голая мать ровняши[.]mp3

Sharing

Copy URL Twitter E-mail

General

Target

голая мать ровняши.mp3
Size

12.2MB
MD5

884ded01dcc8e6f6010572b507bd576b
SHA1

327fffe76fa1dba50e5def8423484b99c174a8f9
SHA256

1815a1524a19e3eb9f01e95b5c77a57d4c81ac265093defcc94873887bacd20f
SHA512

1b4cf0c9c79d017d6290b1ad1366a98dd87faaedb5f1bd29da9d9f109d90001bf60f7cabaa38d69c200399b17dbbdc707f7b74e3f62b7eac0ea4f371face0a5b
SSDEEP

196608:XZM55O5fZYVMYxqKeikTwXb49ZGXQ55FYP4NpXZ8MDpfIVMFx:Ji5OfZ8/ITwkZiQ55FEPmpYMj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
голая мать ровняши.mp3

Files

голая мать ровняши.mp3
.exe windows:6 windows x64 arch:x64

c646d32ae7ffe53a767908b876bd0917

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetModuleHandleA
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

GetKeyState

gdi32

GetDeviceCaps

advapi32

RegGetValueA

wininet

InternetOpenUrlA

imm32

ImmReleaseContext

d3d9

Direct3DCreate9

Sections

.text
Size: - Virtual size: 563KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.P W
Size: - Virtual size: 7.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.z`$
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.b0{
Size: 12.2MB - Virtual size: 12.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c646d32ae7ffe53a767908b876bd0917

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

wininet

imm32

d3d9

Sections

.text Size: - Virtual size: 563KB

.rdata Size: - Virtual size: 166KB

.data Size: - Virtual size: 11KB

.pdata Size: - Virtual size: 23KB

_RDATA Size: - Virtual size: 348B

.P W Size: - Virtual size: 7.0MB

.z`$ Size: 3KB - Virtual size: 3KB

.b0{ Size: 12.2MB - Virtual size: 12.2MB

.reloc Size: 512B - Virtual size: 284B

.text
Size: - Virtual size: 563KB

.rdata
Size: - Virtual size: 166KB

.data
Size: - Virtual size: 11KB

.pdata
Size: - Virtual size: 23KB

_RDATA
Size: - Virtual size: 348B

.P W
Size: - Virtual size: 7.0MB

.z`$
Size: 3KB - Virtual size: 3KB

.b0{
Size: 12.2MB - Virtual size: 12.2MB

.reloc
Size: 512B - Virtual size: 284B