5534ca4553817fe1ccdfebaac5069238 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5534ca4553817fe1ccdfebaac5069238
Size

19KB
MD5

5534ca4553817fe1ccdfebaac5069238
SHA1

2996603204752efd9625dd46067c70bd612707fb
SHA256

82b4fba740e7b7a7487ee9224ed42935e9bb8e38336ba90d1151598bc81a07de
SHA512

6fa8b85516a0255c4d351440cd7958223f16f23d437f6e56d193b1fd67623d28128ec368738b53d789ea177565ef51bccd2c1c4d0c36198ddaccc259c3e639ee
SSDEEP

384:li8ccxGFepIk+mQnTdM7e1pmeOIPMJ3LVQKOKy:Q8cqGFK97e9ZPMRLGKy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5534ca4553817fe1ccdfebaac5069238

Files

5534ca4553817fe1ccdfebaac5069238
.dll windows:4 windows x86 arch:x86

fa3a6b79a374ea309d677acca2c8d2bb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpynA
GlobalAlloc
WideCharToMultiByte
CreateEventA
GetFileAttributesW
lstrcatA
MultiByteToWideChar
GetTempPathW
GetProcAddress
GlobalFree
LoadLibraryA
GetModuleHandleA
lstrcatW
ReleaseMutex
CloseHandle
lstrcpyW
lstrcpyA
SetFilePointer
ReadFile
WriteFile
RtlUnwind
CompareStringA
CreateToolhelp32Snapshot
Process32First
lstrcmpA
CreateFileA

user32

DestroyWindow
GetWindowRect
GetFocus
wsprintfA
GetClientRect
SendMessageA
RegisterWindowMessageA
wsprintfW
SetWindowLongA
MessageBoxA
GetWindowLongA
CreateWindowExA
GetDlgItem
ShowWindow
CreateWindowExW
IsWindowVisible
SetWindowTextA
EnableWindow
CallWindowProcA
SetDlgItemTextA
BeginPaint

advapi32

RegQueryValueExA
RegCloseKey

Exports

Exports

cool
feed
plem

Sections

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ