f5d807717cf3fc92869866849355c888 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5d807717cf3fc92869866849355c888
Size

93KB
MD5

f5d807717cf3fc92869866849355c888
SHA1

f5d87b864265cb989ae0d7b3738a754ad8e447f4
SHA256

e85358435973a5981a663e2de62cdb3edeeb87c251612705be0acb73713a5dbf
SHA512

4c42d5ea13b702551a0b3824028c63c7dc702311023eb6ff22fc30782da090f594be6cbfa3d7d8e8992f4d088f3d7b38df7f38905ca8de435e1882591c2d20e6
SSDEEP

1536:QtI1Aa7ktXzoeaK+Vv8K0jaDeJlJattQBZfKGpi7M+FBJ/rWVC8WXn5hX/0r6:QtmAEC1aK2kK0uDtIBZfKG6lFPiVrWXL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5d807717cf3fc92869866849355c888

Files

f5d807717cf3fc92869866849355c888
.exe windows:5 windows x86 arch:x86

9f35a96223c4c8184ba7e54c01e00759

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageA
GetWindowLongA
GetClipboardViewer
IsDlgButtonChecked
SetWindowTextA
BeginPaint
CheckDlgButton
EnableScrollBar
EndPaint
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage

gdi32

SetMapMode
CreatePen
GetStockObject
CreateEllipticRgn
CreatePatternBrush
DeleteObject
SetBkMode

ole32

CoGetCallerTID
CoUnmarshalHresult
CoWaitForMultipleHandles
OleSetContainedObject
CoIsOle1Class
StgIsStorageFile
CoGetTreatAsClass

kernel32

QueryPerformanceFrequency
InterlockedExchange
EnterCriticalSection
InitializeCriticalSection
GetFileAttributesExA
HeapDestroy
GetEnvironmentStrings
HeapAlloc
HeapCreate
GetACP
GetModuleHandleA
HeapFree
DeleteCriticalSection
LeaveCriticalSection
GetLastError
GetStartupInfoA
GetCommandLineA

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE