acd0e618cb14cd1b59c1ba4c50f623b3863f104412dc56e5e281348468afe76c

Sharing

Copy URL Twitter E-mail

General

Target

acd0e618cb14cd1b59c1ba4c50f623b3863f104412dc56e5e281348468afe76c
Size

15.7MB
MD5

48fda33efdda724bbd390eb5bd3fa5d8
SHA1

cb0c03033a6efaebf1a536d8f966e17e3592f3fc
SHA256

acd0e618cb14cd1b59c1ba4c50f623b3863f104412dc56e5e281348468afe76c
SHA512

14e92ec2d121a405a2c0674b4386d9610150fd26c73e709ca081298898bdc7c30881491bd7fc40ce2bd8f3fc73915eefa84b1534f7f1f89c760c1de898d73330
SSDEEP

393216:hLtKxNlX3fBF7gosmYisgh/fc52CswcISzQnJt:hLS/BtgRVi/f/4cVQnJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acd0e618cb14cd1b59c1ba4c50f623b3863f104412dc56e5e281348468afe76c

Files

acd0e618cb14cd1b59c1ba4c50f623b3863f104412dc56e5e281348468afe76c
.exe windows:6 windows x64 arch:x64

c3ed9c1580ff79c64565fa2b9f6bdc11

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

SetClipboardData

shell32

SHGetSpecialFolderPathA

ole32

CoUninitialize

d3d11

D3D11CreateDeviceAndSwapChain

wininet

InternetOpenA

imm32

ImmSetCandidateWindow

d3dcompiler_47

D3DCompile

version

GetFileVersionInfoW

Sections

.text
Size: - Virtual size: 829KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 804KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 798KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.GBH
Size: - Virtual size: 8.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.r5r
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.(!=
Size: 15.6MB - Virtual size: 15.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3ed9c1580ff79c64565fa2b9f6bdc11

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shell32

ole32

d3d11

wininet

imm32

d3dcompiler_47

version

Sections

.text Size: - Virtual size: 829KB

.rdata Size: - Virtual size: 804KB

.data Size: - Virtual size: 798KB

.pdata Size: - Virtual size: 26KB

.GBH Size: - Virtual size: 8.8MB

.r5r Size: 3KB - Virtual size: 3KB

.(!= Size: 15.6MB - Virtual size: 15.6MB

.reloc Size: 512B - Virtual size: 272B

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: - Virtual size: 829KB

.rdata
Size: - Virtual size: 804KB

.data
Size: - Virtual size: 798KB

.pdata
Size: - Virtual size: 26KB

.GBH
Size: - Virtual size: 8.8MB

.r5r
Size: 3KB - Virtual size: 3KB

.(!=
Size: 15.6MB - Virtual size: 15.6MB

.reloc
Size: 512B - Virtual size: 272B

.rsrc
Size: 31KB - Virtual size: 30KB