53ef273fb145ddf8da6ad53a5536a0de

General

Target

53ef273fb145ddf8da6ad53a5536a0de
Size

396KB
MD5

53ef273fb145ddf8da6ad53a5536a0de
SHA1

8b9a28907ebd06a5eccd2d46b4432dc8a24ba38b
SHA256

a7e11af7734868be8aa6c6708fe18b4c57070c7b16299ce3fe5f6e9a0b533e6e
SHA512

94c0627e0051f784ce976e8ae2aa0fa97bbf3123f9c0fcf82284e60afdb5e949476583afa02b968ec68cded2890e758929525c309aa6dc97a566809d91dc7b15
SSDEEP

12288:zn7ApQjlRnWievLkWcn+dDwtT63pssT81Us04:z7Apus0Wq6SyvQ/l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53ef273fb145ddf8da6ad53a5536a0de

Files

53ef273fb145ddf8da6ad53a5536a0de
.exe windows:4 windows x86 arch:x86

8be4526f80110ad37cac6332ea5c9772

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SaveDC
CopyMetaFileA
CreateFontIndirectW
ExtCreatePen

shell32

ExtractIconExW
SHFileOperationW

wininet

UnlockUrlCacheEntryFileA
FindNextUrlCacheEntryExW
InternetSetCookieA
SetUrlCacheEntryInfoW
GetUrlCacheEntryInfoA
InternetFindNextFileA
FtpCreateDirectoryW
HttpSendRequestExW
InternetAlgIdToStringW
FtpCommandW
InternetReadFileExA
InternetSecurityProtocolToStringW
InternetGetCookieW
InternetFortezzaCommand
CreateUrlCacheGroup
FtpOpenFileA
HttpEndRequestW

advapi32

DuplicateTokenEx
RegEnumValueW

kernel32

SleepEx
LockFileEx
EnumDateFormatsExW
VirtualAlloc
GetTickCount
GetModuleFileNameA
ExitProcess
GetCurrentProcess
TerminateProcess
GetPrivateProfileStructA
HeapReAlloc
GetCurrentThreadId
GetCurrentProcessId
FlushViewOfFile
GetSystemTimeAsFileTime
DosDateTimeToFileTime
WaitCommEvent
TryEnterCriticalSection
HeapAlloc
SetCurrentDirectoryA
LoadLibraryExW
WideCharToMultiByte
ExpandEnvironmentStringsW
EnumSystemLocalesW
RtlUnwind
GetProcAddress
OpenMutexW
CreateNamedPipeW
HeapFree
OpenFileMappingA
InterlockedExchange
QueryPerformanceCounter
GetPrivateProfileStructW
LoadLibraryA
VirtualQuery
GetModuleHandleA

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 265KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8be4526f80110ad37cac6332ea5c9772

Headers

File Characteristics

Imports

gdi32

shell32

wininet

advapi32

kernel32

Sections

.text Size: 124KB - Virtual size: 123KB

.data Size: 265KB - Virtual size: 264KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 124KB - Virtual size: 123KB

.data
Size: 265KB - Virtual size: 264KB

.rsrc
Size: 6KB - Virtual size: 6KB