5d4a5dfe29bd9416e7351e4ee614e2ba[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d4a5dfe29bd9416e7351e4ee614e2ba.exe
Size

392KB
MD5

5d4a5dfe29bd9416e7351e4ee614e2ba
SHA1

3d06d3847209a3a6e4f22d276959fc212c627143
SHA256

e2995afb45ed74bad02def6087df36e9bab420e82e46b1b4ec44eab50cf010b2
SHA512

029fc8a3847890ef9d880181ad3f8e5f01e9797e7ad8e5b82384114fcdbbeacaf339063e705181d558443659ad5645f1e03b7703ccf097e0706fb97c304077a7
SSDEEP

6144:OBET2mGp9VUwTZtX02giP9YoRRQGb8gJCPankzjzVjyTVyS9m1D4050G:O/jmwTZSihRQwJCi4zVWThBc0G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d4a5dfe29bd9416e7351e4ee614e2ba.exe

Files

5d4a5dfe29bd9416e7351e4ee614e2ba.exe
.exe windows:4 windows x86 arch:x86

12630bd62c7f6939537504e8a77e48ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
UnmapViewOfFile
CreateMutexA
Sleep
CreateFileA
ExitThread
FindClose
FreeEnvironmentStringsA
HeapCreate
GetACP
SetConsoleCursorInfo
FindResourceA
ReleaseMutex
GlobalFree
LoadLibraryExW
GetModuleHandleA
GetLastError
TlsGetValue
HeapDestroy
LocalUnlock

user32

CheckRadioButton
GetDC
DrawEdge
DrawMenuBar
FillRect
DefWindowProcW
GetFocus
DispatchMessageA
GetDlgItem
GetIconInfo
CallWindowProcA
IsWindow
CopyRect

uxtheme

DrawThemeIcon
DrawThemeText
DrawThemeEdge
GetThemeRect
GetThemeSysInt

clbcatq

SetupOpen

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ