aff7b0943548a55a4cd73836c65f9286525ff438aa2ccc14cc94831fe1ed4a28[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

aff7b0943548a55a4cd73836c65f9286525ff438aa2ccc14cc94831fe1ed4a28.exe
Size

126KB
MD5

3947e65f416b588a01d7f36bdd161df0
SHA1

d3e526d018e6a5206f20da53e032a83e7b70d7ab
SHA256

aff7b0943548a55a4cd73836c65f9286525ff438aa2ccc14cc94831fe1ed4a28
SHA512

1a610802e3c8e5434a22393de1ad44ae5dc92e556cfae0d2c3d9b092fb77bf45df3e8c66952e4d80e7f092191ef8c44544f94eee4cf5a1c6a923af20b09d6243
SSDEEP

3072:/y7JbeG94xwUUdoQaaRXovYVQT+7Lu/+a:/y7JbeXxMRnnu2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aff7b0943548a55a4cd73836c65f9286525ff438aa2ccc14cc94831fe1ed4a28.exe

Files

aff7b0943548a55a4cd73836c65f9286525ff438aa2ccc14cc94831fe1ed4a28.exe
.dll windows:6 windows x64 arch:x64

3c2ff6626f10ed303b25412eeb5e23b1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

cudart64_55

__cudaRegisterFunction
__cudaRegisterVar
__cudaUnregisterFatBinary
__cudaRegisterFatBinary
cudaMemcpyToSymbol
cudaLaunch
cudaSetupArgument
cudaConfigureCall

msvcr110

_lock
_unlock
_calloc_crt
__dllonexit
__C_specific_handler
_onexit
__CppXcptFilter
_amsg_exit
free
_malloc_crt
_initterm
_initterm_e
__crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__crtCapturePreviousContext
__clean_type_info_names_internal

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer

Exports

Exports

B
G
I
M

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nv_fatb
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nvFatBi
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 156B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c2ff6626f10ed303b25412eeb5e23b1

Headers

DLL Characteristics

File Characteristics

Imports

cudart64_55

msvcr110

kernel32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 16KB

.pdata Size: 512B - Virtual size: 312B

.nv_fatb Size: 117KB - Virtual size: 116KB

.nvFatBi Size: 512B - Virtual size: 24B

.reloc Size: 512B - Virtual size: 156B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 16KB

.pdata
Size: 512B - Virtual size: 312B

.nv_fatb
Size: 117KB - Virtual size: 116KB

.nvFatBi
Size: 512B - Virtual size: 24B

.reloc
Size: 512B - Virtual size: 156B