5c30e96dd69b25cbc68dcd0b57ba436c

General

Target

5c30e96dd69b25cbc68dcd0b57ba436c
Size

3.4MB
MD5

5c30e96dd69b25cbc68dcd0b57ba436c
SHA1

43ba07ab9557fa6ff85381b0f11c77361b4d7005
SHA256

cc3c662ea874c1b1a2316e8e2b6a30ac56851552a3bd8b24aaf949dd965fa78b
SHA512

1b5019fd1be771c77c7d1dcbc7f773f5f411ed29aac183878dc95c906264df805edd165fddc1208cf3348143f7acdefed8a14c0d5b3fa8eaa589b6d31afb6d8c
SSDEEP

98304:fAJxWagtjZDt1I+iF4owgP0N5P46xZ0PUJpUIsdtu:fAJxWagrLiF4o2jP7jYUJFs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c30e96dd69b25cbc68dcd0b57ba436c

Files

5c30e96dd69b25cbc68dcd0b57ba436c
.exe windows:4 windows x86 arch:x86

d0354e49a945320b936f707b6645e8c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetCurrentProcessId
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
CloseHandle
UnhandledExceptionFilter
GetTickCount
MultiByteToWideChar
HeapAlloc
LocalFree
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
CreateFileW
ExitProcess
GetModuleFileNameW
GetStdHandle
IsDebuggerPresent
GetCommandLineW
RaiseException
GetACP
GetFileType
GetModuleHandleA
HeapReAlloc
GetConsoleMode
CreateEventW
TlsAlloc
HeapSize
LoadLibraryW
LoadLibraryExW
CreateThread
TlsFree
GetStringTypeW
GetModuleFileNameA
GetOEMCP
GetEnvironmentStringsW
SetStdHandle
FreeEnvironmentStringsW
FindNextFileW
IsValidCodePage
DeleteFileW
VirtualAlloc
ResetEvent
ReleaseMutex
CreateFileA
GetFileSize
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
GetExitCodeProcess
ExpandEnvironmentStringsW

user32

TranslateMessage
LoadStringW
ShowWindow
DestroyWindow
PostQuitMessage
GetWindowLongW
GetWindowRect
SendMessageW
IsWindow
GetParent
EndDialog
SetWindowTextW
SetTimer
LoadIconW
SetFocus
EndPaint
BeginPaint
RegisterClassW
GetWindow
GetKeyState
MessageBoxA
ClientToScreen

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0354e49a945320b936f707b6645e8c5

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.idata Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 1KB