465f52882fe6baad3132a93b25f2edab

Sharing

Copy URL Twitter E-mail

General

Target

465f52882fe6baad3132a93b25f2edab
Size

84KB
MD5

465f52882fe6baad3132a93b25f2edab
SHA1

6cb03a748f6b300302d9c036bc2d77049db55f3c
SHA256

9a4dbff04b95de1af96b39b9302c5eaa6efe0e968cdf644611f2b1f41eb170b3
SHA512

47c2b73536a20ee5c28d5bcb4e85a547e6e7c02dd724e566f55ce598b7b570a11b1005ad60daf6a5e07f7b2b8719f478ac9fbf7a45f4d6180c81857ca1819dab
SSDEEP

1536:Jo5JdY1fMvpyXUecW1JLzJFNou34NFr8qb49LEbchxsdHXeZ0qGK2kyK:JOQ1kv0XUe/JLz94N+9YXeZ0/VkyK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
465f52882fe6baad3132a93b25f2edab

Files

465f52882fe6baad3132a93b25f2edab
.exe windows:5 windows x86 arch:x86

b419e40b02f128a49761c44bf09d0552

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateActCtxW
TlsGetValue
GetDiskFreeSpaceExW
DeleteCriticalSection
FileTimeToSystemTime
SetHandleCount
EnterCriticalSection
IsProcessorFeaturePresent
GetStdHandle
GetProcessHeap
InterlockedDecrement
GetSystemTimeAsFileTime
GetCPInfo
FileTimeToLocalFileTime
DecodePointer
VirtualFree
GetModuleHandleA
SetConsoleMode
GetEnvironmentStrings
IsDebuggerPresent
LCMapStringW
SetConsoleCtrlHandler
HeapAlloc
TlsFree
GetStringTypeA
CreateThread
FreeEnvironmentStringsW
WideCharToMultiByte
HeapSetInformation
VirtualAlloc
LocalFileTimeToFileTime
GetTimeFormatA
GetACP
GetCurrentProcessId
InitializeCriticalSectionAndSpinCount
GetCommandLineA
LeaveCriticalSection
TlsSetValue
lstrcpynA
GetCurrentThreadId
GetProcAddress
LCMapStringA
GetEnvironmentStringsW
GetUserDefaultLCID
TerminateProcess
Sleep
HeapReAlloc
GetVersionExA
CreateProcessA
GetCurrentDirectoryA
GetTickCount
CreateFileA
ReadFile
GetVolumeInformationA
UnhandledExceptionFilter
GetModuleFileNameW
RtlUnwind
GetStringTypeW
SetFileAttributesW
CloseHandle
SetFileAttributesA
CreateFileW
GetModuleHandleW
CreateDirectoryW
SetUnhandledExceptionFilter
GetFileType
EncodePointer
HeapFree
GetFileAttributesA
GetCurrentThread
LoadLibraryA
SetFileTime
InterlockedIncrement
GetDriveTypeA
GetLastError
ExitProcess
HeapCreate
QueryPerformanceCounter
DeleteFileA
GetSystemTime
SetLastError
GetEnvironmentVariableA
GetFullPathNameA
HeapSize
GetSystemDefaultLCID
VirtualProtect
IsValidLocale
GetFullPathNameW
GetCurrentProcess
GetStartupInfoW
FreeLibrary
GetModuleFileNameA
GetOEMCP
CompareStringW
IsValidCodePage
TlsAlloc
MultiByteToWideChar
LoadLibraryW
InitializeCriticalSection

user32

SetWindowsHookExW
SetWindowPos
SetForegroundWindow
BringWindowToTop
GetFocus
DrawTextExW
SetMenu
CopyAcceleratorTableW
MessageBoxW
PostQuitMessage
EndDialog
GetMenuState
GetClassLongW
GetParent
SetTimer
UnregisterClassW
CreatePopupMenu
EndDeferWindowPos
GetShellWindow
CloseClipboard
GetDoubleClickTime
SetActiveWindow

Sections

.text
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b419e40b02f128a49761c44bf09d0552

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 66KB - Virtual size: 66KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 3KB - Virtual size: 6KB

.rsrc Size: 512B - Virtual size: 436B

.text
Size: 66KB - Virtual size: 66KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 3KB - Virtual size: 6KB

.rsrc
Size: 512B - Virtual size: 436B