05bcbd4f1c11dfe0d7359c15d83ae3aa

General

Target

05bcbd4f1c11dfe0d7359c15d83ae3aa
Size

9KB
MD5

05bcbd4f1c11dfe0d7359c15d83ae3aa
SHA1

aca676cacfa1501939945a4b88afe5bb50c2f326
SHA256

40ccd20c062086cfa18407d523bfe38339b8c568daec3debbe1b0f47f6afdf19
SHA512

5563b7c1feff1fd1899b6a8691ab33dce5009c45a30a11a1a4bdc72730ceda9bc4dd9c0adc5ecb0a78bf6c0bad6b307d2eedc0b479e88b2ca1279af49dc68824
SSDEEP

192:xfOyxJTZTTryLSUmrrST616WDsdHSrtKbssJ5ohP2CqNn2WgTy8Kv:tOyfJXp162sdysH/eP1N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05bcbd4f1c11dfe0d7359c15d83ae3aa

Files

05bcbd4f1c11dfe0d7359c15d83ae3aa
.exe windows:4 windows x86 arch:x86

21eab52d8a013986003a303178567a85

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EndUpdateResourceW
ExitProcess
GetSystemTime
Heap32First
IsBadWritePtr
PeekConsoleInputA
SetConsoleCursorPosition
WaitCommEvent
lstrcpy

advapi32

AddAccessAllowedAce
CancelOverlappedAccess
GetSidIdentifierAuthority
GetSidLengthRequired
IsValidSid
LookupAccountSidW
OpenEventLogW
QueryServiceObjectSecurity
RegCreateKeyExW
RegSaveKeyW
RegSetValueW

user32

ClipCursor
CreateCaret
DdeCmpStringHandles
GetCaretBlinkTime
GetWindowRgn
IsZoomed
KillTimer
MapVirtualKeyW
OffsetRect
SetClassWord
SetDlgItemInt
TabbedTextOutW
UnhookWinEvent
UnregisterDeviceNotification

shell32

Control_RunDLLA
ExtractIconExA
OpenAs_RunDLLA
SHBrowseForFolderW
SHEmptyRecycleBinW
SHGetMalloc
SHGetPathFromIDListA
SheConvertPathW
SheShortenPathW
ShellExecuteA
Shell_NotifyIconW

gdi32

CloseFigure
CreateColorSpaceA
DescribePixelFormat
EnumFontFamiliesExA
GdiGetBatchLimit
GetCharWidth32W
GetCharWidthA
GetTextColor
PolyTextOutA
RemoveFontResourceW
SelectClipPath
SetBitmapBits
SetMapperFlags

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

21eab52d8a013986003a303178567a85

Headers

File Characteristics

Imports

kernel32

advapi32

user32

shell32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 4KB

.data Size: 6KB - Virtual size: 8KB

.text
Size: 512B - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 4KB

.data
Size: 6KB - Virtual size: 8KB