f2ad8b18052f9fe874c47b2acb8416c758375b8b5183bdcac795a57355aa127d

Sharing

Copy URL Twitter E-mail

General

Target

f2ad8b18052f9fe874c47b2acb8416c758375b8b5183bdcac795a57355aa127d
Size

21KB
MD5

86e8ee95f06cec4667216fd5a998b102
SHA1

9ddba10997ced2235469416e412ce553f30c562c
SHA256

f2ad8b18052f9fe874c47b2acb8416c758375b8b5183bdcac795a57355aa127d
SHA512

bf1fb61a94b4c8054d20bc025f8763de2e56cf49f5d31ba192ada055ae866fdd48139ecb89e63b82c8abc5aa06b5f3e4ae7553fba424d525ceeef98b98f5ab98
SSDEEP

192:7LFZNVZ9RYufQ6RSBlW5gxNeMNpD1Pa/34+HV6ygZNUjYGF8jQU4Lh2gXo86NzKG:7LFZDJ15gxN1NpQgMV6FNuXD6Lwa0g1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2ad8b18052f9fe874c47b2acb8416c758375b8b5183bdcac795a57355aa127d

Files

f2ad8b18052f9fe874c47b2acb8416c758375b8b5183bdcac795a57355aa127d
.exe windows:4 windows x86 arch:x86

e1e9042514023e6aa9d67ded78c2513f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

appkit

NSApplicationMain
.objc_class_name_NSApplication

ccsmalloc

__CCSMalloc_frameworkReferenceSymbol

ccsmodulekit

__CCSModuleKit_frameworkReferenceSymbol

ccsprint

__CCSPrint_frameworkReferenceSymbol

cobject

__CObject_frameworkReferenceSymbol

coreapp

__CoreApp_frameworkReferenceSymbol

msvcrt

_initterm
_controlfp
__dllonexit
_onexit
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
__getmainargs
_exit
_XcptFilter
exit
__p__acmdln
_fpreset
getenv
__argc
__argv
__set_app_type
_except_handler3

kernel32

GetVersion
Sleep
GetStartupInfoA
GetModuleHandleA
GetProcAddress

nextpdo

objc_msgSend
objc_getClass
__objc_execClass

foundation

_NSArgv
_NSArgc
.objc_class_name_NSString

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dtor
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1e9042514023e6aa9d67ded78c2513f

Headers

File Characteristics

Imports

appkit

ccsmalloc

ccsmodulekit

ccsprint

cobject

coreapp

msvcrt

kernel32

nextpdo

foundation

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 528B

.data Size: 512B - Virtual size: 252B

.idata Size: 1KB - Virtual size: 1KB

.dtor Size: 512B - Virtual size: 8B

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 512B - Virtual size: 348B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 528B

.data
Size: 512B - Virtual size: 252B

.idata
Size: 1KB - Virtual size: 1KB

.dtor
Size: 512B - Virtual size: 8B

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 512B - Virtual size: 348B