f3dd57ea2d5fbba983dc5c353e6d0d56a51414c3d09446be536314cfd4ad7be9

Sharing

Copy URL

Twitter E-mail

General

Target

f3dd57ea2d5fbba983dc5c353e6d0d56a51414c3d09446be536314cfd4ad7be9
Size

50KB
MD5

930a0e89befd84161b12aa7ef76c3ff5
SHA1

605a9b5a53e9f63da55454375ae5362e59232c4e
SHA256

f3dd57ea2d5fbba983dc5c353e6d0d56a51414c3d09446be536314cfd4ad7be9
SHA512

0102ac9a3842829d179a2ca08b202d8e2f93ae21e3da51affbdc9b9da8c6b12ccb79484f12fd1af6c965ec4dd749a87e1c05cee62123e89afc829b8d1ebac805
SSDEEP

768:WO1dp65bTMOwsT8ZkpADg5589NS6W+USo06OD92A4ueHx7V:WOXQ5bQOBgZkmgbcWBzOmV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3dd57ea2d5fbba983dc5c353e6d0d56a51414c3d09446be536314cfd4ad7be9

Files

f3dd57ea2d5fbba983dc5c353e6d0d56a51414c3d09446be536314cfd4ad7be9
.exe windows:6 windows x64 arch:x64

8dfe98eac95a02a95f5e3b3f5c35a56c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

openms

??4PeptideIdentification@OpenMS@@QEAAAEAV01@$$QEAV01@@Z
??8PeptideIdentification@OpenMS@@QEBA_NAEBV01@@Z
?getPeptideIdentifications@BaseFeature@OpenMS@@QEAAAEAV?$vector@VPeptideIdentification@OpenMS@@V?$allocator@VPeptideIdentification@OpenMS@@@std@@@std@@XZ
?getPeptideIdentifications@SpectrumSettings@OpenMS@@QEAAAEAV?$vector@VPeptideIdentification@OpenMS@@V?$allocator@VPeptideIdentification@OpenMS@@@std@@@std@@XZ
?getProteinIdentifications@ExperimentalSettings@OpenMS@@QEAAAEAV?$vector@VProteinIdentification@OpenMS@@V?$allocator@VProteinIdentification@OpenMS@@@std@@@std@@XZ
??0MSExperiment@OpenMS@@QEAA@XZ
??1MSExperiment@OpenMS@@UEAA@XZ
?begin@MSExperiment@OpenMS@@QEAA?AV?$_Vector_iterator@V?$_Vector_val@U?$_Simple_types@VMSSpectrum@OpenMS@@@std@@@std@@@std@@XZ
?end@MSExperiment@OpenMS@@QEAA?AV?$_Vector_iterator@V?$_Vector_val@U?$_Simple_types@VMSSpectrum@OpenMS@@@std@@@std@@@std@@XZ
?begin@?$ExposedVector@VConsensusFeature@OpenMS@@@OpenMS@@QEAA?AV?$_Vector_iterator@V?$_Vector_val@U?$_Simple_types@VConsensusFeature@OpenMS@@@std@@@std@@@std@@XZ
?end@?$ExposedVector@VConsensusFeature@OpenMS@@@OpenMS@@QEAA?AV?$_Vector_iterator@V?$_Vector_val@U?$_Simple_types@VConsensusFeature@OpenMS@@@std@@@std@@@std@@XZ
??0ConsensusMap@OpenMS@@QEAA@XZ
??1ConsensusMap@OpenMS@@UEAA@XZ
?getProteinIdentifications@ConsensusMap@OpenMS@@QEAAAEAV?$vector@VProteinIdentification@OpenMS@@V?$allocator@VProteinIdentification@OpenMS@@@std@@@std@@XZ
?getUnassignedPeptideIdentifications@ConsensusMap@OpenMS@@QEAAAEAV?$vector@VPeptideIdentification@OpenMS@@V?$allocator@VPeptideIdentification@OpenMS@@@std@@@std@@XZ
??0ConsensusXMLFile@OpenMS@@QEAA@XZ
??1ConsensusXMLFile@OpenMS@@UEAA@XZ
?load@ConsensusXMLFile@OpenMS@@QEAAXAEBVString@2@AEAVConsensusMap@2@@Z
?store@ConsensusXMLFile@OpenMS@@QEAAXAEBVString@2@AEBVConsensusMap@2@@Z
??0FeatureXMLFile@OpenMS@@QEAA@XZ
??0PeptideIdentification@OpenMS@@QEAA@$$QEAV01@@Z
?load@FeatureXMLFile@OpenMS@@QEAAXAEBVString@2@AEAVFeatureMap@2@@Z
?store@FeatureXMLFile@OpenMS@@QEAAXAEBVString@2@AEBVFeatureMap@2@@Z
?getType@FileHandler@OpenMS@@SA?AW4Type@FileTypes@2@AEBVString@2@@Z
??0IdXMLFile@OpenMS@@QEAA@XZ
?store@IdXMLFile@OpenMS@@QEAAXAEBVString@2@AEBV?$vector@VProteinIdentification@OpenMS@@V?$allocator@VProteinIdentification@OpenMS@@@std@@@std@@AEBV?$vector@VPeptideIdentification@OpenMS@@V?$allocator@VPeptideIdentification@OpenMS@@@std@@@5@0@Z
??1IdXMLFile@OpenMS@@UEAA@XZ
??0MzMLFile@OpenMS@@QEAA@XZ
??1MzMLFile@OpenMS@@UEAA@XZ
?load@MzMLFile@OpenMS@@QEAAXAEBVString@2@AEAVMSExperiment@2@@Z
?store@MzMLFile@OpenMS@@QEBAXAEBVString@2@AEBVMSExperiment@2@@Z
?begin@?$ExposedVector@VFeature@OpenMS@@@OpenMS@@QEAA?AV?$_Vector_iterator@V?$_Vector_val@U?$_Simple_types@VFeature@OpenMS@@@std@@@std@@@std@@XZ
?end@?$ExposedVector@VFeature@OpenMS@@@OpenMS@@QEAA?AV?$_Vector_iterator@V?$_Vector_val@U?$_Simple_types@VFeature@OpenMS@@@std@@@std@@@std@@XZ
??0FeatureMap@OpenMS@@QEAA@XZ
??1FeatureMap@OpenMS@@UEAA@XZ
?getProteinIdentifications@FeatureMap@OpenMS@@QEAAAEAV?$vector@VProteinIdentification@OpenMS@@V?$allocator@VProteinIdentification@OpenMS@@@std@@@std@@XZ
?getUnassignedPeptideIdentifications@FeatureMap@OpenMS@@QEAAAEAV?$vector@VPeptideIdentification@OpenMS@@V?$allocator@VPeptideIdentification@OpenMS@@@std@@@std@@XZ
??0BaseException@Exception@OpenMS@@QEAA@AEBV012@@Z
??0RequiredParameterNotGiven@Exception@OpenMS@@QEAA@AEBV012@@Z
??1RequiredParameterNotGiven@Exception@OpenMS@@UEAA@XZ
?getSubsectionDefaults_@TOPPBase@OpenMS@@EEBA?AVParam@2@AEBVString@2@@Z
?getProcessingInfo_@TOPPBase@OpenMS@@IEBA?AVDataProcessing@2@W4ProcessingAction@32@@Z
??1PeptideIdentification@OpenMS@@UEAA@XZ
??0PeptideIdentification@OpenMS@@QEAA@AEBV01@@Z
?addDataProcessing_@TOPPBase@OpenMS@@IEBAXAEAVMSExperiment@2@AEBVDataProcessing@2@@Z
??0String@OpenMS@@QEAA@AEBV01@@Z
?addDataProcessing_@TOPPBase@OpenMS@@IEBAXAEAVFeatureMap@2@AEBVDataProcessing@2@@Z
?addDataProcessing_@TOPPBase@OpenMS@@IEBAXAEAVConsensusMap@2@AEBVDataProcessing@2@@Z
?getStringOption_@TOPPBase@OpenMS@@IEBA?AVString@2@AEBV32@@Z
?setValidFormats_@TOPPBase@OpenMS@@IEAAXAEBVString@2@AEBV?$vector@VString@OpenMS@@V?$allocator@VString@OpenMS@@@std@@@std@@_N@Z
?registerOutputFile_@TOPPBase@OpenMS@@IEAAXAEBVString@2@000_N1@Z
?registerInputFile_@TOPPBase@OpenMS@@IEAAXAEBVString@2@000_N1AEBV?$vector@VString@OpenMS@@V?$allocator@VString@OpenMS@@@std@@@std@@@Z
?main@TOPPBase@OpenMS@@QEAA?AW4ExitCodes@12@HPEAPEBD@Z
??1TOPPBase@OpenMS@@UEAA@XZ
??0TOPPBase@OpenMS@@QEAA@AEBVString@1@0_NAEBV?$vector@UCitation@OpenMS@@V?$allocator@UCitation@OpenMS@@@std@@@std@@1@Z
??0RequiredParameterNotGiven@Exception@OpenMS@@QEAA@PEBDH0AEBVString@2@@Z
??1DataProcessing@OpenMS@@QEAA@XZ
?split@String@OpenMS@@QEBA_NDAEAV?$vector@VString@OpenMS@@V?$allocator@VString@OpenMS@@@std@@@std@@_N@Z
??0String@OpenMS@@QEAA@PEBD@Z
??1FeatureXMLFile@OpenMS@@UEAA@XZ

msvcp140

?_Xlength_error@std@@YAXPEBD@Z

vcruntime140

__C_specific_handler
__current_exception
__current_exception_context
memset
__std_exception_copy
_CxxThrowException
__std_exception_destroy

vcruntime140_1

__CxxFrameHandler4

api-ms-win-crt-runtime-l1-1-0

_register_thread_local_exe_atexit_callback
_c_exit
terminate
_set_app_type
__p___argv
__p___argc
_seh_filter_exe
_get_initial_narrow_environment
_exit
exit
_invalid_parameter_noinfo_noreturn
_initterm_e
_cexit
_crt_atexit
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_initterm

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
free
_set_new_mode

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__p__commode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

kernel32

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetModuleHandleW
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8dfe98eac95a02a95f5e3b3f5c35a56c

Headers

DLL Characteristics

File Characteristics

Imports

openms

msvcp140

vcruntime140

vcruntime140_1

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

kernel32

Sections

.text Size: 27KB - Virtual size: 26KB

.rdata Size: 15KB - Virtual size: 15KB

.data Size: 3KB - Virtual size: 4KB

.pdata Size: 2KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 512B - Virtual size: 244B

.text
Size: 27KB - Virtual size: 26KB

.rdata
Size: 15KB - Virtual size: 15KB

.data
Size: 3KB - Virtual size: 4KB

.pdata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 244B