5dc1ce916cbdede58d47edad366ba4c4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5dc1ce916cbdede58d47edad366ba4c4
Size

115KB
MD5

5dc1ce916cbdede58d47edad366ba4c4
SHA1

5757b4ec1fdd34b6361ded257fe8e7bd90440e73
SHA256

e3b203222a3cccf5f55ed595b4e08dff5d0a922231e91d0f2151b09aa475eb5d
SHA512

f679fdcb3ee0e7e07c07882e16bbe39935aacb63906cfbc3d085639e7fda07d1dab1ca7d6a4d04e1e9576c6bde4aa04ce7d5fd2b630e2a3cbee5729d103be5f1
SSDEEP

1536:kpbnUOTl+TeSstnaJMJwE6Sr/GBmul/1jNtQyk5pGhtzgn3ilkt1D5x9Tv:k1LT9SwnKM48/smC1jNtQykLgO5x9T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5dc1ce916cbdede58d47edad366ba4c4

Files

5dc1ce916cbdede58d47edad366ba4c4
.exe windows:5 windows x86 arch:x86

e9c8c9f391f0dfe80761f987a8d5ccb7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
GetDesktopWindow
GetSystemMetrics
GetDC
CharNextA
TranslateMessage

kernel32

RemoveDirectoryA
GetWindowsDirectoryA
GetSystemTime
GetModuleHandleA
lstrlenW
lstrcmpiW
lstrlenA
lstrcmpiA
GlobalFindAtomA
CopyFileA
RemoveDirectoryW
FindClose
DeleteFileA
QueryPerformanceCounter
lstrcmpA
VirtualAlloc
VirtualFree

gdi32

GetPixel
DeleteObject
SelectObject
RectVisible
SetStretchBltMode
GetDeviceCaps
CreateCompatibleDC
GetObjectA
CreateFontIndirectA
RestoreDC
GetStockObject
LineTo
SetTextAlign
SaveDC
SetMapMode
SetTextColor
SelectPalette
GetTextMetricsA
DeleteDC
GetClipBox
CreatePalette
CreateSolidBrush

glu32

gluNurbsCallback

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ