General

  • Target

    4f2e6dc8e4d8e0dfcc44a28d34c10653bd833abb8832e47e609d255f246c67f0.zip

  • Size

    1.8MB

  • MD5

    6e32a7711331e02d7e8a8562ebae4a30

  • SHA1

    50a523efa1ecfa1cd4f6bcaf5dcf22a2d69326df

  • SHA256

    abb7030f3b8e7f18344cdc9601fed9a682aef0d384a81b9771759f20bc8e9404

  • SHA512

    6ce61194abc76a461d334789090e23d10588012e9cd20204c68649de295b93024ea2b173b1508c18039569c34c0a7f5369bef91d29fb85b274a75f9f48ae00d2

  • SSDEEP

    49152:7DpKez/ApxbgnKAvHINrHeJw2oz9osB2VJ0dj7nA:Xz/AvsnKAfIZeerh6J0B7nA

Score
3/10

Malware Config

Signatures

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

Files

  • 4f2e6dc8e4d8e0dfcc44a28d34c10653bd833abb8832e47e609d255f246c67f0.zip
    .zip

    Password: infected

  • 4f2e6dc8e4d8e0dfcc44a28d34c10653bd833abb8832e47e609d255f246c67f0.exe
    .exe windows:5 windows x86 arch:x86

    Password: oi

    be41bf7b8cc010b614bd36bbca606973


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/NAct.dll
    .dll windows:5 windows x86 arch:x86

    Password: oi

    ec2801622d5cce0633fbff7d2ea8632c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:5 windows x86 arch:x86

    Password: oi

    039bcbc605477e8e87ec550c2e60e748


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UAC.dll
    .dll windows:4 windows x86 arch:x86

    Password: oi

    0ef725341a4aecf8398c0e2132f38049


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UserInfo.dll
    .dll windows:5 windows x86 arch:x86

    Password: oi

    45d25ca52c312b2254c60dbcb30342d1


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:5 windows x86 arch:x86

    Password: oi

    9ea5bdc8c90dfcffe309465c26c89758


    Headers

    Imports

    Exports

    Sections

  • $TEMP/Windows64/Windows64.exe
    .exe windows:4 windows x86 arch:x86

    Password: oi

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • uninst.exe.nsis

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.