5336ce126c3e4dabdf243871aaeba5f5

Sharing

Copy URL

Twitter E-mail

General

Target

5336ce126c3e4dabdf243871aaeba5f5
Size

476KB
MD5

5336ce126c3e4dabdf243871aaeba5f5
SHA1

4d1f426d8eb90b024d68acc529a9b6facce8ebcf
SHA256

84b623923bdde18d2c1b5183b213cca27bb2e6e2681e30990a24154477f5d83d
SHA512

19d13a60ca767d20c8f6a4252ecfddba538906d00ec2989c1b4470c5836334529deb8373a3b62cdf15d8fb59a917a88c274c3532a7048ea200f6cdd4a76281d9
SSDEEP

6144:C8d2L/BJxzNBRFoynGQFlBYy36/X2kpuZt/nxJauPsj2SraK:C8dQBRFVnvPjI2kwm7OK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5336ce126c3e4dabdf243871aaeba5f5

Files

5336ce126c3e4dabdf243871aaeba5f5
.exe windows:4 windows x86 arch:x86

9defdf808b097ab0c185bb91a08fb672

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

AreFileApisANSI
BackupSeek
BuildCommDCBW
CopyFileExA
CreateFiber
CreateFileA
CreatePipe
DebugBreak
EnumResourceLanguagesW
ExitProcess
GetDevicePowerState
GetFileType
GetFullPathNameA
GetLogicalDrives
GetPrivateProfileSectionW
GetProcessTimes
GetProfileStringW
GetSystemDefaultLangID
GetTimeFormatW
MapViewOfFileEx
MulDiv
OpenEventW
ReadConsoleA
SetVolumeLabelW
WriteConsoleInputA
WriteConsoleOutputW
_hwrite
_lread
lstrcat
lstrcpyW

user32

AttachThreadInput
CheckDlgButton
CreateIconFromResourceEx
CreateWindowExA
DdeDisconnect
EndPaint
EnumDisplayMonitors
EnumWindowStationsW
GetClassInfoExW
GetCursorInfo
GetProcessDefaultLayout
GetSubMenu
GetTabbedTextExtentA
GetUserObjectInformationA
GetUserObjectInformationW
IsDialogMessage
LoadCursorFromFileW
RegisterTasklist
ReuseDDElParam
SetMenuContextHelpId
SetMenuInfo
SetMenuItemInfoW
SetUserObjectInformationA
SetWindowsHookExW
UnpackDDElParam
WINNLSEnableIME

gdi32

Chord
CloseEnhMetaFile
ColorCorrectPalette
CombineTransform
CreateBrushIndirect
CreateDCA
CreateMetaFileA
GetClipRgn
GetEnhMetaFileA
GetEnhMetaFileHeader
GetICMProfileA
GetMapMode
GetMetaFileW
GetObjectType
GetOutlineTextMetricsA
GetSystemPaletteUse
GetWinMetaFileBits
GetWorldTransform
OffsetWindowOrgEx
PaintRgn
PolyDraw
Polyline
RectVisible
ResetDCW
SetPolyFillMode
SetTextJustification
SetViewportOrgEx
StrokePath

Sections

.code
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 267KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 207KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9defdf808b097ab0c185bb91a08fb672

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.code Size: 512B - Virtual size: 4KB

.data Size: 267KB - Virtual size: 272KB

.rdata Size: 512B - Virtual size: 24KB

.rsrc Size: 207KB - Virtual size: 500KB

.code
Size: 512B - Virtual size: 4KB

.data
Size: 267KB - Virtual size: 272KB

.rdata
Size: 512B - Virtual size: 24KB

.rsrc
Size: 207KB - Virtual size: 500KB