55e277e9d685dbdc0304d67cb2e9bbfc

General

Target

55e277e9d685dbdc0304d67cb2e9bbfc
Size

61KB
MD5

55e277e9d685dbdc0304d67cb2e9bbfc
SHA1

baf9a48deb6683b9da53e6146991d95624eb33d4
SHA256

8af338bafedbcf83b5eef969e6ed22cadcd7282d7b7833127506e5bb78a37265
SHA512

11232c22876cba6cd6b6acd8e2cbd280f221de4f9ed3f1b0b2b3512984ad3c0eaa22532eee5abbf302e9f9854a25c32415a062893a8c4d3e21af72b58b7affe1
SSDEEP

768:Kmeaqn+byZ0r8Gl/FwnGVmlzzL8PC6k/WrociMJcHppYUZTRUYz6bnjumQLOwK:KcqnxZ5s/unBzQtk/R7dJpfG8CjpwK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55e277e9d685dbdc0304d67cb2e9bbfc

Files

55e277e9d685dbdc0304d67cb2e9bbfc
.exe windows:4 windows x86 arch:x86

bdbc091d44bd407e95ba9d66d5f22e85

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CancelIo
VirtualProtect
SetConsoleTextAttribute
Thread32Next
VirtualFree
MoveFileExA
ReadConsoleInputA
DebugBreak
GetFileSize
CreateDirectoryExW
GetProfileStringW
SetLastError
GetLastError
GetConsoleCharType
HeapFree
SetVolumeMountPointA
Toolhelp32ReadProcessMemory
HeapLock
FindFirstVolumeA
GetStringTypeW
SetFileApisToOEM
EnumResourceNamesA
FindFirstVolumeMountPointW
GetConsoleAliasW
SetFileAttributesA
GetShortPathNameW
HeapCompact
ReadConsoleInputW
GetDefaultCommConfigW
LocalFlags
GetNumberOfConsoleInputEvents
GetTapePosition
GlobalAddAtomA
FindFirstChangeNotificationW
GetVolumeNameForVolumeMountPointW
ConnectNamedPipe

user32

CreateCursor
SetDlgItemTextA
SetCursor
DdeClientTransaction
GetAltTabInfoA
SendMessageTimeoutA
DdeQueryStringW
CreateDialogParamW
WCSToMBEx
DdeUnaccessData

gdi32

BRUSHOBJ_pvGetRbrush
GetDIBits
ExcludeClipRect
GetWorldTransform
GetMetaFileA
CopyEnhMetaFileA
GetTextExtentExPointW
PATHOBJ_bEnumClipLines
DeleteObject
GetKerningPairsA

comdlg32

CommDlgExtendedError
PrintDlgA
FindTextW
GetFileTitleW
ChooseFontA
ReplaceTextA
GetSaveFileNameW

Sections

.text
Size: 4KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bdbc091d44bd407e95ba9d66d5f22e85

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 92KB

.data Size: 53KB - Virtual size: 56KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 92KB

.data
Size: 53KB - Virtual size: 56KB

.idata
Size: 2KB - Virtual size: 4KB