Overview

overview

7

Static

static

3

36478e8dff...3d.exe

windows7-x64

7

36478e8dff...3d.exe

windows10-2004-x64

7

$PLUGINSDIR/INetC.dll

windows7-x64

3

$PLUGINSDIR/INetC.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDIR/sps.dll

windows7-x64

3

$PLUGINSDIR/sps.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    36478e8dff8ce717945ad057a0da0b2b7c3cd5022702e90f625c482ed549d03d

  • Size

    323KB

  • MD5

    38782eadb15cb53646173cf127a40ca7

  • SHA1

    5dec8c5301592d3262e21fafb9c14a3966e702ad

  • SHA256

    36478e8dff8ce717945ad057a0da0b2b7c3cd5022702e90f625c482ed549d03d

  • SHA512

    52b846284dbdf37e5ff2f8e0dbb81da88e44ce4b9c1fb3f3a7ec24594f7ff166fb44ae902d3eec97a0266ebdf701c3e00633c0bc02894a7a7c1fc8fdb5394118

  • SSDEEP

    6144:cnPdudwDFfbWtliXpBnofeuS+t+wsbxz5JDauniofs+b1ajWIh+QJx6l:cnPd1WC5Bnq30ziuniF+6Wc+Kxy

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 36478e8dff8ce717945ad057a0da0b2b7c3cd5022702e90f625c482ed549d03d
    .exe windows:4 windows x86 arch:x86

    9dda1a1d1f8a1d13ae0297b47046b26e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/INetC.dll
    .dll windows:4 windows x86 arch:x86

    163fdad7b5f915e3a0ca7ad1d08b4ff8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    509a34b3a68a773e0afb4259e68f9f82


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    3b477381217c97b22146297f93df2a92


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    68b7023f8923dd087549802f8fa631c3


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/sps.dll
    .dll windows:6 windows x86 arch:x86

    a675043673c42e96009d9444332b57be


    Code Sign

    Headers

    Imports

    Exports

    Sections