55f8aae05613b040c012469c0f818fdf

General

Target

55f8aae05613b040c012469c0f818fdf
Size

160KB
MD5

55f8aae05613b040c012469c0f818fdf
SHA1

b6e0b3e1c0c91d30b66d39e464f64953e4016726
SHA256

d4862c4077b37e59cd3ee7b9263d419b9275a515a62d1b40d82f28a3f5764348
SHA512

f7c53df7965c23a063665d69d9e84a86c4cc0253067318c3c014ac027694556c6547b3400ee8e6c80e74998ab89f95a887ae8fb11021622d7c3245ec39bf2e40
SSDEEP

3072:jWfBsquDi/v1gRtH0DnK1DfcqWI1u/yX6QbwS:jWsquDbHUnK1bcfgw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55f8aae05613b040c012469c0f818fdf

Files

55f8aae05613b040c012469c0f818fdf
.exe windows:4 windows x86 arch:x86

f80125fc7d895730bcc3b25ea4c7a1f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA
RegDeleteValueA
RegEnumKeyExA
RegLoadKeyA

user32

SetWindowLongA
DrawMenuBar
CreateIcon
GetMenu
CheckMenuItem
EnumChildWindows
EqualRect
RegisterClassA
EnableWindow
CreatePopupMenu
BeginPaint
IsMenu
GetDCEx
IsChild
DefWindowProcA
DrawEdge
GetSubMenu
GetFocus
GetCapture
GetActiveWindow
ClientToScreen

comctl32

ImageList_Destroy

msvcrt

wcsncmp
atol
log10
exit
mbstowcs
memmove
malloc
wcstol
calloc
memcmp
clock
strcmp
exp
sprintf
memcpy
swprintf
wcschr
sqrt

oleaut32

OleLoadPicture
SafeArrayGetUBound
RegisterTypeLib
GetErrorInfo

kernel32

SetEndOfFile
HeapFree
GetStringTypeA
LocalFree
GetCurrentProcess
LoadLibraryExA
GetLastError
lstrcpynA
lstrcmpiA
GetCPInfo
GetCurrentProcessId
GetCurrentThread
FreeLibrary
ExitThread
GetVersionExA
VirtualAllocEx
ExitProcess
LoadLibraryA
GetModuleHandleA
GlobalAlloc

shlwapi

PathFileExistsA
PathGetCharTypeA

shell32

SHGetFileInfoA
SHGetSpecialFolderLocation
SHFileOperationA

version

GetFileVersionInfoSizeA
VerFindFileA

Sections

CODE
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 786B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f80125fc7d895730bcc3b25ea4c7a1f4

Headers

File Characteristics

Imports

advapi32

user32

comctl32

msvcrt

oleaut32

kernel32

shlwapi

shell32

version

Sections

CODE Size: 36KB - Virtual size: 36KB

.edata Size: 119KB - Virtual size: 119KB

INIT Size: 2KB - Virtual size: 97KB

.data Size: 1024B - Virtual size: 786B

CODE
Size: 36KB - Virtual size: 36KB

.edata
Size: 119KB - Virtual size: 119KB

INIT
Size: 2KB - Virtual size: 97KB

.data
Size: 1024B - Virtual size: 786B