55856c035bf75ea9b04469d1bd19c68b

Sharing

Copy URL Twitter E-mail

General

Target

55856c035bf75ea9b04469d1bd19c68b
Size

596KB
MD5

55856c035bf75ea9b04469d1bd19c68b
SHA1

4c6424b86c1f6aba092b504a271ca60518bcaf6d
SHA256

96b524af1a1f588ce5b8277d5daac95cc792505672ef311af8750d4ddec50f6f
SHA512

bbfc90e776de4c2475ab16aea3b12ac93414476d3fda1938dd09c070b5dbeefe1bee718a6a7c4c71e0c2497ea9606bbbd50c6bbc3a5e8881aaa8595016a183c0
SSDEEP

12288:MpVxVhmeEfDRl7CVtBakH+M7eDJzlry8LsiDCa:IVxiRlW/jH+EeDfT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55856c035bf75ea9b04469d1bd19c68b

Files

55856c035bf75ea9b04469d1bd19c68b
.exe windows:4 windows x86 arch:x86

f55ada0b2622adcbadd57be4655c6517

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA

comctl32

ImageList_LoadImageA
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetIcon
CreateStatusWindow
MakeDragList
ImageList_Read
CreateToolbar
ImageList_Draw
ImageList_DragShowNolock
ImageList_DragEnter
CreateStatusWindowW
ImageList_Duplicate
ImageList_GetFlags
ImageList_GetImageInfo
CreateUpDownControl
ImageList_DrawEx
ImageList_SetOverlayImage
_TrackMouseEvent
ImageList_GetDragImage
InitCommonControlsEx
ImageList_Destroy

shell32

DragQueryFileA
SHBrowseForFolder

gdi32

CreateICA
AbortDoc
StretchBlt
GetROP2
SetDIBitsToDevice
GetEnhMetaFileBits
GetTextAlign
SetPixelFormat
EnumFontFamiliesA
EnumFontsA
SetSystemPaletteUse
GetEnhMetaFileHeader
GetCharABCWidthsFloatW
GetWinMetaFileBits
GetKerningPairsA
EnumFontFamiliesExW
CreateColorSpaceW
InvertRgn
GetNearestColor
SetEnhMetaFileBits
GetCharWidth32A
GetObjectType
CreateScalableFontResourceA
GetTextCharacterExtra
SetGraphicsMode

user32

GetClassLongA
CreateCursor
LoadIconW
TranslateAcceleratorA
BeginDeferWindowPos
SetFocus
CharLowerBuffA
GetMessageExtraInfo
CountClipboardFormats
MapVirtualKeyExW
GetFocus
PaintDesktop
BlockInput
IsCharUpperA
UnionRect
KillTimer
DdeCreateDataHandle
CharToOemW
ReplyMessage
MessageBoxA
IsDialogMessageW
GetMenuContextHelpId
CharNextExA
SetDoubleClickTime
CreatePopupMenu
InvalidateRect
InsertMenuItemA
DefFrameProcW
GetShellWindow
FlashWindow
IsWindow
ShowWindow
DragDetect
SetProcessWindowStation
CreateWindowExW
TranslateAccelerator
DlgDirListComboBoxW
SetMenuDefaultItem
GetWindowPlacement
GetSysColor
OemToCharBuffW
InSendMessageEx
CreateMenu
DdeFreeStringHandle
SetDlgItemTextW
GetDC
PostMessageA
GetMenuItemInfoW
GetClassWord
GetWindowTextLengthA
CloseWindow
DestroyWindow
DialogBoxParamA
RegisterClassExA
SendMessageTimeoutW
OemToCharW
DeferWindowPos
DestroyMenu
InsertMenuW
GetClassNameW
DefWindowProcA
OffsetRect
GetLastActivePopup
SetUserObjectSecurity
IsCharLowerW
RegisterClassA
GetMonitorInfoW
TrackPopupMenuEx
MapVirtualKeyA
GetDlgItemInt
DrawFrameControl
GetMenuInfo

kernel32

AddAtomW
GetTickCount
LCMapStringW
LoadResource
GetTimeFormatA
EnumCalendarInfoA
GetOEMCP
GetLocaleInfoW
GetCPInfo
IsDebuggerPresent
GetStdHandle
GetStartupInfoA
GetPrivateProfileIntA
GetConsoleTitleW
GetStartupInfoW
LCMapStringA
GetLocalTime
GetPrivateProfileIntW
UnhandledExceptionFilter
OutputDebugStringW
GetAtomNameW
WritePrivateProfileSectionW
FillConsoleOutputAttribute
ContinueDebugEvent
GetProfileIntA
ReadConsoleOutputAttribute
GetSystemInfo
MapViewOfFileEx
GetSystemTimeAsFileTime
SetStdHandle
LeaveCriticalSection
GetACP
VirtualFree
EnumResourceNamesA
GetUserDefaultLCID
lstrcpy
GetTimeZoneInformation
OpenFile
ReadConsoleInputA
ResumeThread
WriteFile
GetCurrentProcess
TlsFree
SetVolumeLabelW
SetFilePointer
IsBadWritePtr
SetLastError
GetFileType
EnumSystemLocalesA
GetEnvironmentStringsW
GetStringTypeW
DeleteCriticalSection
CreateWaitableTimerW
FreeEnvironmentStringsA
CreateMutexA
VirtualQuery
InterlockedExchange
EnumResourceNamesW
HeapDestroy
RtlUnwind
GetStringTypeExW
OpenMutexA
GetCurrentThread
MultiByteToWideChar
EnumResourceTypesA
GetConsoleMode
GetDateFormatA
HeapAlloc
SetHandleCount
GetCalendarInfoA
EnterCriticalSection
GetCurrentDirectoryA
IsValidCodePage
GetCommandLineW
GetProcAddress
GetStringTypeA
VirtualAlloc
GetExitCodeProcess
GetModuleFileNameA
GetModuleHandleA
HeapSize
CloseHandle
CompareStringA
GetCalendarInfoW
CompareStringW
GetLocaleInfoA
GetVersionExA
LockFileEx
FlushFileBuffers
GetCurrentThreadId
HeapFree
QueryPerformanceCounter
VirtualProtect
ExitProcess
TerminateProcess
EnumResourceLanguagesA
SetSystemTime
IsValidLocale
InitializeCriticalSection
LoadLibraryA
SetEnvironmentVariableA
GetProfileSectionW
GetCommandLineA
GetModuleFileNameW
GlobalHandle
TlsAlloc
GetNamedPipeInfo
GetCompressedFileSizeW
CreatePipe
GetEnvironmentStrings
GetCurrentProcessId
TlsSetValue
TlsGetValue
ReadFile
WritePrivateProfileStructW
WritePrivateProfileStringA
GetLastError
WideCharToMultiByte
DeleteAtom
HeapReAlloc
EnumResourceTypesW
GlobalSize
FreeEnvironmentStringsW
HeapCreate
ReadConsoleA

Sections

.text
Size: 184KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f55ada0b2622adcbadd57be4655c6517

Headers

File Characteristics

Imports

comdlg32

comctl32

shell32

gdi32

user32

kernel32

Sections

.text Size: 184KB - Virtual size: 180KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 112KB - Virtual size: 129KB

.rsrc Size: 32KB - Virtual size: 30KB

.text
Size: 184KB - Virtual size: 180KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 112KB - Virtual size: 129KB

.rsrc
Size: 32KB - Virtual size: 30KB