5565c1c87b264f9569f4789d4b17ab9b

General

Target

5565c1c87b264f9569f4789d4b17ab9b
Size

80KB
MD5

5565c1c87b264f9569f4789d4b17ab9b
SHA1

76490a2fc260f4114fd34eb70b4aef3c839bcaec
SHA256

a29ae0d634515f1b48a761f9364e7e4f7bcf15e448262ac50669b6d42ca23302
SHA512

d34230b38b031dfd72f83d2dcb622d74e8c1c14eae481d8b7bd8e0bb9190b5fada08c8dec5d355b5764d697347585f1a4f9374ed03d8d5709992065723fb92c1
SSDEEP

1536:rLOwxO0NKkHro16qZj0KGFR/MKKnxnYyWye:rZLro16ahGFJUxnJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5565c1c87b264f9569f4789d4b17ab9b

Files

5565c1c87b264f9569f4789d4b17ab9b
.exe windows:4 windows x86 arch:x86

5284ac0f21e921bba20d297618841bb9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorA
DrawIcon
GetFocus
InsertMenuA
DialogBoxParamW
CopyRect
GetDC
CopyImage
GetCursor
DrawTextW
BlockInput
CopyIcon
AppendMenuA
GetMenu
LoadMenuA
IsWindow
IsMenu
DialogBoxParamA

comctl32

ImageList_Destroy
ImageList_GetImageInfo
ImageList_LoadImage
ImageList_GetImageRect
ImageList_Read
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_EndDrag
ImageList_Replace
ImageList_LoadImageA
ImageList_DragLeave
ImageList_DragEnter
ImageList_Draw
ImageList_LoadImageW
ImageList_Copy
ImageList_Create
ImageList_BeginDrag
ImageList_GetIconSize

advapi32

RegQueryValueExA
RegQueryValueExW
RegQueryInfoKeyA
RegLoadKeyW
RegGetKeySecurity
RegQueryInfoKeyW
RegReplaceKeyA
RegDeleteValueW
RegOpenKeyA
RegLoadKeyA
RegOpenKeyExA
RegEnumValueW
RegDeleteKeyA
RegReplaceKeyW
RegCreateKeyExW
RegOpenKeyW
RegEnumKeyW
RegQueryValueA

kernel32

GetCPInfo
GlobalFree
SetLastError
GetCommandLineA
GetModuleHandleA
CloseHandle
lstrlenA
lstrcmpiA
lstrcmpA
DeleteFileA
GetStdHandle
GetFullPathNameA
lstrcatA
lstrcpynA
GetFileAttributesA
HeapFree
GetLocalTime
GetLastError
GetFileType
WideCharToMultiByte

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5284ac0f21e921bba20d297618841bb9

Headers

File Characteristics

Imports

user32

comctl32

advapi32

kernel32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 60KB - Virtual size: 56KB

.rdata Size: 4KB - Virtual size: 84KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 60KB - Virtual size: 56KB

.rdata
Size: 4KB - Virtual size: 84KB

.rsrc
Size: 4KB - Virtual size: 1KB