a28371e6bf3cbee0ae452adad24575a5e590693ea55cca10b7a7d03090187535

Sharing

Copy URL Twitter E-mail

General

Target

a28371e6bf3cbee0ae452adad24575a5e590693ea55cca10b7a7d03090187535
Size

12.8MB
MD5

ea8ac8a3b586c668d66c564291fa041a
SHA1

7ec93125e12a734aac2a5a34bdf54e1260a58f73
SHA256

a28371e6bf3cbee0ae452adad24575a5e590693ea55cca10b7a7d03090187535
SHA512

5385c127126f5691c114d69cb23e351dcbb6bb106cd3e4c13463c06276f6127e42fdb85f6f44401ee676f038d13a10cfc89a92e353abda2c10c568d9094ec489
SSDEEP

393216:ykgYuOMj8o+sV+P6pUKgDCXn6uC8t91B:ykgYuOMj8ZsJ+DCXF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a28371e6bf3cbee0ae452adad24575a5e590693ea55cca10b7a7d03090187535

Files

a28371e6bf3cbee0ae452adad24575a5e590693ea55cca10b7a7d03090187535
.exe windows:5 windows x86 arch:x86

88402635d860b166c6ab3a5468afe1cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetVersion

user32

GetClipboardData

gdi32

SetViewportExtEx

winmm

midiStreamClose

winspool.drv

DocumentPropertiesA

advapi32

SetSecurityDescriptorDacl

shell32

Shell_NotifyIconA

ole32

CLSIDFromString

oleaut32

UnRegisterTypeLi

comctl32

ImageList_Destroy

ws2_32

accept

comdlg32

ChooseColorA

Sections

.text
Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 3.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.}/;Y0Bm
Size: - Virtual size: 8.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.6g31J&n
Size: 4KB - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.7VN ]u\
Size: 12.8MB - Virtual size: 12.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 478B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

88402635d860b166c6ab3a5468afe1cb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

ws2_32

comdlg32

Sections

.text Size: - Virtual size: 1.0MB

.rdata Size: - Virtual size: 3.5MB

.data Size: - Virtual size: 202KB

.}/;Y0Bm Size: - Virtual size: 8.8MB

.6g31J&n Size: 4KB - Virtual size: 124B

.7VN ]u\ Size: 12.8MB - Virtual size: 12.8MB

.rsrc Size: 4KB - Virtual size: 478B

.text
Size: - Virtual size: 1.0MB

.rdata
Size: - Virtual size: 3.5MB

.data
Size: - Virtual size: 202KB

.}/;Y0Bm
Size: - Virtual size: 8.8MB

.6g31J&n
Size: 4KB - Virtual size: 124B

.7VN ]u\
Size: 12.8MB - Virtual size: 12.8MB

.rsrc
Size: 4KB - Virtual size: 478B