c179d9f49ae0e35ad2dc4ad254df97b5c5a563ff5b1c110d4fa8a8f7d8dc5fabN

Sharing

Copy URL Twitter E-mail

General

Target

c179d9f49ae0e35ad2dc4ad254df97b5c5a563ff5b1c110d4fa8a8f7d8dc5fabN
Size

9.0MB
MD5

f539d59ab6218373a6c827cbee277ad0
SHA1

b8de9eaaa4296703bdafeb2b268822eb2b9bb249
SHA256

c179d9f49ae0e35ad2dc4ad254df97b5c5a563ff5b1c110d4fa8a8f7d8dc5fab
SHA512

4915ac8d063c2baa1abb3748342e99b922b33ab196e03bb08842a019c99ea20ae63a704e29ae3b967dafd9e929d7bb8642fb7dfe690b935652c0bd7567aa1e57
SSDEEP

196608:DGSl1uo4aMK+J/ZxPXGpDN1O2WJeQmjX9K6:DGhXaRc/DPWj11WJt2K6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c179d9f49ae0e35ad2dc4ad254df97b5c5a563ff5b1c110d4fa8a8f7d8dc5fabN

Files

c179d9f49ae0e35ad2dc4ad254df97b5c5a563ff5b1c110d4fa8a8f7d8dc5fabN
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

ExitDll
GetPluginFactory
InitDll
MAIN
VSTPluginMain

Sections

Size: 667KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 179KB - Virtual size: 676KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 11KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 61KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 31B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 9B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 67KB - Virtual size: 775KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 4KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.exports
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 13.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 8.0MB - Virtual size: 8.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 16B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 667KB - Virtual size: 1.6MB

Size: 179KB - Virtual size: 676KB

Size: 11KB - Virtual size: 69KB

Size: 61KB - Virtual size: 108KB

Size: 31B - Virtual size: 52B

Size: 9B - Virtual size: 9B

Size: 1KB - Virtual size: 5KB

Size: 67KB - Virtual size: 775KB

Size: 4KB - Virtual size: 33KB

.exports Size: 512B - Virtual size: 4KB

.imports Size: 2KB - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 4KB

.themida Size: - Virtual size: 13.5MB

.boot Size: 8.0MB - Virtual size: 8.0MB

.reloc Size: 16B - Virtual size: 4KB

.exports
Size: 512B - Virtual size: 4KB

.imports
Size: 2KB - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 4KB

.themida
Size: - Virtual size: 13.5MB

.boot
Size: 8.0MB - Virtual size: 8.0MB

.reloc
Size: 16B - Virtual size: 4KB