General

  • Target

    7-ZipPortable_16.04_Rev._3.paf.exe

  • Size

    2.6MB

  • MD5

    1b9a44c355f250209449d652f46c3895

  • SHA1

    9e4c8d53c0f9e5aaef95c13716d0ac7155457b7f

  • SHA256

    0071063c467e5b8319582523a6c092793308ac6c7b27a9914880d2d49bf6fe9e

  • SHA512

    ad95c04996ca4d21ea163ef2d55665c2da60430dd45d181d32a9ac35043b0f3b5eeedfc6423fba6dd681501ef351a49220034ad73a3165159b6cd652f7722064

  • SSDEEP

    49152:BIxd76i8xJdOXbLijiZp/V96Hd2FhCb4uiy3lK9BbNMSVNHbTPa7j/HbnXK9zu6R:BIxdR8xqXciZp99a2s+y30NMSVNHb+XW

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 7-ZipPortable_16.04_Rev._3.paf.exe
    .exe windows:5 windows x86 arch:x86

    32f3282581436269b3a75b6675fe3e08


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:5 windows x86 arch:x86

    039bcbc605477e8e87ec550c2e60e748


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/newtextreplace.dll
    .dll windows:4 windows x86 arch:x86

    42624ab02b71999959eb0f4168f609bb


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:5 windows x86 arch:x86

    9ea5bdc8c90dfcffe309465c26c89758


    Headers

    Imports

    Exports

    Sections