5f504a9de644ba34d649749f2d5cb5bf

Sharing

Copy URL

Twitter E-mail

General

Target

5f504a9de644ba34d649749f2d5cb5bf
Size

111KB
MD5

5f504a9de644ba34d649749f2d5cb5bf
SHA1

89041d9b36b9e04c21b7f34e77d135ccc6fb2e3a
SHA256

e47e8c4df7aba9b3b4249b2d96f4f2452dd3d00d26d868059a54fd0b6edc9937
SHA512

09c9a925d28636693ef67f615c763decc890223a2bec8325ad3a39be09728487217d399f0b05da0595d11056df50c0b1f61806f5f7ccc1654d6f802d691f1851
SSDEEP

1536:qvoRaqP5j0Af0QtbA0d/ayjUEo/1oOKFgRLQU7FW+Kpti5:qiJf0gVd/eEU1ovaGU7c++ti5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f504a9de644ba34d649749f2d5cb5bf

Files

5f504a9de644ba34d649749f2d5cb5bf
.exe windows:4 windows x86 arch:x86

afba3f9184270a828b755bd7a870e9e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatA
GetOEMCP
GetDiskFreeSpaceA
GetEnvironmentStrings
VirtualAlloc

version

GetFileVersionInfoA
VerQueryValueA
VerInstallFileA

user32

LoadCursorA
EnableWindow
EnumThreadWindows
GetDC
EnumWindows
EnumChildWindows
CreatePopupMenu
GetCapture
wsprintfA

shell32

SHGetSpecialFolderLocation
DragQueryFileA

msvcrt

exit
clock
tolower
wcstol
sqrt

gdi32

CreateBitmap
RestoreDC
SetBkColor
CreateBrushIndirect
GetBkMode
GetRgnBox

comctl32

ImageList_GetBkColor

advapi32

RegCreateKeyA
RegQueryInfoKeyA
GetLengthSid
RegOpenKeyA

Exports

Exports

_K

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tls
Size: 1024B - Virtual size: 758B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

bbs
Size: 512B - Virtual size: 365B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afba3f9184270a828b755bd7a870e9e5

Headers

File Characteristics

Imports

kernel32

version

user32

shell32

msvcrt

gdi32

comctl32

advapi32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.data Size: 93KB - Virtual size: 92KB

BSS Size: 1KB - Virtual size: 1KB

tls Size: 1024B - Virtual size: 758B

rdata Size: 2KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 64B

.idata Size: 1KB - Virtual size: 1KB

bbs Size: 512B - Virtual size: 365B

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 93KB - Virtual size: 92KB

BSS
Size: 1KB - Virtual size: 1KB

tls
Size: 1024B - Virtual size: 758B

rdata
Size: 2KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 64B

.idata
Size: 1KB - Virtual size: 1KB

bbs
Size: 512B - Virtual size: 365B

.rsrc
Size: 5KB - Virtual size: 5KB