54e52070250a8b22fdf84a68cc364c2e

Sharing

Copy URL Twitter E-mail

General

Target

54e52070250a8b22fdf84a68cc364c2e
Size

62KB
MD5

54e52070250a8b22fdf84a68cc364c2e
SHA1

b76f45c987e68136ab1e6277d6b51f641f9be610
SHA256

cd3485bdbb7dc5be6dfe123b926305caf2786d0c81d74d47ff9f9bc5e66cc74a
SHA512

62edb20d06d3d7ab89ac1b24f50bac3d5e0af1db42c959691d21eeb1912c210efae24817115353ff5051e14a0fd6a895694ffa95231ba666e986b1a617028be4
SSDEEP

1536:I3XZ8dQYtMsmMizVCNEbk2JPXgdncyAF7AZQlZ0rP:IuQYlizUuQ9W7AKPkP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
54e52070250a8b22fdf84a68cc364c2e

Files

54e52070250a8b22fdf84a68cc364c2e
.exe windows:4 windows x86 arch:x86

7834cbb5892f34c7ef4a784c28e08252

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegReplaceKeyA
RegQueryValueW
RegEnumKeyW
RegDeleteValueW
RegEnumKeyExW
RegCreateKeyExA
RegDeleteValueA
RegEnumValueA
RegDeleteKeyA
RegOpenKeyExA
RegQueryInfoKeyW
RegCreateKeyExW
RegEnumKeyExA
RegOpenKeyW
RegQueryValueExW
RegQueryValueA
RegEnumKeyA
RegFlushKey
RegOpenKeyExW
RegOpenKeyA
RegQueryValueExA
RegCreateKeyW
RegDeleteValueA
RegLoadKeyA
RegCreateKeyExA
RegDeleteValueW
RegQueryValueExA
RegReplaceKeyA
RegOpenKeyExW
RegEnumKeyExW
RegReplaceKeyW
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueW
RegOpenKeyA
RegDeleteKeyA
RegQueryInfoKeyW
RegOpenKeyW
RegOpenKeyW
RegOpenKeyExW
RegQueryValueExA
RegQueryInfoKeyA
RegQueryInfoKeyW
RegLoadKeyA
RegCreateKeyExW
RegFlushKey
RegReplaceKeyW
RegEnumKeyA
RegLoadKeyW
RegEnumKeyExW
RegOpenKeyA
RegEnumKeyExA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA

kernel32

DeleteAtom
GetFileSize
CopyFileW
OpenFile
SetLastError
GetStdHandle
OpenFileMappingA
CopyFileA
GetCPInfo
WriteFile
GetLastError
CreateProcessA
ExitThread
ReadConsoleA
GlobalFree
CreateThread
DeleteFileW

gdi32

AddFontResourceExW
CloseFigure
AddFontResourceTracking
GetDCOrgEx
AbortPath
ClearBrushAttributes
GetPixel
GetCurrentPositionEx
CloseMetaFile
ExcludeClipRect
GetClipBox
GetPixel
GetBrushOrgEx
ExtTextOutA
AddFontResourceExA
CancelDC
CopyMetaFileA
AddFontResourceA
DeleteObject
AddFontMemResourceEx
BeginPath
AddFontResourceW
GetBitmapBits
AbortPath
BeginPath
GetClipBox
AddFontMemResourceEx
SetTextColor
AddFontResourceExW
ClearBitmapAttributes
AddFontResourceTracking
AddFontResourceW
ClearBrushAttributes
GetCurrentPositionEx
CloseFigure
BitBlt
RestoreDC
ExcludeClipRect
DeleteObject
AddFontResourceA

user32

DialogBoxParamA
GetWindowTextLengthA
DrawTextW
LoadCursorA
EndDialog
GetMenu
DrawTextA
InsertMenuA
GetFocus
CreateIcon
DrawIcon
CopyImage
LoadMenuA
AppendMenuA
DialogBoxParamW
GetWindowTextA
GetDlgItem
AlignRects
DrawIconEx
AppendMenuW
CopyRect
EndDialog
AppendMenuA
DrawIconEx
LoadMenuA
GetDlgItem
AlignRects
DialogBoxParamA
DrawTextA
GetMenu
AppendMenuW
IsWindow
GetFocus
CalcMenuBar
CopyImage
CopyRect
CopyIcon
DrawIcon
DrawTextW
DialogBoxParamW
CreateIcon
GetDC

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7834cbb5892f34c7ef4a784c28e08252

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 53KB - Virtual size: 172KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 53KB - Virtual size: 172KB