f5e3a694dbb6fc5eef9290db56f0120a

General

Target

f5e3a694dbb6fc5eef9290db56f0120a
Size

64KB
MD5

f5e3a694dbb6fc5eef9290db56f0120a
SHA1

1a847f00c6e4d76ddb58d1b910ec832b3007a076
SHA256

c6d31ed0d68eb6c098900459cf13d1e1ba76e79a94f21cf3f5d3652410b91646
SHA512

9f54bfc208c26126b2935afc99f7de480ca61ea2f076bc696b5e04cbdcd5683d58d5252aa4fa8f7e8bf0a576f72e636475644d13bca0b1f0321db35609d13876
SSDEEP

768:YkNUkXkENsO25Fes7PyhncgnokSPEElcdkrU2RW4kyIrP:Yk6k3EFeQqdcg1SPEQQ23S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5e3a694dbb6fc5eef9290db56f0120a

Files

f5e3a694dbb6fc5eef9290db56f0120a
.exe windows:4 windows x86 arch:x86

bf61c713908d33a7ed7fb88700dc87c7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetFileType
RtlUnwind
UnhandledExceptionFilter
WriteFile
HeapFree
HeapAlloc
GetProcAddress
LoadLibraryA
GetLastError
lstrcmpiA
SetStdHandle
FlushFileBuffers
CloseHandle
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
LocalAlloc
HeapCreate
GetStdHandle
SetFilePointer

user32

GetDlgItem
SetWindowLongA
GetParent
PostMessageA
GetWindowTextA
SetWindowTextA
wsprintfA
EndDialog
SendMessageA
DefWindowProcA
RegisterClassExA
CreateWindowExA
DialogBoxParamA
LoadStringA
MessageBoxA
DestroyWindow

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegEnumKeyA
RegSetValueExA

comctl32

PropertySheetA

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 497B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf61c713908d33a7ed7fb88700dc87c7

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 4KB - Virtual size: 497B

.data Size: 4KB - Virtual size: 9KB

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 20KB - Virtual size: 16KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 4KB - Virtual size: 497B

.data
Size: 4KB - Virtual size: 9KB

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 20KB - Virtual size: 16KB

.reloc
Size: 4KB - Virtual size: 1KB