55b2cfeb338b5df6499b65d1588ecf8a

General

Target

55b2cfeb338b5df6499b65d1588ecf8a
Size

93KB
MD5

55b2cfeb338b5df6499b65d1588ecf8a
SHA1

2323c69c52bec42c70ccb9e020fc9507e7578268
SHA256

618dfbd64f1e8ab42ec53b9dba4eeaaa5349b1390bdd0bbd39ce2e0534fe0ba5
SHA512

6a951f80b8044b5a8584de191441b15543f8756aa3d3d96a5df2e13b4463c0da54c7ff442a2996ddbc05b6e6f4a3cdca8130c49cffa3afeb4d064489d1a5ff0c
SSDEEP

1536:REhUvg6s6trjm7DHMoiJcus41Vt99WyQ+bglOgPMSSUdr7dRAJpgPlY5eVI:iTmdjO5HQLzfJWM0d1RAJpgPA0I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55b2cfeb338b5df6499b65d1588ecf8a

Files

55b2cfeb338b5df6499b65d1588ecf8a
.exe windows:5 windows x86 arch:x86

8f0c9e15206058e87ffd9c16d1376660

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
lstrcmpW
lstrcmpA
GetFileAttributesExW
GetModuleHandleW
IsBadStringPtrA
GlobalAddAtomA
IsBadHugeWritePtr
SetLocalTime
GetProcAddress
IsValidLanguageGroup
ExitThread
GetBinaryTypeA
GetCurrentThread

shlwapi

PathFindNextComponentA

gdi32

GetPaletteEntries
PolyBezier
RestoreDC
SetWindowOrgEx
ResizePalette
SetAbortProc
DPtoLP
SetStretchBltMode

user32

FindWindowExW
OemToCharBuffA
SetDlgItemInt
DialogBoxIndirectParamW
DrawTextExW
EnableScrollBar
CreateCaret
GetCaretPos
ChildWindowFromPointEx
GetDialogBaseUnits
GetMenuItemID
FindWindowExA
WindowFromPoint
GetWindowTextW

comctl32

ImageList_GetImageCount
DestroyPropertySheetPage

Exports

Exports

?lhnmyqCgxWoQ@@YGPAXJK@Z
?XkgcNatoikVjhsiRW@@YGPAMH@Z

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 51B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f0c9e15206058e87ffd9c16d1376660

Headers

File Characteristics

Imports

kernel32

shlwapi

gdi32

user32

comctl32

Exports

Exports

Sections

.text Size: 49KB - Virtual size: 49KB

.rdata Size: 512B - Virtual size: 51B

DATA Size: 3KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 266KB

.rsrc Size: 130KB - Virtual size: 130KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 49KB - Virtual size: 49KB

.rdata
Size: 512B - Virtual size: 51B

DATA
Size: 3KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 266KB

.rsrc
Size: 130KB - Virtual size: 130KB

.reloc
Size: 6KB - Virtual size: 5KB