Overview

overview

7

Static

static

3

d526777a06...6b.exe

windows7-x64

7

d526777a06...6b.exe

windows10-2004-x64

7

$PLUGINSDI...bw.dll

windows7-x64

3

$PLUGINSDI...bw.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    d526777a060e6de8bd3836dab189086b

  • Size

    600KB

  • MD5

    d526777a060e6de8bd3836dab189086b

  • SHA1

    ea64b25f100deb66fac1740ff0a89e7b16badbbd

  • SHA256

    203d9903378e59d51dd61f72bfbfe628dee90a1048783fb7780f092a9d9b5bd8

  • SHA512

    7f7e5838db3964aefbd2015cd50500908157b97e0ee2c8bc768fce00b74160eb3f5c3024aa2ec15920621d634451d1aeb2d46375433215648593d31e2d842e6a

  • SSDEEP

    12288:Rcog58hb12bqvUDo5loByu7eMnbWAqBZuyjcktWTEm2:Rcog5eIqvhoPLFqnuickWy

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • d526777a060e6de8bd3836dab189086b
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nraigbw.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431842534.fbhcabfbdebe