7833422092c045646bd8ff9fcae22d8f606f09058130afed852cbdac4f301647

General

Target

7833422092c045646bd8ff9fcae22d8f606f09058130afed852cbdac4f301647
Size

28KB
MD5

e1e8196706d636eb4bb9dcffd2912f0a
SHA1

57c54db3be419658abba1be18c3b3958623e7d4a
SHA256

7833422092c045646bd8ff9fcae22d8f606f09058130afed852cbdac4f301647
SHA512

d0e0a31673f3722a153c66cef8d9f42babf77370c8220a5918b4fb7cef387f8c27801e2fc9a22f58b09af743551561e58776d067e0db496f8b6007297e2955b7
SSDEEP

768:vCGA1yf4TRRLhIiwEbZFt5mhyVwinh8cY:t2gsR5KiwELt5mDX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7833422092c045646bd8ff9fcae22d8f606f09058130afed852cbdac4f301647

Files

7833422092c045646bd8ff9fcae22d8f606f09058130afed852cbdac4f301647
.dll windows:4 windows x86 arch:x86

961a9e6c2f555032d6f3067073a9d043

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

appkit

NSRunAlertPanel
NSApp

ccsmodulekit

__CCSModuleKit_frameworkReferenceSymbol

foundation

NSClassFromString
NSLog
.objc_class_name_NSConstantString
.objc_class_name_NSString
.objc_class_name_NSBundle
.objc_class_name_NSTask
.objc_class_name_NSFileManager
.objc_class_name_NSMutableArray
.objc_class_name_NSProcessInfo
.objc_class_name_NSMutableString
.objc_class_name_NSObject

nextpdo

objc_getClass
objc_msgSend
__objc_execClass

msvcrt

_onexit
__dllonexit
_adjust_fdiv
malloc
_initterm
free
_fpreset
__argc
getenv
__argv

kernel32

GetVersion
Sleep
GlobalAlloc
GlobalFree
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetCurrentProcessId
GetDiskFreeSpaceExA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dtor
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

961a9e6c2f555032d6f3067073a9d043

Headers

File Characteristics

Imports

appkit

ccsmodulekit

foundation

nextpdo

msvcrt

kernel32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.dtor Size: 512B - Virtual size: 8B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.dtor
Size: 512B - Virtual size: 8B

.reloc
Size: 2KB - Virtual size: 1KB