53fd2b029b1d1dc1000b78a489adf390[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

53fd2b029b1d1dc1000b78a489adf390.exe
Size

91KB
MD5

53fd2b029b1d1dc1000b78a489adf390
SHA1

8a9a4373f1d4cbbbf2d1ac19bff72d51bd6fce5f
SHA256

e37ac86fce6b1bbc7f242bd6269890f472277e9764d32b1b363fe46d836cc8e7
SHA512

6f37a0f2f85f36f801b12e94ede92c2e7e3e8bf819ddaff6083fe96d969c9e6d11bb158d70aa8c4646c674fecd5e652c3207d893afedc43ed904628b65649a9f
SSDEEP

1536:ldlfyXI855JBM80zOVAgtqDi1j5MpcSQRc+s4ilYEShXGmxn+zXXkvDv:ldpyXs80zOVAgtqO1j5MpcU+s4iOjXF9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53fd2b029b1d1dc1000b78a489adf390.exe

Files

53fd2b029b1d1dc1000b78a489adf390.exe
.exe windows:4 windows x86 arch:x86

85c5058c41132069a58df3cf46b86303

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

crtdll

memset
strlen
_strnicmp
strncmp
strncpy
strcpy
strcat
longjmp
free
fseek
ftell
malloc
fread
memcpy
exit
fprintf
sprintf
getenv
sscanf
fopen
fclose
floor
_iob
_setjmp
_isnan
_lseek
_close
_fstat
_open
_read
_write

user32

wsprintfA
SystemParametersInfoA
MoveWindow
SetWindowLongA
wvsprintfA
CreatePopupMenu
CreateMenu
SetForegroundWindow
TrackPopupMenu
GetCursorPos
EnableMenuItem
SetMenu
DestroyMenu
AppendMenuA
GetSystemMetrics
SetMenuItemBitmaps
MessageBoxA
GetWindowThreadProcessId
IsWindowVisible
IsWindowEnabled
GetForegroundWindow
EnableWindow
EnumWindows
DestroyIcon
LoadImageA
GetIconInfo
GetWindowLongA
CallWindowProcA
DefWindowProcA
GetWindowRect
GetClassNameA
RedrawWindow
GetClientRect
SendMessageA
SetWindowPos
SetWindowTextA
GetWindowTextA
DestroyWindow
GetParent
ScreenToClient
CreateWindowExA
InvalidateRect
UpdateWindow
BeginPaint
DrawStateA
EndPaint
LoadCursorA
LoadIconA
RegisterClassA
GetSysColor
AdjustWindowRect
GetActiveWindow
ShowWindow
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
GetWindow
SetActiveWindow
UnregisterClassA
DestroyAcceleratorTable
GetMenu
PostMessageA
SetFocus
GetFocus
IsChild
EnumChildWindows
GetKeyState
CreateAcceleratorTableA
SetCursorPos
SetCursor
SetCapture
MapWindowPoints
ReleaseCapture
GetDC
ReleaseDC
FillRect

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey
RegCreateKeyA
RegFlushKey
RegQueryValueExA

wsock32

socket
ioctlsocket
htons
bind
listen
closesocket
WSACleanup
WSAStartup

oleaut32

SysFreeString
SysAllocString

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

gdi32

GetObjectType
DeleteObject
GetObjectA
CreateDCA
CreateCompatibleBitmap
CreateCompatibleDC
SetDIBits
DeleteDC
GetStockObject
CreateBrushIndirect
CreateSolidBrush
CreatePen
SetTextAlign
SelectObject
SetTextColor
SetROP2
SetBkMode
GetTextExtentPoint32A
MoveToEx
TextOutA
SetPixelV
Rectangle
Ellipse

comctl32

InitCommonControls

kernel32

GetModuleHandleA
GetCommandLineA
ExitProcess
HeapCreate
GetModuleFileNameA
GetTempPathA
SetFileAttributesA
MultiByteToWideChar
WideCharToMultiByte
GetUserDefaultLCID
TerminateProcess
HeapDestroy
HeapReAlloc
FreeLibrary
GetProcAddress
HeapAlloc
LoadLibraryA
IsBadReadPtr
HeapFree
CreateThread
GetThreadPriority
SetThreadPriority
GetCurrentThreadId
GetCurrentProcessId
WaitForSingleObject
Sleep
CreateFileA
ReadFile
CloseHandle
GlobalAlloc
GlobalFree
CopyFileA
DeleteFileA
FindClose
FindFirstFileA
FindNextFileA
SetFilePointer
GetFileSize
WriteFile

shell32

ShellExecuteExA

Sections

.text
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.flat
Size: 512B - Virtual size: 215B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

85c5058c41132069a58df3cf46b86303

Headers

File Characteristics

Imports

crtdll

user32

advapi32

wsock32

oleaut32

wininet

gdi32

comctl32

kernel32

shell32

Sections

.text Size: 71KB - Virtual size: 71KB

.data Size: 14KB - Virtual size: 18KB

.rsrc Size: 4KB - Virtual size: 3KB

.flat Size: 512B - Virtual size: 215B

.text
Size: 71KB - Virtual size: 71KB

.data
Size: 14KB - Virtual size: 18KB

.rsrc
Size: 4KB - Virtual size: 3KB

.flat
Size: 512B - Virtual size: 215B