37bc034781ca446154e3c2cc6529100de5b7bcc534f4d265679f14f2dc90eef8

Sharing

Copy URL Twitter E-mail

General

Target

37bc034781ca446154e3c2cc6529100de5b7bcc534f4d265679f14f2dc90eef8
Size

3.9MB
MD5

b96126c5afbb9c91e999812ed6bea07f
SHA1

d495115e78abe43a040184ad858e7e54ed22c07a
SHA256

37bc034781ca446154e3c2cc6529100de5b7bcc534f4d265679f14f2dc90eef8
SHA512

71c8e76c4945e3931b010550f17d84dbbb66e63d7b7929bae92073b303c1f7650fc04e114368c4dd2ae45a8f2e069114129b8c95f4e1a347e823968afe6e47ca
SSDEEP

98304:6YU5CeU3XKRIjPqtx49NPgGlE9IIamyNcm7Gk7GP:6t5fUHKRzfcz2WJmyZyP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37bc034781ca446154e3c2cc6529100de5b7bcc534f4d265679f14f2dc90eef8

Files

37bc034781ca446154e3c2cc6529100de5b7bcc534f4d265679f14f2dc90eef8
.exe windows:4 windows x86 arch:x86

848ea45baa4e3ec3c0a2ce3eef65b1f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

UuidToStringA

winmm

waveOutReset

ws2_32

inet_ntoa

kernel32

FindResourceA

user32

GetDlgItem

gdi32

ExtSelectClipRgn

winspool.drv

OpenPrinterA

advapi32

RegQueryValueExA

shell32

Shell_NotifyIconA

ole32

OleRun

oleaut32

SafeArrayAccessData

comctl32

ImageList_GetIcon

comdlg32

GetFileTitleA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 1.3MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wcissb
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wcissb
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

848ea45baa4e3ec3c0a2ce3eef65b1f1

Headers

File Characteristics

Imports

rpcrt4

winmm

ws2_32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

comdlg32

msvcrt

iphlpapi

psapi

Sections

.text Size: 1.3MB - Virtual size: 3.0MB

.wcissb Size: 2.6MB - Virtual size: 2.6MB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.wcissb Size: 4KB - Virtual size: 4KB

.text
Size: 1.3MB - Virtual size: 3.0MB

.wcissb
Size: 2.6MB - Virtual size: 2.6MB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.wcissb
Size: 4KB - Virtual size: 4KB