5e343265e9a17b4331c84edd6575257a

Sharing

Copy URL Twitter E-mail

General

Target

5e343265e9a17b4331c84edd6575257a
Size

292KB
MD5

5e343265e9a17b4331c84edd6575257a
SHA1

707b56c2cc1be965de37056176630070d0ee761e
SHA256

58fbe9e06713d43bf417c98ab35e626b36bac7ef37934b19034ae0f284277cd9
SHA512

5c14f1c42ed0d79b65453bddf080e94c21f6661f97fbc8580b870125c223c7a2b7b7e0203fcc88fb31448ff557baaa01f3aaba978a8045e3a99cad6b2ee9e2bf
SSDEEP

3072:xeAXZe/44zPtgKSxs39+I9VKeqPpOi5uwVI3x9m4tasNXH8Ml4H1SZHoCbVD4OBZ:LXZc44zKvs3QO0LPzIB9m3SOHwHKOZV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e343265e9a17b4331c84edd6575257a

Files

5e343265e9a17b4331c84edd6575257a
.exe windows:4 windows x86 arch:x86

93da86cc363f6a8a65fde722191a063d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

UrlUnescapeW
PathAddBackslashA
AssocQueryStringW

version

GetFileVersionInfoSizeW

comdlg32

GetFileTitleW
GetFileTitleA
GetOpenFileNameA

ole32

OleCreateLinkToFile
ReleaseStgMedium
CreateFileMoniker
CoUnmarshalInterface
CoCreateInstance
OleRegEnumVerbs
CoGetClassObject
StgCreateDocfileOnILockBytes
CoRegisterClassObject
CoUninitialize
OleLoadFromStream
IsAccelerator

kernel32

ReadFile
FreeLibrary
GetLocalTime
RemoveDirectoryA
GetSystemInfo
SetErrorMode
ReleaseMutex
GetSystemWindowsDirectoryW
GetTempFileNameA
GlobalLock
WritePrivateProfileStringA
OpenFile
GetDateFormatA
DeleteFileA
TerminateProcess
GetTimeZoneInformation
FindNextFileW
CreateFileA
LoadResource
DeviceIoControl
GetCurrentProcess
QueryPerformanceFrequency
GetDriveTypeA
GlobalFlags
CreateSemaphoreA
LocalReAlloc
GetLocaleInfoW
GetConsoleOutputCP
CreateProcessW
lstrlenA
LocalFree
GetLocaleInfoA
ResumeThread
lstrcatW
GetDiskFreeSpaceExW
CreateFileMappingA
IsDebuggerPresent
CreateNamedPipeA
Process32FirstW
OpenFileMappingW
CreateIoCompletionPort
DeleteTimerQueueEx
LockResource
EnumSystemLocalesA
lstrlenW
GlobalAlloc
GetFullPathNameW
WriteProfileStringA
Sleep
LoadLibraryW
FindClose
LCMapStringW
SetEvent
VirtualAlloc
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
InterlockedIncrement
InterlockedDecrement
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetProcAddress
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
GlobalGetAtomNameA

comctl32

ImageList_SetDragCursorImage
ImageList_DragMove
ImageList_Remove
ImageList_GetImageInfo
InitCommonControlsEx

advapi32

RegCreateKeyA
CryptReleaseContext

user32

CreateIconIndirect
GetKeyboardType
CheckDlgButton
GetKeyboardLayout
DdeConnectList
DdeAccessData
RedrawWindow
MessageBoxW
OpenClipboard
EmptyClipboard
CharLowerBuffA
GetClassInfoW
ShowCursor
LoadMenuW
GetMessageTime
RegisterWindowMessageA
ScreenToClient
RemovePropW
InvalidateRgn
MapVirtualKeyW
OemToCharBuffA
CheckMenuRadioItem
DialogBoxIndirectParamW
PtInRect
CharNextA
ModifyMenuW
EnableScrollBar
LoadImageW
EndDialog
GetClientRect
MonitorFromWindow
SetClassLongW
GetScrollInfo
CallNextHookEx
CharUpperBuffA
ReplyMessage
GetMenuStringW
DefFrameProcA
CheckMenuItem
GetClipboardFormatNameA
GetAncestor
GetKeyNameTextA
OffsetRect
GetUpdateRgn
FindWindowExA
LoadStringW
ModifyMenuA
VkKeyScanW
DestroyCursor
CopyAcceleratorTableA
DdeCreateDataHandle

shell32

SHGetFolderPathW
ShellExecuteA
SHBrowseForFolderA
SHGetFolderPathAndSubDirW
ShellExecuteExW

oleaut32

SafeArrayPutElement

gdi32

GetClipBox
GetObjectType
SetViewportOrgEx
SetMapMode
EnumFontFamiliesW
GetTextColor
CreateFontIndirectW
StartDocA
GetStockObject
GetTextFaceA
SetPixel
GetTextAlign
GetOutlineTextMetricsW
CreatePalette
GetEnhMetaFileHeader
CreatePatternBrush
GetCharWidthA
LPtoDP
StartPage
GetObjectW
GetDeviceCaps
CloseMetaFile

Sections

.text
Size: 236KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93da86cc363f6a8a65fde722191a063d

Headers

File Characteristics

Imports

shlwapi

version

comdlg32

ole32

kernel32

comctl32

advapi32

user32

shell32

oleaut32

gdi32

Sections

.text Size: 236KB - Virtual size: 233KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 20KB - Virtual size: 17KB

.rsrc Size: 4KB - Virtual size: 768B

.text
Size: 236KB - Virtual size: 233KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 20KB - Virtual size: 17KB

.rsrc
Size: 4KB - Virtual size: 768B