General

  • Target

    48fb5c4c2a2e6ab49bb10c599d69ab614d2c69f91854e00adaf5508d9ee14f7a

  • Size

    159KB

  • MD5

    446db12350e471737925dc25e82eb21c

  • SHA1

    5082ba44dccc26f278adacaf5e8bf5d4424666aa

  • SHA256

    48fb5c4c2a2e6ab49bb10c599d69ab614d2c69f91854e00adaf5508d9ee14f7a

  • SHA512

    564b995e2c3a8585aa262670ab13ec744ec198bec703107c9e9f2e2a8322acd3064d485bd8f9509f6d15a491e635f3b714ae99bc0c57190ceb4c28d59d9b804a

  • SSDEEP

    3072:qHadUuK8JdwYsawEuGstMRc/EO4Igms05Cet09kpGGVWoEcfpIg21jQkCnYpcsua:qHadpdwMctGMEO4XmbhXpnIcakkCnHs9

Score
3/10

Malware Config

Signatures

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • 48fb5c4c2a2e6ab49bb10c599d69ab614d2c69f91854e00adaf5508d9ee14f7a
    .exe windows:4 windows x86 arch:x86

    9dda1a1d1f8a1d13ae0297b47046b26e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/SysRestore.dll
    .dll windows:5 windows x86 arch:x86

    985dc42ba384582f88fa4ebd866cc9b9


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    509a34b3a68a773e0afb4259e68f9f82


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    3b477381217c97b22146297f93df2a92


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisFile.dll
    .dll windows:4 windows x86 arch:x86

    bc2dec22623add29834c35d9141fa2a6


    Headers

    Imports

    Exports

    Sections

  • $TEMP/image.bmp