size: 11.3MB - Virtual size: 11.3MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

66f636fe2ee73380d21304c6a91abc8a

Headers

File Characteristics

Imports

kernel32

ole32

user32

atl

shell32

gdi32

advapi32

winspool.drv

comctl32

oledlg

oleaut32

shlwapi

winmm

ws2_32

comdlg32

Sections

.text Size: - Virtual size: 1.3MB

.rdata Size: - Virtual size: 2.2MB

.data Size: - Virtual size: 467KB

.rsrc Size: 248KB - Virtual size: 244KB

.svmp1 Size: - Virtual size: 13.4MB

.svmp2 Size: 14.3MB - Virtual size: 14.3MB

.svmp3 Size: 4.8MB - Virtual size: 4.8MB

.svmp4 Size: 11.3MB - Virtual size: 11.3MB

.text
Size: - Virtual size: 1.3MB

.rdata
Size: - Virtual size: 2.2MB

.data
Size: - Virtual size: 467KB

.rsrc
Size: 248KB - Virtual size: 244KB

.svmp1
Size: - Virtual size: 13.4MB

.svmp2
Size: 14.3MB - Virtual size: 14.3MB

.svmp3
Size: 4.8MB - Virtual size: 4.8MB

.svmp4
Size: 11.3MB - Virtual size: 11.3MB