08db054e43b398192f89ca07f69fec8a463e00493fd38ef39836099fa151cdc3

Sharing

Copy URL Twitter E-mail

General

Target

08db054e43b398192f89ca07f69fec8a463e00493fd38ef39836099fa151cdc3
Size

15.9MB
MD5

8c03c8a906c6590db2f3aaa8d567f30a
SHA1

b1923848369461d980d95b5408afae52fbbb7976
SHA256

08db054e43b398192f89ca07f69fec8a463e00493fd38ef39836099fa151cdc3
SHA512

e82e38b7409b543184a607909cf9e257db715948b9d34618810a6ce613e03d2ad1e1a93d006c6018ba923652058920583828bc6166264765d24227c348999ef2
SSDEEP

393216:meDrEqNYvRHeIHtYW5KhF4enaljeAjmPN5xZ:ZNYvJ5tYkKnWXkX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08db054e43b398192f89ca07f69fec8a463e00493fd38ef39836099fa151cdc3

Files

08db054e43b398192f89ca07f69fec8a463e00493fd38ef39836099fa151cdc3
.exe windows:5 windows x86 arch:x86

5f88c9f57c5a0768255497617f599a43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetVersion
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
GetModuleHandleA
LoadLibraryA
GetProcAddress

user32

DrawFrameControl

gdi32

CreateDCA

comdlg32

PrintDlgA

winspool.drv

ClosePrinter

advapi32

RegSetValueA

shell32

ExtractIconA

comctl32

ord17

oledlg

ord3

ole32

OleIsCurrentClipboard

olepro32

ord253

oleaut32

VarDateFromStr

ws2_32

send

hid

HidD_GetAttributes

setupapi

SetupDiGetDeviceInterfaceDetailA

winscard

SCardEstablishContext

Sections

.text
Size: - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.atp0
Size: - Virtual size: 10.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.atp1
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.atp2
Size: 15.9MB - Virtual size: 15.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5f88c9f57c5a0768255497617f599a43

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

ws2_32

hid

setupapi

winscard

Sections

.text Size: - Virtual size: 1.9MB

.rdata Size: - Virtual size: 128KB

.data Size: - Virtual size: 161KB

.idata Size: - Virtual size: 24KB

.atp0 Size: - Virtual size: 10.2MB

.atp1 Size: 8KB - Virtual size: 4KB

.atp2 Size: 15.9MB - Virtual size: 15.9MB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: - Virtual size: 1.9MB

.rdata
Size: - Virtual size: 128KB

.data
Size: - Virtual size: 161KB

.idata
Size: - Virtual size: 24KB

.atp0
Size: - Virtual size: 10.2MB

.atp1
Size: 8KB - Virtual size: 4KB

.atp2
Size: 15.9MB - Virtual size: 15.9MB

.rsrc
Size: 4KB - Virtual size: 2KB