Memory stick drive increaser by umar[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

Memory stick drive increaser by umar.rar
Size

34KB
MD5

4ed282f922695399c860d39a9581d33d
SHA1

90e0f6576e3630db19efbe3e1e3a88473fba114c
SHA256

86cca8fc375d6d9036a345d7eda5c1aa1fe780614f297214a2dcea14175eb8c4
SHA512

572b45f751c30b709eb8512807ec4bb741a6bc71459f7ff5072c4847180dabdd124da666cdf12d2e2685d8fa2ba917a1e3b42dc68c5a18cc9e49ccf0c74f76cb
SSDEEP

768:RvjNmOQWJ7GKP6p9rA+GFQLh3TNEY36UYr0QvLIOdbf:hRmmJ7GKi8FQLhRT36UYLEYbf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Memory stick drive increaser 1/Drive increaser/mkdosfs.exe

Files

Memory stick drive increaser by umar.rar
.rar

Password: admin5467
Memory stick drive increaser 1/Drive increaser/Drive Increaser 2.bat
Memory stick drive increaser 1/Drive increaser/mkdosfs.8
Memory stick drive increaser 1/Drive increaser/mkdosfs.exe
.exe windows:4 windows x86 arch:x86

Password: admin5467

e5d2c92352d0f401700acdd05cacc36f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
CloseHandle
SetEndOfFile
GetLastError
CreateFileA
ReadFile
WriteFile
SetFilePointer
DeviceIoControl
LocalFree
FormatMessageA
GetFileInformationByHandle
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetVersionExA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FlushFileBuffers
WideCharToMultiByte
GetTimeZoneInformation
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapSize
SetStdHandle
MultiByteToWideChar
VirtualProtect
GetSystemInfo
VirtualQuery
GetStringTypeA
GetStringTypeW
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
InterlockedExchange
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetLocaleInfoA
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
SetEnvironmentVariableA

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Memory stick drive increaser 1/OneNote Table Of Contents.onetoc2
Memory stick drive increaser 1/desktop.ini

Sharing

General

Malware Config

Signatures

Files

Password: admin5467

Password: admin5467

e5d2c92352d0f401700acdd05cacc36f

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 21KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 21KB