4cfe0f9cfef4a82e8129332b41fbbee0b264acfef892a3733bd563d27b0c443f

Sharing

Copy URL Twitter E-mail

General

Target

4cfe0f9cfef4a82e8129332b41fbbee0b264acfef892a3733bd563d27b0c443f
Size

4.1MB
MD5

26bbd43402f693ac2fb58880201ce76e
SHA1

56689c48597cd8804035a0f872f5c525da58f6a2
SHA256

4cfe0f9cfef4a82e8129332b41fbbee0b264acfef892a3733bd563d27b0c443f
SHA512

5cf17a482881b813f52ac0074934145344143d857e897ec634e96cf68b68748987dbb7f06ea314ba218ec51a32c284c7aa38b2ba83a85c15f7645f319777573c
SSDEEP

98304:p4AnU6IoJwQf9yu8qFWh6QXDJzstwEl7HNvb:RUKJtyulWh6TrrNvb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cfe0f9cfef4a82e8129332b41fbbee0b264acfef892a3733bd563d27b0c443f

Files

4cfe0f9cfef4a82e8129332b41fbbee0b264acfef892a3733bd563d27b0c443f
.exe windows:5 windows x86 arch:x86

c227f55c00e641464b6c988d2e959604

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

qt5core

?removeRecursively@QDir@@QAE_NXZ

qt5gui

??1QIcon@@QAE@XZ

qt5widgets

?spacerItem@QLayoutItem@@UAEPAVQSpacerItem@@XZ

qt5webkitwidgets

?dragMoveEvent@QWebView@@MAEXPAVQDragMoveEvent@@@Z

qt5network

??1QNetworkAccessManager@@UAE@XZ

kernel32

GetVersionExW
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

ChangeDisplaySettingsExW

shell32

ShellExecuteExW

msvcp110

?_Xbad_alloc@std@@YAXXZ

msvcr110

memset

jjdps

JJDPSInit

tklobbytoolkit

?Instance@TKLBLoaderHelper@@SAAAV1@XZ

tkcfgcore

?DllGetClassObject@tkcfg@@YAPAVTKCFGCore@@XZ

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Ma;
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.*Qq
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.X[l
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c227f55c00e641464b6c988d2e959604

Headers

DLL Characteristics

File Characteristics

Imports

qt5core

qt5gui

qt5widgets

qt5webkitwidgets

qt5network

kernel32

user32

shell32

msvcp110

msvcr110

jjdps

tklobbytoolkit

tkcfgcore

Sections

.text Size: 33KB - Virtual size: 33KB

.rdata Size: 25KB - Virtual size: 24KB

.data Size: 1024B - Virtual size: 1KB

.Ma; Size: 1.7MB - Virtual size: 1.7MB

.*Qq Size: 2KB - Virtual size: 1KB

.X[l Size: 2.2MB - Virtual size: 2.2MB

.reloc Size: 9KB - Virtual size: 9KB

.rsrc Size: 181KB - Virtual size: 181KB

.text
Size: 33KB - Virtual size: 33KB

.rdata
Size: 25KB - Virtual size: 24KB

.data
Size: 1024B - Virtual size: 1KB

.Ma;
Size: 1.7MB - Virtual size: 1.7MB

.*Qq
Size: 2KB - Virtual size: 1KB

.X[l
Size: 2.2MB - Virtual size: 2.2MB

.reloc
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 181KB - Virtual size: 181KB