fb39acf49e851d0adc854fb12e6dbf9036aa75fc6daf1ab3b46cd0fddf9acf65 | Triage

Sharing

General

Target

fb39acf49e851d0adc854fb12e6dbf9036aa75fc6daf1ab3b46cd0fddf9acf65
Size

4.3MB
MD5

ef5c847caae0f0befff03600e2efd14f
SHA1

e58bcf8897198c7c6dfe17a3ac4911e43f03b11f
SHA256

fb39acf49e851d0adc854fb12e6dbf9036aa75fc6daf1ab3b46cd0fddf9acf65
SHA512

cb48a09ead02396a92a0858411737729da92721577a6c1256996ee802501ba7fa7fc6a864af7e084b0dc1442695bdf2eef4ff6c430f3df3e33af79635df675dd
SSDEEP

98304:4GmpicX/0BuOzQmlyDNqOC6wfxRW8LomXpDuBsFlP08GLs6xKkFa/7TU81:8piIbOnEJC6wnWSomXpDuBaPfGLs6Qke

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb39acf49e851d0adc854fb12e6dbf9036aa75fc6daf1ab3b46cd0fddf9acf65

Files

fb39acf49e851d0adc854fb12e6dbf9036aa75fc6daf1ab3b46cd0fddf9acf65
.dll windows:4 windows x86 arch:x86

643857be8376b5f48613e369761c6d30

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

GetDC

advapi32

GetAce

iphlpapi

GetIfTable

shell32

ILFree

hid

HidP_GetCaps

setupapi

SetupInstallFileA

dhcpcsvc

DhcpIsEnabled

dhcpcsvc6

Dhcpv6IsEnabled

psapi

EnumProcesses

wsock32

bind

Exports

Exports

Porsche

Sections

.AKS1
Size: 449KB - Virtual size: 572KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AKS2
Size: 3.9MB - Virtual size: 5.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AKS3
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE