Overview

overview

7

Static

static

3

ca34f59787...57.exe

windows7-x64

7

ca34f59787...57.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDI...pw.dll

windows7-x64

3

$PLUGINSDI...pw.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    ca34f5978727d785667d28d0333ef657

  • Size

    677KB

  • MD5

    ca34f5978727d785667d28d0333ef657

  • SHA1

    8194ec9341d037ef79171d8acb46c6e7be529058

  • SHA256

    049872458a2389a8ee43a5a2081c6d3c93ef685113208cb8b460b1affcaa98c8

  • SHA512

    8d08c20eca1be1663bd7cd1033309a807ac55aa5f0c27992223a1e27021a35bdaa74a3071f8d29a712a29df7118653b6f06e02b5decff3f72354bc12ce1bdf20

  • SSDEEP

    12288:KZFkxxnYNxh6a5HYLeViPaQ+o8/GYpXdO2zcSHnPMepV8xAwKQs5ZYnGKrOu:KZFaFYNOSYuiPadoYGYJ82RHPMDo5ZYj

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • ca34f5978727d785667d28d0333ef657
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/qpderpw.dll
    .dll windows:6 windows x86 arch:x86

    ef0395c3130920c1f8c8dc12ea63a782


    Headers

    Imports

    Exports

    Sections

  • 1432026082.fbjcabficbdg