5fb960cfdb49bf5fa1a97405ba8a73d3

Sharing

Copy URL

Twitter E-mail

General

Target

5fb960cfdb49bf5fa1a97405ba8a73d3
Size

62KB
MD5

5fb960cfdb49bf5fa1a97405ba8a73d3
SHA1

ca500c40883257005938d4f1ae47a1c11ec44112
SHA256

5ecf6677341cebe3bc7d8a73585c43c009a83497e35e5387a27bbdfcf67e8988
SHA512

16551ef436585bab28a4bacfc62366a73f28da700feb8365535c3dd974cc40e66e69a2326a50315cb4c765bea474af3e08975e6ec87c610c4ae6d2bbecb7e3fc
SSDEEP

768:1c6FZhBSivs1P1xMaDDC21TEQOZgapLYW9cUMyZlpuoKZQUzgyJVOk9v:/nS5txMaPp1SpLYWudapYZxM09v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5fb960cfdb49bf5fa1a97405ba8a73d3

Files

5fb960cfdb49bf5fa1a97405ba8a73d3
.exe windows:4 windows x86 arch:x86

af69993a8b8dbcf39d57ca3565ada910

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddIcon
ImageList_DragEnter
ImageList_DragLeave
ImageList_BeginDrag
InitCommonControls
ImageList_Draw
ImageList_Remove
ImageList_GetImageRect
ImageList_DragShowNolock
ImageList_ReplaceIcon
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_GetDragImage
ImageList_EndDrag
ImageList_Replace
ImageList_DragMove
ImageList_Copy
ImageList_DrawEx
ImageList_LoadImageW
ImageList_LoadImage
ImageList_GetIconSize
ImageList_DragLeave
ImageList_Replace
ImageList_GetImageInfo
ImageList_Create
ImageList_GetDragImage
ImageList_Draw
ImageList_GetImageCount
ImageList_Remove
ImageList_GetIconSize
InitCommonControls
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_LoadImageA
ImageList_DragEnter
ImageList_Merge
ImageList_GetIcon
ImageList_LoadImageW
ImageList_DragMove
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DrawIndirect
ImageList_Read

advapi32

RegCreateKeyW
RegLoadKeyW
RegFlushKey
RegReplaceKeyW
RegQueryValueExA
RegEnumValueA
RegLoadKeyA
RegQueryInfoKeyW
RegEnumKeyA
RegEnumValueW
RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExW
RegOpenKeyA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyExA
RegEnumKeyW
RegQueryValueA
RegOpenKeyW
RegCreateKeyExA
RegFlushKey
RegEnumKeyExW
RegQueryInfoKeyA
RegCreateKeyW
RegEnumKeyA
RegDeleteKeyA
RegEnumValueA
RegCreateKeyExW
RegQueryInfoKeyW
RegReplaceKeyA
RegDeleteValueA
RegQueryValueExW
RegOpenKeyA
RegQueryValueW
RegOpenKeyW
RegLoadKeyW
RegOpenKeyExA
RegQueryValueA
RegEnumValueA
RegCreateKeyExW
RegQueryInfoKeyW
RegGetKeySecurity
RegEnumKeyA
RegEnumKeyExA
RegEnumKeyW
RegReplaceKeyA
RegCreateKeyW
RegOpenKeyExW
RegQueryValueExA
RegReplaceKeyW
RegDeleteKeyW
RegOpenKeyA
RegDeleteValueA
RegCreateKeyExA
RegDeleteValueW
RegLoadKeyA
RegQueryInfoKeyA
RegQueryValueExA
RegDeleteValueW
RegReplaceKeyA
RegOpenKeyW
RegDeleteKeyA
RegEnumValueW
RegReplaceKeyW
RegQueryValueA
RegQueryValueW
RegCreateKeyExW
RegEnumKeyExA
RegLoadKeyW
RegCreateKeyW

kernel32

OpenFileMappingA
ExitThread
CreateThread
CopyFileW
CopyFileExW
FindAtomA
CreateDirectoryA
DeleteFileA
GetCommandLineA
DeleteFileW
CopyFileA
WriteFile
GetLastError
GetStdHandle
GlobalFree
ReadFile
ReadConsoleA
GetComputerNameA
FindFirstFileA
GetFileTime
GetConsoleMode
SetLastError
GetCPInfo
CopyFileExA
GetFileTime
CopyFileExA
GlobalFree
CreateThread
WriteFile
DeleteAtom
GetCPInfo
FindFirstFileA
CopyFileW
SetLastError
FindAtomA
CopyFileA
Sleep
GetLastError
GetFileSize
GetCommandLineA
OpenFileMappingA
DeleteFileW
ExitThread
ReadConsoleA
ReadFile
CreateDirectoryA
DeleteFileA

gdi32

CloseMetaFile
AddFontResourceW
AddFontMemResourceEx
GetBitmapBits
ExtTextOutA
RestoreDC
GetBrushOrgEx
GetDCOrgEx
AddFontResourceA
GetPixel
BitBlt
CopyMetaFileA
ExcludeClipRect
AbortPath
AddFontResourceExW
CancelDC
GetClipBox
ClearBrushAttributes
DeleteObject
CreateSolidBrush
CloseFigure
ClearBitmapAttributes
GetPixel

user32

EndDialog
GetFocus
IsMenu
AppendMenuA
CopyImage
DrawIconEx
IsWindow
AppendMenuW
GetMenu
DialogBoxParamA
GetCursor
CalcMenuBar
DrawIcon
BlockInput
InsertMenuA
GetWindowTextLengthA
AlignRects
CloseWindow
CreateIcon
LoadCursorA
CopyRect
GetDC

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 400B

IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af69993a8b8dbcf39d57ca3565ada910

Headers

File Characteristics

Imports

comctl32

advapi32

kernel32

gdi32

user32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 51KB - Virtual size: 129KB

.reloc Size: - Virtual size: 400B

.rsrc Size: 512B - Virtual size: 416B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 51KB - Virtual size: 129KB

.reloc
Size: - Virtual size: 400B

.rsrc
Size: 512B - Virtual size: 416B