5d598beca2b2ded73d697782ed42fa14

General

Target

5d598beca2b2ded73d697782ed42fa14
Size

247KB
MD5

5d598beca2b2ded73d697782ed42fa14
SHA1

b99471eafd9776eb519b52f9bef6ffe47ca19fb6
SHA256

715c43a602bb2a9ad228d0932f3de43a3a3350f254c0a54093aad768e9d9ce85
SHA512

c4e69fc0da8546a9cdd10acbff6347afa19a5e59286c92f999ef328cb03a5c0411f11d8eb544557ee3f0898c186ba16f2a28091b5880c82bdea333917591952e
SSDEEP

6144:MUS+isGxtIqe6KKiMpYUGd+Jn0LWFqdo+9knLo9sGUXqFV:RS+iDIl6KKDOhd+AWF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d598beca2b2ded73d697782ed42fa14

Files

5d598beca2b2ded73d697782ed42fa14
.exe windows:4 windows x86 arch:x86

de74aa0b65574cce1c1a3c08ea733028

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CloseHandle
CreateNamedPipeA
ExitProcess
GetBinaryType
GetDiskFreeSpaceExW
GetDiskFreeSpaceW
GetProcessWorkingSetSize
GetVersionExA
GlobalGetAtomNameA
HeapFree
InterlockedCompareExchange
LockResource
OpenWaitableTimerW
PeekConsoleInputW
QueryDosDeviceW
ReadFileEx
SetFileApisToANSI
TryEnterCriticalSection
WriteConsoleOutputCharacterA
_llseek
lstrcat

user32

ActivateKeyboardLayout
CallMsgFilter
CharUpperA
CloseClipboard
DdeFreeStringHandle
DdeQueryStringA
DlgDirListA
EndDeferWindowPos
GetClipboardFormatNameW
GetClipboardSequenceNumber
GetDlgItem
GetKeyboardLayoutNameA
GetMenuContextHelpId
GetScrollRange
GetWindowLongA
GrayStringW
InvalidateRect
IsMenu
MessageBoxExA
NotifyWinEvent
OemToCharBuffW
OffsetRect
OpenDesktopA
OpenInputDesktop
RegisterTasklist
SendMessageCallbackA
SetMessageQueue
SetPropW
TrackPopupMenu
wvsprintfW

gdi32

AbortDoc
DeleteColorSpace
EnumFontFamiliesW
GetAspectRatioFilterEx
GetCharWidthFloatA
GetCharWidthW
GetCurrentPositionEx
GetKerningPairsA
GetMapMode
GetObjectW
GetOutlineTextMetricsW
GetTextCharacterExtra
GetViewportExtEx
Polyline
SelectObject
SetDIBColorTable
SetEnhMetaFileBits
SetMapperFlags
SetViewportExtEx
SetWinMetaFileBits

Sections

.code
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 225KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de74aa0b65574cce1c1a3c08ea733028

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.code Size: 512B - Virtual size: 4KB

.data Size: 225KB - Virtual size: 232KB

.rdata Size: 512B - Virtual size: 12KB

.rsrc Size: 20KB - Virtual size: 224KB

.code
Size: 512B - Virtual size: 4KB

.data
Size: 225KB - Virtual size: 232KB

.rdata
Size: 512B - Virtual size: 12KB

.rsrc
Size: 20KB - Virtual size: 224KB