5e8dee1ba0b8a0ce3a3d4b7c3bfac6d3

Sharing

Copy URL

Twitter E-mail

General

Target

5e8dee1ba0b8a0ce3a3d4b7c3bfac6d3
Size

236KB
MD5

5e8dee1ba0b8a0ce3a3d4b7c3bfac6d3
SHA1

110ffc5adf2668d36c1fd3476cdd45bcce2404e9
SHA256

9d750d54f89d2b90adeac5285796a1c25d88b7c5efba8fc156187e81aea9c644
SHA512

9ec51fb87d3e7bc4bb22888fd8033cbffa269bbac8dad1deec6ce094e2b8ff09e95ce152c44fd1ff8858f23d6d25ceb0e528b31c6fca75d9d221e757c3266493
SSDEEP

3072:YZ5bDdTMuc++sK5mq/cFZX7hkeY2Zgt5/Aw4Yh4eV8o68leY:YZxDdT++zK5mfPXDFsSQ8o6f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e8dee1ba0b8a0ce3a3d4b7c3bfac6d3

Files

5e8dee1ba0b8a0ce3a3d4b7c3bfac6d3
.exe windows:4 windows x86 arch:x86

09bc184b885a0f5b52d71bca649f8416

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetSystemDefaultLangID
LoadLibraryA
GetModuleHandleA
RaiseException
IsBadReadPtr
SetHandleCount
ExitProcess
FindClose
GetCommandLineA
LocalAlloc
ExitThread
VirtualAllocEx
CompareStringA
SizeofResource
GetCurrentThread
GetCommandLineW
GetVersionExA
lstrcpyA
LoadLibraryExA
GetProcAddress

shlwapi

SHGetValueA
SHStrDupA
PathFileExistsA
PathIsContentTypeA
SHQueryValueExA
SHDeleteKeyA
SHEnumValueA
PathGetCharTypeA
SHQueryInfoKeyA
PathIsDirectoryA

gdi32

GetDIBits
GetPaletteEntries
GetDIBColorTable
GetDCOrgEx
GetObjectA

oleaut32

SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayGetElement
SysFreeString
SysStringLen

user32

DefWindowProcA
InsertMenuA
GetIconInfo
DrawFrameControl
GetSystemMenu
GetSubMenu
SendMessageA
GetSysColorBrush
GetTopWindow
GetWindowTextA
DrawIcon
GetDC
DrawMenuBar
IsDialogMessageW
DeleteMenu
IsWindow
DefMDIChildProcA
MessageBeep
DrawIconEx
MapWindowPoints
MessageBoxA
GetCursorPos
CharLowerA
RegisterClipboardFormatA
PostMessageA
GetMessagePos
FrameRect
GetKeyNameTextA
DestroyWindow
CheckMenuItem
CreatePopupMenu
DestroyIcon
GetWindowPlacement
InflateRect
RegisterClassA
GetScrollInfo
EqualRect
CharToOemA
LoadStringA
GetKeyboardLayoutNameA
DestroyMenu
ScrollWindow
ScreenToClient
GetPropA
GetCursor
GetMenuItemID
RemovePropA
RegisterWindowMessageA
RemoveMenu
GetMenuStringA
EnumWindows
EmptyClipboard
GetFocus
PtInRect
ReleaseDC
DestroyCursor
PeekMessageW
OpenClipboard
GetWindowDC
InvalidateRect
GetForegroundWindow
LoadIconA
EnumThreadWindows
SetActiveWindow
IsWindowUnicode
MapVirtualKeyA
GetWindowLongA
IsWindowEnabled
KillTimer
GetClassInfoA
GetKeyboardLayout
GetKeyboardLayoutList
IsRectEmpty
CharNextW
GetClassNameA
GetKeyState
IntersectRect
LoadBitmapA
EnumChildWindows
FindWindowA
DispatchMessageA
GetClientRect
OffsetRect
CallNextHookEx
LoadKeyboardLayoutA
GetMenuItemCount
CharUpperBuffA
GetDlgItem
GetScrollPos
GetClipboardData
GetMenu
PostQuitMessage
GetWindowLongW
GetDCEx
PeekMessageA
GetLastActivePopup
IsWindowVisible
IsZoomed
CloseClipboard
BeginPaint
GetParent
CharNextA
GetKeyboardType
RedrawWindow
EnableWindow
FillRect
GetMenuItemInfoA
DefFrameProcA
IsIconic
GetCapture
GetScrollRange
DispatchMessageW
ReleaseCapture
ClientToScreen
IsChild
EnableMenuItem
GetWindowThreadProcessId
GetDesktopWindow
CreateIcon
IsDialogMessageA
GetKeyboardState
CallWindowProcA
ChildWindowFromPoint
GetActiveWindow
InsertMenuItemA

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc4
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc3
Size: 512B - Virtual size: 505B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09bc184b885a0f5b52d71bca649f8416

Headers

File Characteristics

Imports

kernel32

shlwapi

gdi32

oleaut32

user32

Sections

.text Size: 72KB - Virtual size: 72KB

.data Size: 150KB - Virtual size: 149KB

.rsrc9 Size: 1KB - Virtual size: 1KB

.rsrc4 Size: 5KB - Virtual size: 5KB

.rsrc0 Size: 1KB - Virtual size: 1KB

.rsrc6 Size: 2KB - Virtual size: 1KB

.rsrc3 Size: 512B - Virtual size: 505B

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 72KB - Virtual size: 72KB

.data
Size: 150KB - Virtual size: 149KB

.rsrc9
Size: 1KB - Virtual size: 1KB

.rsrc4
Size: 5KB - Virtual size: 5KB

.rsrc0
Size: 1KB - Virtual size: 1KB

.rsrc6
Size: 2KB - Virtual size: 1KB

.rsrc3
Size: 512B - Virtual size: 505B

.rsrc
Size: 1024B - Virtual size: 976B