be0fc0af35866bf6dbcdbe6cfcd78ff2

Sharing

Copy URL

Twitter E-mail

General

Target

be0fc0af35866bf6dbcdbe6cfcd78ff2
Size

657KB
MD5

be0fc0af35866bf6dbcdbe6cfcd78ff2
SHA1

d9c9754f933fdccb4fd24d23e18b1aaa1e5ad5c4
SHA256

30b50c9a1de2f21ef1eb78f18695bcb0f3989fff880a4872a3be3458d5f73433
SHA512

067ed109490e633a61583f5439d65e0d8d6478045f1c4b0746d2b22f4dd759fe09d6712c9546ff83712f8c164aae0850b2910cc2428e54d397521f33edfa0adb
SSDEEP

12288:tSC0BcjoAfPV/1Z0QKupUAD5jd1kBEoeFh5dOKfAwbVTEiP34oHfV6MXWmOBKvN:tb0BmHfPV/1Z0HupDDpdaOLh5dOKBEiD

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Keygen.exe
unpack001/Mocha.Telnet.v3.2.XScale.Smartphone200x.Incl.Keygen-SyMPDA/Keygen.exe
unpack001/Mocha.Telnet.v3.2.XScale.Smartphone200x.Incl.Keygen-SyMPDA/sym-wmsmtelnetsp.exe

Files

be0fc0af35866bf6dbcdbe6cfcd78ff2
.rar
Keygen.exe
.exe windows:4 windows x86 arch:x86

f68593a373520b692a6ff585f76069ba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
ExitProcess
FindAtomA
GetAtomNameA
GetModuleHandleA
GetProcAddress
LoadLibraryExA
SetUnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
abort
atexit
free
malloc
memcpy
signal

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 208B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 764B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stab
Size: - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Mocha.Telnet.v3.2.XScale.Smartphone200x.Incl.Keygen-SyMPDA/Keygen.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1024B - Virtual size: 998B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 470KB - Virtual size: 470KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Mocha.Telnet.v3.2.XScale.Smartphone200x.Incl.Keygen-SyMPDA/file_id.diz
Mocha.Telnet.v3.2.XScale.Smartphone200x.Incl.Keygen-SyMPDA/sym-wmsmtelnetsp.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1024B - Virtual size: 998B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 298KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Mocha.Telnet.v3.2.XScale.Smartphone200x.Incl.Keygen-SyMPDA/sympda.nfo

Sharing

General

Malware Config

Signatures

Files

f68593a373520b692a6ff585f76069ba

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 128B

.rdata Size: 512B - Virtual size: 448B

.bss Size: - Virtual size: 208B

.idata Size: 1024B - Virtual size: 764B

.reloc Size: 11KB - Virtual size: 11KB

.stab Size: - Virtual size: 512B

Headers

File Characteristics

Sections

.text Size: 1024B - Virtual size: 998B

.data Size: 470KB - Virtual size: 470KB

.rsrc Size: 1024B - Virtual size: 1024B

Headers

File Characteristics

Sections

.text Size: 1024B - Virtual size: 998B

.data Size: 298KB - Virtual size: 297KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 128B

.rdata
Size: 512B - Virtual size: 448B

.bss
Size: - Virtual size: 208B

.idata
Size: 1024B - Virtual size: 764B

.reloc
Size: 11KB - Virtual size: 11KB

.stab
Size: - Virtual size: 512B

.text
Size: 1024B - Virtual size: 998B

.data
Size: 470KB - Virtual size: 470KB

.rsrc
Size: 1024B - Virtual size: 1024B

.text
Size: 1024B - Virtual size: 998B

.data
Size: 298KB - Virtual size: 297KB

.rsrc
Size: 1KB - Virtual size: 1KB