MeisterTrainer[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

MeisterTrainer.exe
Size

8.9MB
MD5

85cead19b9b501d33a720d5bf04a9c69
SHA1

3edc65b847a2910266ca3bf08039c7a78836b585
SHA256

d4a6d749c1eb0c9ba29a3288639272ba184752e9b18eceb4be93f7a81adf9017
SHA512

db1b1de444ca96462d22af0f470744d046f3c35ad6db404e2f61aaf3b47999d8079ffea0afd2ba9e6f8a252a80a22d581cce6a3261e799695b88ae48777a52f1
SSDEEP

196608:KVWfyvmYs3JloV0EVLVCLO28HnnzT9tS689XaVKno/IZJgRX3:iWfy+YsbyqO2+b1Wa6Gn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MeisterTrainer.exe

Files

MeisterTrainer.exe
.exe windows:4 windows x86 arch:x86

194add97605482f4c713d4b191b8dc6b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateDirectoryA
CreateFileA
ExitProcess
GetLastError
GetProcAddress
GetLocalTime
GetVersionExA
LoadLibraryA
ReadFile
SetFileAttributesA
Sleep
WriteFile

shlwapi

PathAppendA

shfolder

SHGetFolderPathA

user32

GetSystemMetrics
PeekMessageA

gdi32

GetObjectA

msvcrt

localeconv
__initenv

Sections

zkiivqpk
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lcfihbpe
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qligdvcc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uuoveezf
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

efwxkvkp
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mkffgozk
Size: 32B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 380KB - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

raimfmpz
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fopjipuw
Size: 8.5MB - Virtual size: 8.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

194add97605482f4c713d4b191b8dc6b

Headers

File Characteristics

Imports

kernel32

shlwapi

shfolder

user32

gdi32

msvcrt

Sections

zkiivqpk Size: - Virtual size: 40KB

lcfihbpe Size: - Virtual size: 4KB

qligdvcc Size: 2KB - Virtual size: 4KB

uuoveezf Size: - Virtual size: 4KB

efwxkvkp Size: - Virtual size: 8KB

mkffgozk Size: 32B - Virtual size: 4KB

.rsrc Size: 380KB - Virtual size: 384KB

raimfmpz Size: 1024B - Virtual size: 4KB

fopjipuw Size: 8.5MB - Virtual size: 8.5MB

zkiivqpk
Size: - Virtual size: 40KB

lcfihbpe
Size: - Virtual size: 4KB

qligdvcc
Size: 2KB - Virtual size: 4KB

uuoveezf
Size: - Virtual size: 4KB

efwxkvkp
Size: - Virtual size: 8KB

mkffgozk
Size: 32B - Virtual size: 4KB

.rsrc
Size: 380KB - Virtual size: 384KB

raimfmpz
Size: 1024B - Virtual size: 4KB

fopjipuw
Size: 8.5MB - Virtual size: 8.5MB