DllRegisterServer
LUdr67
PwR73X
Static task
static1
Behavioral task
behavioral1
Sample
6438/8157.cmd
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
6438/8157.cmd
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
6438/plugged.dll
Resource
win7-20240729-en
Behavioral task
behavioral4
Sample
6438/plugged.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral5
Sample
Overdue.lnk
Resource
win7-20240903-en
Behavioral task
behavioral6
Sample
Overdue.lnk
Resource
win10v2004-20241007-en
Target
aaa.iso
Size
446KB
MD5
1a5d350d71f6821006691ac076e026e0
SHA1
1dfb04e5d3f71b03085b3787e4970281f08bff74
SHA256
951cc98b54bc4d78ce4f11a3bdbfdaee7777591ffef88bb2557ebecbb1909013
SHA512
191ffda025f43e4133cd9bd941304adb2057c557cecab95207a02a117c57533c0713233f8701965f9699da2c891a97c6f26f55e9b9c11accfc0eaa11f3dc753c
SSDEEP
6144:etgTFlqteWTBa5WsoUReNsyLK9d8WqniKS9jyA9yjHHXsBcfmL/p+LIORL6qYFYM:U8z4TU5WsoURzN9WtniPHlQEFYM
Checks for missing Authenticode signature.
resource |
---|
unpack002/6438/plugged.dat |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
GetCurrentDirectoryA
CreateFileA
DeleteFileA
FindFirstFileA
FindNextFileA
SetFilePointer
CloseHandle
GetLastError
ConnectNamedPipe
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
GetCurrentThreadId
GetWindowsDirectoryA
VirtualAlloc
MapViewOfFile
GetProcAddress
CreateFileMappingA
LoadLibraryA
GetTempPathA
CreateNamedPipeA
DllRegisterServer
LUdr67
PwR73X
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ