38f8b8036ed2a0b5abb8fbf264ee6fd2b82dcd917f60d9f1d8f18d07c26b1534

Sharing

Copy URL

Twitter E-mail

General

Target

38f8b8036ed2a0b5abb8fbf264ee6fd2b82dcd917f60d9f1d8f18d07c26b1534
Size

107KB
MD5

53270b3968004cb48dac1a1b239ed23d
SHA1

6363481bdc4362bb54234009fa30fa1cfd79cca8
SHA256

38f8b8036ed2a0b5abb8fbf264ee6fd2b82dcd917f60d9f1d8f18d07c26b1534
SHA512

6eab995bad2e05667b3708c9d80f448dab1136a19dba0049f524531fca5fd61c38562b9ab1b108ef76efcb0e92108b5253d5ed816debb5d9a234c04deb35597e
SSDEEP

3072:Vrk9cUT7C9YnRgbOVu3Kl8NfcNZetdVDnB:0Vu3dNfckVDB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38f8b8036ed2a0b5abb8fbf264ee6fd2b82dcd917f60d9f1d8f18d07c26b1534

Files

38f8b8036ed2a0b5abb8fbf264ee6fd2b82dcd917f60d9f1d8f18d07c26b1534
.dll windows:4 windows x64 arch:x64

cd7e7cf0adc82d77c298303b0b92ee2d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msvcrt

_mbscmp
calloc
free
malloc
realloc
wcscmp
wcslen

Exports

Exports

ClassRelativeDisk
DllMain
DriveTempShutdown
ExtraServicesInEvent
RenameDdeSection

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 628B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 93KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 199B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 276B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rdata
Size: 199B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd7e7cf0adc82d77c298303b0b92ee2d

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

Exports

Exports

Sections

.text Size: 101KB - Virtual size: 100KB

.data Size: 512B - Virtual size: 32B

.rdata Size: 512B - Virtual size: 16B

.pdata Size: 1024B - Virtual size: 972B

.xdata Size: 1024B - Virtual size: 628B

.bss Size: - Virtual size: 93KB

.edata Size: 512B - Virtual size: 199B

.idata Size: 512B - Virtual size: 276B

.rsrc Size: 1024B - Virtual size: 880B

.reloc Size: 512B - Virtual size: 12B

.rdata Size: 199B - Virtual size: 4KB

.text
Size: 101KB - Virtual size: 100KB

.data
Size: 512B - Virtual size: 32B

.rdata
Size: 512B - Virtual size: 16B

.pdata
Size: 1024B - Virtual size: 972B

.xdata
Size: 1024B - Virtual size: 628B

.bss
Size: - Virtual size: 93KB

.edata
Size: 512B - Virtual size: 199B

.idata
Size: 512B - Virtual size: 276B

.rsrc
Size: 1024B - Virtual size: 880B

.reloc
Size: 512B - Virtual size: 12B

.rdata
Size: 199B - Virtual size: 4KB