05f023ef9fc3288df17a9f4424ab80c9

General

Target

05f023ef9fc3288df17a9f4424ab80c9
Size

89KB
MD5

05f023ef9fc3288df17a9f4424ab80c9
SHA1

bb63f8a71f0abd2687ff27dc1151f54cb97cdedd
SHA256

47add2aaef242a01ceb30c4544be3dbee2c321a4c6d9645c4a7d9f55dc8046bd
SHA512

ff08e0f87aeae50a2bb4f8f1a9aac910c168b713ee106cb1cd29785fc5d569d40c7a12a686cc5ae4b74bdf613acd4642c718f48ccfd76b73a97c6c000ce1b92d
SSDEEP

1536:FjLjFpv0yp1nQX2yMJYpoYThtpS2iA4OwOPvFrkxxB7tvz9JMpTCAO2tH2JX:tFpvH1G2y2Wlltp1iA4iFreBzC5NtWJX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05f023ef9fc3288df17a9f4424ab80c9

Files

05f023ef9fc3288df17a9f4424ab80c9
.exe windows:1 windows x86 arch:x86

88d0e0cc58083de4c74435adcb34df78

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
FindAtomA
GetCPInfo
GetCommandLineA
GetCurrencyFormatA
GetDiskFreeSpaceA
GetExitCodeProcess
GetFileSize
GetLastError
GetProcAddress
GetTickCount
GetVersion
GlobalLock
IsDebuggerPresent
LoadLibraryA
SearchPathA
UnmapViewOfFile
VirtualAlloc
VirtualFree
lstrcatA
lstrcmpA
lstrlenA

gdi32

CreateBrushIndirect
DeleteObject
GetDeviceCaps
GetNearestColor
SetTextColor

advapi32

BuildSecurityDescriptorA
GetPrivateObjectSecurity
RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyA
RegEnumKeyExA
RegEnumValueA
RegGetKeySecurity
RegLoadKeyA
RegOpenKeyA
RegQueryValueA

user32

AppendMenuA
BeginPaint
BlockInput
ClientToScreen
ClipCursor
EqualRect
FindWindowExA
GetMenu
GetMessagePos
GetTopWindow
InvalidateRect
IsCharUpperA
LoadCursorA
MonitorFromRect
PostQuitMessage
SetCaretPos
ShowCaret
TrackMouseEvent
UpdateWindow

Sections

.data
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fla
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

88d0e0cc58083de4c74435adcb34df78

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

user32

Sections

.data Size: 81KB - Virtual size: 81KB

.code Size: 2KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

.fla Size: 512B - Virtual size: 124B

.rsrc Size: 1KB - Virtual size: 1KB

.data
Size: 81KB - Virtual size: 81KB

.code
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB

.fla
Size: 512B - Virtual size: 124B

.rsrc
Size: 1KB - Virtual size: 1KB