5bb59c301f21b41162d2ce330f368199 | Triage

Sharing

General

Target

5bb59c301f21b41162d2ce330f368199
Size

782KB
MD5

5bb59c301f21b41162d2ce330f368199
SHA1

c47ff01e187d9d0ed054c8f76ad7c24ba9b578c9
SHA256

467fe65706a1e920460cf45c841ca669ba14333b69a042aaa01c4cebc4fc3577
SHA512

56a04959d0f0fae86cb01bc0485d6c09d3a7f5175213ec92ccf56fd59db4eb43a9411239e2168b29c9f339b834ee22d711438f427fbd03b710dc9b191cba47ab
SSDEEP

24576:G3tIDjSn94yoo4fQqO/4S6DecpcVODpth+:GaDjSn94fo4f1OJappYGrY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5bb59c301f21b41162d2ce330f368199

Files

5bb59c301f21b41162d2ce330f368199
.exe windows:4 windows x86 arch:x86

02e8651eda00b8ea418fc550b7ad5801

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PulseEvent
GetModuleHandleA
CloseHandle
GetCommandLineW
HeapCreate
UnmapViewOfFile
lstrlenA
LocalFree
lstrcatA
Sleep
LoadLibraryW
GetTickCount
GetComputerNameA
CreateFileA
SetLastError
CreateThread
GetCurrentDirectoryA
SetEvent
GetSystemTime
LocalUnlock

user32

SetFocus
GetDlgItem
DispatchMessageA
GetDC
CheckRadioButton
CreateWindowExA
FillRect
DrawMenuBar
CallWindowProcA
GetKeyState
IsWindow
GetScrollBarInfo
DrawEdge

clbcatq

CheckMemoryGates
DowngradeAPL
SetupOpen
SetSetupOpen
UpdateFromAppChange

desk.cpl

InstallScreenSaver

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE