5800b7793b84560ab5a29f192a098b7e

Sharing

Copy URL Twitter E-mail

General

Target

5800b7793b84560ab5a29f192a098b7e
Size

226KB
MD5

5800b7793b84560ab5a29f192a098b7e
SHA1

ea9a58ff8f4a3a1346162d33e9e18800bfc23018
SHA256

65b5de73bd36854463a14721bb63df5bd6ef7cf56069cd552dfdd7008df3d694
SHA512

2dab62b2ce4fb1c9d7e06feec6507054106b0c5823ce951cb6222db913a641ce20e0e2ffbb0a2648899d2dcc990b2fdef9abe12fe3989efd102f9975fd6373e3
SSDEEP

3072:5mvhA8VRz1wQDErxAsYT1F5ebrqqzmjV0TsJgw8ndDsZ8Q2K0JbQQCjtu1oTZ5qb:5qA8hf5YrtZsl8dvq0VQQCjxTDu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5800b7793b84560ab5a29f192a098b7e

Files

5800b7793b84560ab5a29f192a098b7e
.exe windows:5 windows x86 arch:x86

c7dda53ec0feef9eaf67d03304614a03

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LookupIconIdFromDirectory
DrawIconEx
FindWindowA
GetDialogBaseUnits
GetKeyboardLayout
EnableWindow
SetRectEmpty
EnumThreadWindows
RegisterClassA
CharUpperA
SystemParametersInfoW
InsertMenuA
DefFrameProcW
RegisterClassExA
DrawAnimatedRects
LoadIconW
TranslateMessage
GetWindowDC
SetDlgItemTextW
SetScrollInfo
EndDialog
MapWindowPoints
SetMenuItemInfoW
PostMessageA
MapVirtualKeyW
IsChild
RegisterHotKey
CharToOemBuffA
SetTimer
SendDlgItemMessageW

comctl32

ImageList_AddMasked
DestroyPropertySheetPage

kernel32

GetThreadLocale
GetModuleHandleW
GetComputerNameExA
GetFullPathNameA
ConnectNamedPipe
VirtualQuery
GlobalFindAtomW
Sleep
GetSystemDefaultLangID
EscapeCommFunction
GetLocaleInfoA
FindResourceExA
FileTimeToSystemTime
TlsSetValue

comdlg32

CommDlgExtendedError
GetSaveFileNameW
GetSaveFileNameA

gdi32

GetPaletteEntries
SetStretchBltMode
CreateCompatibleBitmap
ResizePalette
GetDIBColorTable
GetStockObject
SetViewportOrgEx
RemoveFontResourceW
GetPixel
SetPixel
GetSystemPaletteUse
GetViewportOrgEx

Exports

Exports

?KJDKjfuIOPFpOFIPOfOFIijflkj@@YGKEPA_WG@Z

Sections

.text
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 35KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c7dda53ec0feef9eaf67d03304614a03

Headers

File Characteristics

Imports

user32

comctl32

kernel32

comdlg32

gdi32

Exports

Exports

Sections

.text Size: 117KB - Virtual size: 117KB

.rdata Size: 69KB - Virtual size: 69KB

.mdata Size: 2KB - Virtual size: 1KB

.data Size: 35KB - Virtual size: 138KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 117KB - Virtual size: 117KB

.rdata
Size: 69KB - Virtual size: 69KB

.mdata
Size: 2KB - Virtual size: 1KB

.data
Size: 35KB - Virtual size: 138KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB