General

  • Target

    WinDirStat_v.1.1.2.zip

  • Size

    3.5MB

  • MD5

    c0032f5a35ede136012406685b79402e

  • SHA1

    5cc1c827d5074aeb5cd3774777070267e3b5c7b8

  • SHA256

    06154ee099264bf143ca3e4527e04c30c5f0a17f6bf8371d8a8e35547a0313b5

  • SHA512

    27fd8a2024e7d1db7ab5888865f0cbd851c3b5392af27ccf985c31d6ea010af41d54c3b8d49eac44eeeb853ea69dd1206c1023b669fe94bd7070e055cabb4f7c

  • SSDEEP

    98304:mxAHAYBTe8z65ciJJOS/u/aGVBl3uEjeiy0q9tF:+VAKD5nXQflbeiyftF

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • WinDirStat_v.1.1.2.zip
    .zip
  • help.chm
    .chm
  • python3.dll
    .dll windows:6 windows x64 arch:x64

    5714829f48aacde8f83e3e5f0ead1f49


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • python311.dll
    .dll windows:4 windows x64 arch:x64

    68456cb96a76a218acc831f6b1320d8f


    Headers

    Imports

    Exports

    Sections

  • setup.exe
    .exe windows:6 windows x64 arch:x64

    8e1e0d6c8ffe7f2996ab45c2c82ccb07


    Code Sign

    Headers

    Imports

    Sections

  • vcruntime140.dll
    .dll windows:6 windows x64 arch:x64

    7f07fd94e5bb907093556781cc464017


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • windirstat_en_us.qm
  • windirstat_uk_ua.qm