dfb2b77967375acac7c5d59fecf92746

Sharing

Copy URL

Twitter E-mail

General

Target

dfb2b77967375acac7c5d59fecf92746
Size

876KB
MD5

dfb2b77967375acac7c5d59fecf92746
SHA1

87a45089eedb809ea54d4c81a57b325fef89c90d
SHA256

07b58befa991d8cec7e063ebfdb2316f262b04483d0a4e9228eda56ffc66926c
SHA512

2186ecca0a33b4cf8a1f75413acffee1de09c88432bc0e36faabdfd3a9a1a23b5543165775370cd8c76683643e0fc405965ddba6a3105a2515a72450c86a027b
SSDEEP

12288:gB3KB3lpypxNO2Pjs0LM/zkRXqD/WxezWmutOVMKdy+Ti3IDQzf0k33pNpg5XxtW:gtyiNBY0+z1geYLJV3ID89HdYXxBe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfb2b77967375acac7c5d59fecf92746

Files

dfb2b77967375acac7c5d59fecf92746
.exe windows:4 windows x86 arch:x86

07e6b4f1467bec6625a77e8834806f82

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

vagusb

ord35

winmm

PlaySoundA

kernel32

GetCPInfo
GetModuleHandleA
GetProcAddress
VirtualProtect

user32

IsDialogMessageA
MessageBoxA

gdi32

EndDoc

comdlg32

GetOpenFileNameA

winspool.drv

ClosePrinter

advapi32

RegOpenKeyExA

shell32

ShellExecuteA

comctl32

ImageList_AddMasked

extreme

Init

Sections

.text
Size: - Virtual size: 496KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reng
Size: - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrus
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.VAGRUS0
Size: - Virtual size: 426KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.VAGRUS1
Size: 868KB - Virtual size: 866KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

07e6b4f1467bec6625a77e8834806f82

Headers

File Characteristics

Imports

vagusb

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

extreme

Sections

.text Size: - Virtual size: 496KB

.rdata Size: - Virtual size: 80KB

.data Size: - Virtual size: 5.1MB

.reng Size: - Virtual size: 90KB

.rrus Size: - Virtual size: 92KB

.rsrc Size: 4KB - Virtual size: 4KB

.VAGRUS0 Size: - Virtual size: 426KB

.VAGRUS1 Size: 868KB - Virtual size: 866KB

.text
Size: - Virtual size: 496KB

.rdata
Size: - Virtual size: 80KB

.data
Size: - Virtual size: 5.1MB

.reng
Size: - Virtual size: 90KB

.rrus
Size: - Virtual size: 92KB

.rsrc
Size: 4KB - Virtual size: 4KB

.VAGRUS0
Size: - Virtual size: 426KB

.VAGRUS1
Size: 868KB - Virtual size: 866KB