5ac0fdf8b21cf9115c7ff0b4402b6d94

General

Target

5ac0fdf8b21cf9115c7ff0b4402b6d94
Size

152KB
MD5

5ac0fdf8b21cf9115c7ff0b4402b6d94
SHA1

8e7495dad0ab398324506ca833648db817ea930c
SHA256

5c6ec2ce7474d296111dc7bbae69b03273cdfed2c050318d924ab860674a46e2
SHA512

ffb3730568fa281eabd6e2aa9cb1da207397b2cf8ba0df048adb054d81f4d194d4858c2faa86c3f0734cc36b62c8d53682465521bd199aab5d66dbd45566a112
SSDEEP

3072:VTbII1AsgWRxgqTU2gWJ/9tOLLOB8X6x66zi+mKtv7IH:/4cmqTNJH4woMU+fp7IH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ac0fdf8b21cf9115c7ff0b4402b6d94

Files

5ac0fdf8b21cf9115c7ff0b4402b6d94
.exe windows:4 windows x86 arch:x86

0ef45324c559aa161c0dff1ecedde9b0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DefineDosDeviceA
TlsAlloc
GetLocalTime
WriteProfileSectionA
RtlMoveMemory
BuildCommDCBAndTimeoutsW
HeapReAlloc
LockFile
BeginUpdateResourceW
FreeResource
GetCurrentProcessId
CreateWaitableTimerA
FatalExit
FindFirstFileA
GetStartupInfoA
DnsHostnameToComputerNameW
GetModuleHandleA
FoldStringA
SetTapePosition
CompareStringA
GetPrivateProfileSectionNamesW
GetProcessHeap
SetErrorMode
GetDriveTypeW

msvcrt

_initterm
__p__commode
_except_handler3
_adjust_fdiv
_acmdln
exit
__getmainargs
__set_app_type
_controlfp
_exit
__p__fmode
__setusermatherr
_XcptFilter

user32

GetMenuItemInfoW
MessageBoxExA
DrawMenuBar
DlgDirListComboBoxA
RemovePropA
SetDeskWallpaper
OemToCharA
DdeEnableCallback
SendNotifyMessageW
DestroyMenu
GetClassInfoA
GetMonitorInfoW
DrawFrameControl
IsClipboardFormatAvailable
GetWindowTextA

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0ef45324c559aa161c0dff1ecedde9b0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 94KB - Virtual size: 93KB

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 9KB - Virtual size: 88KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 94KB - Virtual size: 93KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 9KB - Virtual size: 88KB

.rsrc
Size: 8KB - Virtual size: 7KB