cf22e728996f1fd40fce32b2f6ea146b719c8dc80c4f1b9b15d7973e0caebc71

Sharing

Copy URL Twitter E-mail

General

Target

cf22e728996f1fd40fce32b2f6ea146b719c8dc80c4f1b9b15d7973e0caebc71
Size

6.8MB
MD5

aa9f0ea3a28c0a1b3beaba1fd0622567
SHA1

9428fd3379530f5327ca2fc55412db72f51343f6
SHA256

cf22e728996f1fd40fce32b2f6ea146b719c8dc80c4f1b9b15d7973e0caebc71
SHA512

b7bd189a25618afca2ea42d3cde0882548c53f58a4fc67a165150a5d6a70fd7d7981c315d80e02015779d59a78ce25c0fa0cc2ec90be15eb5885213d87096116
SSDEEP

196608:5mCvdq0bOymjaDKWnGQbKHTd/ttNeZAqfiGN7F0XM:5mC80sqj3bu/NyAqfiyx08

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf22e728996f1fd40fce32b2f6ea146b719c8dc80c4f1b9b15d7973e0caebc71

Files

cf22e728996f1fd40fce32b2f6ea146b719c8dc80c4f1b9b15d7973e0caebc71
.exe windows:4 windows x86 arch:x86

313796ea36d095a4af451a585ab18e6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

DrawDibDraw

avifil32

AVIStreamGetFrame

winmm

midiStreamStop

ws2_32

ntohl

kernel32

GetTimeZoneInformation

user32

GetSysColorBrush

gdi32

RoundRect

winspool.drv

OpenPrinterA

comdlg32

ChooseColorA

advapi32

RegOpenKeyExA

shell32

SHGetSpecialFolderPathA

ole32

CLSIDFromProgID

oleaut32

RegisterTypeLi

comctl32

ImageList_SetBkColor

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 5.8MB - Virtual size: 9.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1008KB - Virtual size: 1008KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

313796ea36d095a4af451a585ab18e6d

Headers

File Characteristics

Imports

msvfw32

avifil32

winmm

ws2_32

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

msvcrt

iphlpapi

psapi

Sections

.text Size: 5.8MB - Virtual size: 9.5MB

.sedata Size: 1008KB - Virtual size: 1008KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 5.8MB - Virtual size: 9.5MB

.sedata
Size: 1008KB - Virtual size: 1008KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.sedata
Size: 4KB - Virtual size: 4KB