53ba155648e64a16a5c2bc1341a84a91

Sharing

Copy URL Twitter E-mail

General

Target

53ba155648e64a16a5c2bc1341a84a91
Size

83KB
MD5

53ba155648e64a16a5c2bc1341a84a91
SHA1

73271df56857b3fb6cda7e2f995188b0265efcc8
SHA256

f0149d4667f55ff271093abded268a7ecb7a45d42ac8ba80d6f95cdb228baaab
SHA512

e56b2ce9b79e17575dad0bf1321d4c1e0e131257c2169f0fab9ddb15de0b51224393f70e1e8ad8d8405ba2eb4926ed7aaa8c3b8f7e2138ce906dad2558b61e3c
SSDEEP

1536:qWQfCClLeAEwVs/mXSQGZ9teVvOGfItXPkEelEufzoTWuV1MFKO:qFfAwVPXSQCtivOGfIt/kEeNfc1Vh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53ba155648e64a16a5c2bc1341a84a91

Files

53ba155648e64a16a5c2bc1341a84a91
.dll windows:4 windows x86 arch:x86

afe5923b5825524caf6126706261e67e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

BuildCommDCBAndTimeoutsA
CloseHandle
CreateDirectoryA
CreateEventW
CreateWaitableTimerW
DeleteCriticalSection
DeleteFiber
DnsHostnameToComputerNameA
DuplicateHandle
EndUpdateResourceW
EnumCalendarInfoW
EnumUILanguagesA
ExitProcess
GetACP
GetBinaryTypeA
GetCommandLineA
GetCompressedFileSizeA
GetCurrentProcessId
GetDevicePowerState
GetDiskFreeSpaceW
GetDriveTypeA
GetEnvironmentStringsA
GetFileAttributesExW
GetLogicalDrives
GetModuleHandleA
GetOEMCP
GetOverlappedResult
GetPriorityClass
GetProfileIntA
GetStartupInfoA
GetSystemDirectoryA
GetVersionExA
GetWindowsDirectoryA
GlobalLock
GlobalMemoryStatusEx
HeapAlloc
HeapCreate
HeapDestroy
HeapUnlock
IsValidLanguageGroup
ResetWriteWatch
SearchPathW
SetCalendarInfoA
SetFileApisToOEM
SetLastError
SetMessageWaitingIndicator
SetThreadExecutionState
SetThreadPriority
Sleep
SystemTimeToFileTime
TerminateProcess
UnlockFileEx
WaitForDebugEvent
WideCharToMultiByte
WriteFile

user32

TranslateMessage
SetWindowPos
SetScrollInfo
SendMessageTimeoutA
ScrollWindowEx
RegisterWindowMessageA
PostMessageA
PeekMessageA
LoadStringA
IsDialogMessageA
InvalidateRect
IntersectRect
GetSysColorBrush
GetDoubleClickTime
GetDlgCtrlID
FrameRect
EndDialog
DrawMenuBar
DrawIconEx
DialogBoxParamA
DialogBoxIndirectParamA
DefMDIChildProcA
CreateWindowExA
CreateIconIndirect
CloseClipboard
ClientToScreen
CheckRadioButton
BeginPaint
AppendMenuA
wsprintfA
SetClipboardData

msi

MsiConfigureFeatureA
MsiConfigureProductExW
MsiDatabaseImportW
MsiDatabaseMergeA
MsiEnumComponentCostsA
MsiEnumPatchesA
MsiEnumProductsA
MsiGetComponentStateA
MsiGetFeatureUsageW
MsiGetPatchInfoA
MsiGetPatchInfoW
MsiCollectUserInfoW
MsiLoadStringW
MsiPreviewDialogA
MsiProvideAssemblyA
MsiProvideComponentFromDescriptorA
MsiCollectUserInfoA
MsiQueryProductStateW
MsiRecordGetStringW
MsiQueryFeatureStateW
MsiReinstallFeatureFromDescriptorA
MsiSetExternalUIA
MsiSourceListClearAllW
MsiUseFeatureA
MsiApplyPatchA
MsiLoadStringA
MsiReinstallFeatureA

oleacc

LresultFromObject
AccessibleChildren

oledlg

OleUIConvertA
OleUIChangeIconA
OleUICanConvertOrActivateAs
OleUIBusyA

dbghelp

GetTimestampForLoadedLibrary
SymFunctionTableAccess
SymGetTypeInfo
ImageNtHeader

comctl32

CreateUpDownControl
CreateStatusWindowW
CreateStatusWindowA
CreateMappedBitmap
FlatSB_EnableScrollBar
FlatSB_GetScrollInfo
FlatSB_GetScrollPos
FlatSB_SetScrollRange
FlatSB_ShowScrollBar
GetEffectiveClientRect
GetMUILanguage
PropertySheetW
PropertySheetA
ImageList_SetIconSize
ImageList_SetBkColor
ImageList_Replace
ImageList_LoadImageW
ImageList_LoadImageA
ImageList_GetImageCount
ImageList_Draw
ImageList_DragShowNolock
ImageList_DragLeave
ImageList_Add
DrawStatusTextW

comdlg32

FindTextW
GetSaveFileNameA
ChooseFontW
PrintDlgW

security

AddSecurityPackageW
EncryptMessage
QueryCredentialsAttributesA
QuerySecurityContextToken
UnsealMessage
AddSecurityPackageA

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afe5923b5825524caf6126706261e67e

Headers

File Characteristics

Imports

kernel32

user32

msi

oleacc

oledlg

dbghelp

comctl32

comdlg32

security

Sections

.text Size: 52KB - Virtual size: 52KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 512B - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 52KB - Virtual size: 52KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 512B - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB