55a10a122ceae47b28db19a79e6a2e7b

Sharing

Copy URL Twitter E-mail

General

Target

55a10a122ceae47b28db19a79e6a2e7b
Size

208KB
MD5

55a10a122ceae47b28db19a79e6a2e7b
SHA1

8c90fd5ed3b3087e7b7f089a2b02b48d36490377
SHA256

eafa6e602ca6d35f7f286f7ebb1026a71e8a509fbe0b22765effa7fd7f1a717a
SHA512

94c3d6d084a2070e6981c2d41d3eee6d57a9a9e7f08a2c6a4b8e32b297e7cf58b7f7c4628926c5e6f387937f3653f5c03e63533b467220247e8450e022bc0c86
SSDEEP

3072:htbvoZM5nrTPQpgn3Q6pvgeNihK2U1ty1kOg39c2yTDrrea/ueRnGG:bboW5nPPjbgeEhKX10yXMzuoG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55a10a122ceae47b28db19a79e6a2e7b

Files

55a10a122ceae47b28db19a79e6a2e7b
.exe windows:4 windows x86 arch:x86

b70d8bf301c44d40ef2d88bdd396a43d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteValueA

comctl32

ImageList_Write

msvcrt

acos
pow
memmove
log10
sqrt
calloc

oleaut32

SafeArrayGetUBound
GetErrorInfo
OleLoadPicture
SysFreeString
VariantChangeType
SafeArrayPtrOfIndex

version

VerQueryValueA

ole32

CLSIDFromString
OleRun
CoRegisterClassObject
CoGetObjectContext
CreateOleAdviseHolder
CoUninitialize
ReleaseStgMedium
CoRevokeClassObject
CoGetMalloc
GetHGlobalFromStream

shell32

Shell_NotifyIconA
SHFileOperationA

kernel32

GetLastError
LoadLibraryExA
SetFilePointer
VirtualAllocEx
GetModuleHandleA
ExitThread
GetACP
SetEndOfFile
ReadFile
GlobalAlloc
ResetEvent
SetHandleCount
SetErrorMode
IsBadReadPtr
GetCommandLineA
GetOEMCP
SetEvent
ExitProcess
GetProcAddress

user32

InsertMenuItemA
LoadIconA
CharLowerA

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 514B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 12KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 772B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b70d8bf301c44d40ef2d88bdd396a43d

Headers

File Characteristics

Imports

shlwapi

comctl32

msvcrt

oleaut32

version

ole32

shell32

kernel32

user32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 4KB - Virtual size: 514B

.data Size: 124KB - Virtual size: 123KB

.hdata Size: 4KB - Virtual size: 1KB

DATA Size: 12KB - Virtual size: 40KB

.bdata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 772B

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 4KB - Virtual size: 514B

.data
Size: 124KB - Virtual size: 123KB

.hdata
Size: 4KB - Virtual size: 1KB

DATA
Size: 12KB - Virtual size: 40KB

.bdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 772B