5375ddf5d25424cef7007213248b4ee0

Sharing

Copy URL Twitter E-mail

General

Target

5375ddf5d25424cef7007213248b4ee0
Size

91KB
MD5

5375ddf5d25424cef7007213248b4ee0
SHA1

42552880a8ca4085f4bb5149d5341905053557b4
SHA256

fca32c11c960097e20690ec8087a8fa76442544ba4cdc16125389e1d3fcc3012
SHA512

22e93b0266da97b9fc4c21d6ba4bef330914ec88cdb095c52a9bad69fcf8ccf8fd0ba8595edff1a49912d99b6edb3e08dde8516076bf0463d095715578b9b762
SSDEEP

1536:nIKdZNedaiFo6By1odrsgA7sOb0654q3bKS1HI:IwjedaiFoWrVA7spqLKSdI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5375ddf5d25424cef7007213248b4ee0

Files

5375ddf5d25424cef7007213248b4ee0
.exe windows:4 windows x86 arch:x86

b6c697a4236e44a7851fee96edd56385

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

GetDlgItem
IsMenu
GetMenu
GetFocus
IsWindow
DrawIcon
GetCursor
CreateIcon
DrawTextW
CloseWindow
EndDialog
DialogBoxParamW
CopyRect
DialogBoxParamA

kernel32

OpenFileMappingA
ReadFile
GlobalFree
DeleteFileA
ExitThread
GetCPInfo
SetLastError
WriteFile
FindFirstFileA
GetStdHandle
OpenFile
DeleteAtom
GetComputerNameA
GetLastError
CreateProcessA
GetCommandLineA
CreateThread
GetFileTime
GetConsoleMode
Sleep
DeleteFileW
FindAtomA

comctl32

ImageList_LoadImageA
ImageList_Copy
ImageList_DrawEx
MenuHelp
CreateStatusWindowW
ImageList_AddIcon
CreateMappedBitmap
ImageList_Add
ImageList_GetIcon
CreateToolbarEx
ImageList_EndDrag
CreateStatusWindow
ImageList_GetIconSize
DrawStatusText
ImageList_DragEnter

advapi32

RegQueryValueExW
RegDeleteValueW
RegOpenKeyW
RegDeleteKeyW
RegEnumValueA
RegEnumValueW
RegSetValueW
RegDeleteKeyA
RegSetValueA
RegEnumKeyW
RegQueryValueW
RegCreateKeyExW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 39KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 259B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6c697a4236e44a7851fee96edd56385

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 46KB - Virtual size: 46KB

.data Size: 39KB - Virtual size: 39KB

.bbs Size: - Virtual size: 39KB

.idata Size: 2KB - Virtual size: 1KB

.tls Size: - Virtual size: 259B

.rdata Size: 512B - Virtual size: 91B

.rsrc Size: 1024B - Virtual size: 516B

.text
Size: 46KB - Virtual size: 46KB

.data
Size: 39KB - Virtual size: 39KB

.bbs
Size: - Virtual size: 39KB

.idata
Size: 2KB - Virtual size: 1KB

.tls
Size: - Virtual size: 259B

.rdata
Size: 512B - Virtual size: 91B

.rsrc
Size: 1024B - Virtual size: 516B