ae53696b71b28c554aef7f546dd9518e4cc48586436bc8bf964df90300e88b6d

Sharing

Copy URL Twitter E-mail

General

Target

ae53696b71b28c554aef7f546dd9518e4cc48586436bc8bf964df90300e88b6d
Size

14.5MB
MD5

df240b0373e8ab4cc8eb7ae9a6657d13
SHA1

776bc603f183588053beaa752ac6ab9166a4b588
SHA256

ae53696b71b28c554aef7f546dd9518e4cc48586436bc8bf964df90300e88b6d
SHA512

9d2905f9618e1380239867bb83d36226983e6f811339a75596a502e8ca0985da6ae2dba36748225f9dc9a6e5e9e7241eaf92e15d802e3ce9fb8255b79fa9f629
SSDEEP

393216:6GYF12S7xFa9Dhz2ykM/I8DIUSan3sUAINSoBumeXyE:6GYt7mzVmUiUlN5gy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae53696b71b28c554aef7f546dd9518e4cc48586436bc8bf964df90300e88b6d

Files

ae53696b71b28c554aef7f546dd9518e4cc48586436bc8bf964df90300e88b6d
.exe windows:6 windows x86 arch:x86

70562acd746b99eab56f4296bbc6e13a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

kernel32

GetVersion
GetVersionExA
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

GetClassNameA

gdi32

SaveDC

winmm

PlaySoundA

msimg32

GradientFill

winspool.drv

ClosePrinter

comdlg32

ChooseColorA

advapi32

RegOpenKeyExA

shell32

Shell_NotifyIconA

ole32

CLSIDFromProgID

oleaut32

SysAllocStringLen

comctl32

ImageList_Create

oledlg

ord8

ws2_32

recvfrom

Sections

.text
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 430KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hKF
Size: - Virtual size: 7.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.q$t
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.{:L
Size: 14.4MB - Virtual size: 14.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

70562acd746b99eab56f4296bbc6e13a

Headers

DLL Characteristics

File Characteristics

Imports

msvfw32

avifil32

kernel32

user32

gdi32

winmm

msimg32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

ws2_32

Sections

.text Size: - Virtual size: 1.5MB

.rdata Size: - Virtual size: 2.5MB

.data Size: - Virtual size: 430KB

.hKF Size: - Virtual size: 7.7MB

.q$t Size: 3KB - Virtual size: 2KB

.{:L Size: 14.4MB - Virtual size: 14.4MB

.rsrc Size: 69KB - Virtual size: 68KB

.text
Size: - Virtual size: 1.5MB

.rdata
Size: - Virtual size: 2.5MB

.data
Size: - Virtual size: 430KB

.hKF
Size: - Virtual size: 7.7MB

.q$t
Size: 3KB - Virtual size: 2KB

.{:L
Size: 14.4MB - Virtual size: 14.4MB

.rsrc
Size: 69KB - Virtual size: 68KB