dc8949d1f8d639977682a624eb9890d1e370f50050c7a9858b9e5cd4876a3732

Sharing

Copy URL Twitter E-mail

General

Target

dc8949d1f8d639977682a624eb9890d1e370f50050c7a9858b9e5cd4876a3732
Size

6.1MB
MD5

c5f3b3e1b474c3af96b629fbe0abe57c
SHA1

6bcb4230bb331f4b8de3d27d431b3b3a11d36ca7
SHA256

dc8949d1f8d639977682a624eb9890d1e370f50050c7a9858b9e5cd4876a3732
SHA512

a8f4e91ba66a523a985875bdadc5bd7a5cfbbb0ec5d613a4453923ee754b34816981f52263ec3da96061f046eae4f2954f1a6ede458da0b2dc77ac8e147fa7bd
SSDEEP

98304:BmiAzZoG2safURK7JHEr4mmTj0WaeCxtD42DPtjDq2hWqHmUTIC20/ScM/zHXnxq:QnLQdHTf0X02B33h6CrhM/rXHRM/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc8949d1f8d639977682a624eb9890d1e370f50050c7a9858b9e5cd4876a3732

Files

dc8949d1f8d639977682a624eb9890d1e370f50050c7a9858b9e5cd4876a3732
.exe windows:4 windows x86 arch:x86

61b53abdc98ded93692099405d8b08ae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

kernel32

GetStdHandle

user32

GetDesktopWindow

gdi32

RestoreDC

winmm

midiStreamRestart

winspool.drv

DocumentPropertiesA

comdlg32

GetFileTitleA

advapi32

RegCreateKeyExA

shell32

DragFinish

ole32

CLSIDFromProgID

oleaut32

VariantChangeType

comctl32

ImageList_Add

ws2_32

WSACleanup

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 5.0MB - Virtual size: 6.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1024KB - Virtual size: 1024KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61b53abdc98ded93692099405d8b08ae

Headers

File Characteristics

Imports

msvfw32

avifil32

kernel32

user32

gdi32

winmm

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

ws2_32

msvcrt

iphlpapi

psapi

Sections

.text Size: 5.0MB - Virtual size: 6.7MB

.sedata Size: 1024KB - Virtual size: 1024KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 40KB - Virtual size: 40KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 5.0MB - Virtual size: 6.7MB

.sedata
Size: 1024KB - Virtual size: 1024KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 40KB - Virtual size: 40KB

.sedata
Size: 4KB - Virtual size: 4KB