General

  • Target

    scan001.exe

  • Size

    7.0MB

  • MD5

    f2a68aa06891fd13df18d3d0f1948d12

  • SHA1

    e44c076888d880b3a0e3987254d1ace0abfb93dc

  • SHA256

    9f2a95520df1af07d04ef0ad9794e054d393e1d59962b47249e28cbb03e9b98a

  • SHA512

    f6ccf998d777f9710dce4d507a1001025454b7680bb6f4f427c676b0ab8b579d6857c5ddc98599fe3a5eccc2f9427fba6af8d42e67081582da2ffede894759c2

  • SSDEEP

    98304:T+KKpUDeL0K73W628a0LrOfK2dH22e5/DrNJ0B3m0ME9raUcbFCPDipuWs3OvCcw:TApUDymlV0gJW2eSB3HcbFcsuWM+t0

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • scan001.exe
    .exe windows:4 windows x86 arch:x86

    ea4e67a31ace1a72683a99b80cf37830


    Code Sign

    Headers

    Imports

    Sections

  • #/safib/OldVersion/AstCrp.dll
    .dll windows:6 windows x86 arch:x86

    6ca4ab7ff070dfcc8f596f590fbab08b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/assistant_spt.exe
    .exe windows:4 windows x86 arch:x86

    b101aeff118c33b8e6dce8cbe603a5fe


    Code Sign

    Headers

    Imports

    Sections

  • #/safib/OldVersion/astclient.dll
    .dll windows:6 windows x86 arch:x86

    c8ea4594004a8a1e65d131f238a825e1


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/astprint.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/astrct.dll
    .dll windows:6 windows x86 arch:x86

    e0c65ff8fddb594689f9e2b90d03c346


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/aw_sas32.dll
    .dll windows:5 windows x86 arch:x86

    9917f67fb1a99599732bcb490d6124a7


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/config.ini
  • #/safib/OldVersion/eng.lng
  • #/safib/OldVersion/goopdate.dll
    .dll windows:6 windows x86 arch:x86

    a57fa22a3f425e6819b75fedbf3faad9


    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/goopdate.exe
    .exe windows:5 windows x86 arch:x86

    d67279a9f2f6e3daa872a4088645f940


    Code Sign

    Headers

    Imports

    Sections

  • #/safib/OldVersion/hatls.dll
    .dll windows:6 windows x86 arch:x86

    4e5afe3c0f5dba24a0a29ce4269df06a


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/ipcache
  • #/safib/OldVersion/libcrypto-3.dll
    .dll windows:6 windows x86 arch:x86

    9465d04d0405d6e7a0916af8e303c69a


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/libcurl.dll
    .dll windows:6 windows x86 arch:x86

    739885336a65f13ad4eaa3806da0b3eb


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/libjpeg-turbo-win.dll
    .dll windows:6 windows x86 arch:x86

    436dca7c10a2aa0d9b3aadf882355683


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/libssl-3.dll
    .dll windows:6 windows x86 arch:x86

    ac93a0d9fa5db022186c1bce19f31b8f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/opus.dll
    .dll windows:6 windows x86 arch:x86

    dd48c4946bfdd962f6cc2896652b0210


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • #/safib/OldVersion/rus.lng
  • #/safib/OldVersion/sqlite3.dll
    .dll windows:4 windows x86 arch:x86

    923aa130c21002b50b462e446b3be0d9


    Code Sign

    Headers

    Imports

    Exports

    Sections