General

  • Target

    4bbba8f83512be343044f397526bc440N.exe

  • Size

    112KB

  • MD5

    4bbba8f83512be343044f397526bc440

  • SHA1

    e781621a607a0785c2f2b2accfa9097fd23e792e

  • SHA256

    5dcd623eae89f074bd7e3e197d8ab4f2874c277479ffa39a515e0ca5852ad6b8

  • SHA512

    d05086d95212eaf43cce219dfe1a3a1bc103ded922df8f7d9ca9c0f96153dc305674e15ca39ee990702234458c872700269dce85f19dad6eeece5b0f9c064700

  • SSDEEP

    3072:HweqOYEUXPnLXgoB5QHbsGog5xBjPkbj:gEUX8oB5UsL+S

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4bbba8f83512be343044f397526bc440N.exe
    .exe windows:5 windows x86 arch:x86

    32f3282581436269b3a75b6675fe3e08


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:5 windows x86 arch:x86

    cd90e33ffbc335413a25300c682c83df


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • 2592578_CapitalFutures.pfx
  • execute.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections

  • install_pfx.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections