c881bb5a8a238cae4fe55d59214517705aaf136abed50eb78e2210e31e975944

Sharing

Copy URL

Twitter E-mail

General

Target

c881bb5a8a238cae4fe55d59214517705aaf136abed50eb78e2210e31e975944
Size

10.8MB
MD5

1ba83bd488d4e82f9965c351576d69ed
SHA1

ca99219df3aa99080df5153c3e67180e02a8b3ed
SHA256

c881bb5a8a238cae4fe55d59214517705aaf136abed50eb78e2210e31e975944
SHA512

66731288b9aea43ae509f6382cbcf94d32619cc98b3162e8057a17a0b3bb9ca9df1af62b2f746199a87c42d412833f2118bcc5cbf7ee8c5a51820280e366a6ec
SSDEEP

196608:OqdFgW+tBGo3vY6j/2vQgQctSpiN9s5TZHdxMkL44r+zidLWo6lQ9rWA:tPIhY6jLgQctS+4nGkL44K2LWo6l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c881bb5a8a238cae4fe55d59214517705aaf136abed50eb78e2210e31e975944

Files

c881bb5a8a238cae4fe55d59214517705aaf136abed50eb78e2210e31e975944
.exe windows:5 windows x86 arch:x86

7a6d2d9d857915ef79b5192024192427

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetVersion

user32

OpenClipboard

gdi32

ExcludeClipRect

winmm

midiStreamRestart

winspool.drv

ClosePrinter

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

OleInitialize

oleaut32

UnRegisterTypeLi

comctl32

ImageList_Destroy

ws2_32

recv

comdlg32

ChooseColorA

Sections

.text
Size: - Virtual size: 500KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.VMP0
Size: - Virtual size: 6.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.VMP1
Size: 4KB - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.VMP2
Size: 10.8MB - Virtual size: 10.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a6d2d9d857915ef79b5192024192427

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

ws2_32

comdlg32

Sections

.text Size: - Virtual size: 500KB

.rdata Size: - Virtual size: 78KB

.data Size: - Virtual size: 134KB

.VMP0 Size: - Virtual size: 6.1MB

.VMP1 Size: 4KB - Virtual size: 124B

.VMP2 Size: 10.8MB - Virtual size: 10.8MB

.rsrc Size: 8KB - Virtual size: 5KB

.text
Size: - Virtual size: 500KB

.rdata
Size: - Virtual size: 78KB

.data
Size: - Virtual size: 134KB

.VMP0
Size: - Virtual size: 6.1MB

.VMP1
Size: 4KB - Virtual size: 124B

.VMP2
Size: 10.8MB - Virtual size: 10.8MB

.rsrc
Size: 8KB - Virtual size: 5KB