9ab39a90cd7af7e98a3cf21f203a5d54bf674817fe98665353beebd9903d1dae

Sharing

Copy URL Twitter E-mail

General

Target

9ab39a90cd7af7e98a3cf21f203a5d54bf674817fe98665353beebd9903d1dae
Size

12.2MB
MD5

accaf486dae78c6df102c678fc1785bd
SHA1

e69f86e4e2917c9bd6ed2557b9d0269349d001b0
SHA256

9ab39a90cd7af7e98a3cf21f203a5d54bf674817fe98665353beebd9903d1dae
SHA512

a74fc60e3ab4ebc6e3fd079b12adfd6dd9fa54100918fd5b346f3534de58dcd60f08544b4700215034658ef0da8332d243c6c03091d69009d3d6d203cc247ac5
SSDEEP

393216:NLUIbbGCS4ERd9wFavkZ3fj9rzyzyXiY7QduSXdl:pUIbbNERzwFK0xrqyyY7zW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9ab39a90cd7af7e98a3cf21f203a5d54bf674817fe98665353beebd9903d1dae

Files

9ab39a90cd7af7e98a3cf21f203a5d54bf674817fe98665353beebd9903d1dae
.exe windows:5 windows x86 arch:x86

72221a71e92098dba86f455aae740e2f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rasapi32

RasGetConnectStatusA

winmm

waveOutPrepareHeader

ws2_32

inet_addr

msvfw32

DrawDibDraw

avifil32

AVIStreamGetFrame

kernel32

Process32First
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

RegisterClipboardFormatA

gdi32

CreateRectRgnIndirect

winspool.drv

DocumentPropertiesA

comdlg32

GetOpenFileNameA

advapi32

RegSetValueExA

shell32

Shell_NotifyIconA

ole32

CoTaskMemAlloc

oleaut32

SysStringLen

comctl32

ImageList_Destroy

oledlg

ord8

wininet

InternetCanonicalizeUrlA

Sections

.text
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 7.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 715KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.se0
Size: - Virtual size: 972KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.se1
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72221a71e92098dba86f455aae740e2f

Headers

File Characteristics

Imports

rasapi32

winmm

ws2_32

msvfw32

avifil32

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

wininet

Sections

.text Size: - Virtual size: 1.3MB

.rdata Size: - Virtual size: 7.8MB

.data Size: - Virtual size: 715KB

.se0 Size: - Virtual size: 972KB

.se1 Size: 5.4MB - Virtual size: 5.4MB

.rsrc Size: 28KB - Virtual size: 26KB

.text
Size: - Virtual size: 1.3MB

.rdata
Size: - Virtual size: 7.8MB

.data
Size: - Virtual size: 715KB

.se0
Size: - Virtual size: 972KB

.se1
Size: 5.4MB - Virtual size: 5.4MB

.rsrc
Size: 28KB - Virtual size: 26KB