Overview

overview

7

Static

static

3

b36dd9e6da...14.exe

windows7-x64

7

b36dd9e6da...14.exe

windows10-2004-x64

7

$PLUGINSDIR/INetC.dll

windows7-x64

3

$PLUGINSDIR/INetC.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    a9ccc460407d9f29da334921bc5c1bf9.bin

  • Size

    46KB

  • MD5

    393b126d3f40396c84a4f805c7e2a3a6

  • SHA1

    ceefad5316c629e32540997df33c56cb7d1f26bf

  • SHA256

    056c4300d773eea747585676872e4e3391703f57fb8ee3714ba26638d2725729

  • SHA512

    3cc5fb4f49d54abdc6a334567a4eac530f601677d5b5336ca918463f3edd58e1a2399392700adec9519b00a396cbe1b5913f5bc9d595ddbfd6245bdd7205df2f

  • SSDEEP

    768:Y3LyYJkSKYNcifmJMVW1gsSSWo1pWgt6q/qx0IyVw0IysOlZQJDely3J71C2o:uzJJKYNcid53yOzq/qNZzO3ly3JQ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • a9ccc460407d9f29da334921bc5c1bf9.bin
    .zip

    Password: infected

  • b36dd9e6da5db0dc490573955df695ff05c7789695cc868268c7bb744e50cd14.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f10e4da994053bf80c20cee985b32e29


    Headers

    Imports

    Sections

  • $PLUGINSDIR/INetC.dll
    .dll windows:4 windows x86 arch:x86

    Password: infected

    8ef3613e48db9e7b48e33704238cd659


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    Password: infected

    a49b0342971aa199fc6349725b90146d


    Headers

    Imports

    Exports

    Sections