Overview

overview

8

Static

static

3

FOVhnXH.exe

windows11-21h2-x64

8

$PLUGINSDI...em.dll

windows11-21h2-x64

3

$PLUGINSDI...er.bmp

windows11-21h2-x64

3

TunSafe.exe

windows11-21h2-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    FOVhnXH.exe

  • Size

    400KB

  • MD5

    740438689ddae62c0f6307d3b65bf501

  • SHA1

    1cec849b15a5f9b3789c1b55e4fef7330579a8da

  • SHA256

    398d7637767bcc3f7c650256afe0cf68e6771b7d725299806f78167b84a0793b

  • SHA512

    350603ae25e1efa34166a201be41f60fe72025296d461b75bb6dec43913789a706d8d876c7611150df3ade8174c5e870d89c151bb350772d94cb6e3e4c32868f

  • SSDEEP

    6144:AaB0tMeEqoAVihTTUgBRZkOqHbCMHTEjTZJr8aMko+KpulNzQxgLtVehd:90tMeEqo9hT4gGOvmTIH4Lko+AwUxEta

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • FOVhnXH.exe
    .exe windows:4 windows x86 arch:x86

    57e98d9a5a72c8d7ad8fb7a6a58b3daf


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • TunSafe.exe
    .exe windows:6 windows x64 arch:x64

    de95da01118ff85071193e08e4d5cd33


    Code Sign

    Headers

    Imports

    Sections