dc6fcb1ff86a562044b77181ff187368de357af58ead9b7176466ca9f432e127

Resubmissions

15/10/2024, 06:40

241015-hfm3bszfmb 5

Sharing

Copy URL Twitter E-mail

General

Target

dc6fcb1ff86a562044b77181ff187368de357af58ead9b7176466ca9f432e127
Size

15.5MB
MD5

3b83acbcb0c6fed3576bb27496c060d9
SHA1

54edc6e4465a1097abcce31b1cdb3ea7fb53a352
SHA256

dc6fcb1ff86a562044b77181ff187368de357af58ead9b7176466ca9f432e127
SHA512

300c43d05bd902e040a23270e62db6b3be67134a86d5711b06671c7f3c36efc35435cf77044d0a8940803d19ae90f375cd1d4c535554a23fd99b8119fba92569
SSDEEP

393216:yOAWV+lbtf+eO4c3iBvq34ZR3josKM4nZdezCenCGC5dkvYk:yXWV0tHZqmzosKxLvIR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc6fcb1ff86a562044b77181ff187368de357af58ead9b7176466ca9f432e127

Files

dc6fcb1ff86a562044b77181ff187368de357af58ead9b7176466ca9f432e127
.exe windows:5 windows x86 arch:x86

2e6c415b984d1247d51b6ac6240f017e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rasapi32

RasGetConnectStatusA

iphlpapi

GetAdaptersInfo

winmm

midiStreamOpen

ws2_32

select

kernel32

GetVersion
GetVersionExA
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
GetModuleHandleA
LoadLibraryA
GetProcAddress

user32

GetClassNameA

gdi32

LineTo

msimg32

GradientFill

winspool.drv

OpenPrinterA

advapi32

RegCloseKey

shell32

Shell_NotifyIconA

ole32

CoGetClassObject

oleaut32

SafeArrayGetElement

comctl32

ImageList_GetIcon

oledlg

ord8

wininet

InternetCloseHandle

comdlg32

ChooseFontA

Sections

.text
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 494KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tvmp0
Size: - Virtual size: 8.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tvmp1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tvmp2
Size: 15.3MB - Virtual size: 15.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

2e6c415b984d1247d51b6ac6240f017e

Headers

File Characteristics

Imports

rasapi32

iphlpapi

winmm

ws2_32

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

wininet

comdlg32

Sections

.text Size: - Virtual size: 1.2MB

.rdata Size: - Virtual size: 2.0MB

.data Size: - Virtual size: 494KB

.tvmp0 Size: - Virtual size: 8.5MB

.tvmp1 Size: 4KB - Virtual size: 2KB

.tvmp2 Size: 15.3MB - Virtual size: 15.3MB

.rsrc Size: 140KB - Virtual size: 137KB

.text
Size: - Virtual size: 1.2MB

.rdata
Size: - Virtual size: 2.0MB

.data
Size: - Virtual size: 494KB

.tvmp0
Size: - Virtual size: 8.5MB

.tvmp1
Size: 4KB - Virtual size: 2KB

.tvmp2
Size: 15.3MB - Virtual size: 15.3MB

.rsrc
Size: 140KB - Virtual size: 137KB