5823c7d2e415646b6212a6ac3bf88233

Sharing

Copy URL

Twitter E-mail

General

Target

5823c7d2e415646b6212a6ac3bf88233
Size

19KB
MD5

5823c7d2e415646b6212a6ac3bf88233
SHA1

23253f9d19355fb3573bebfcd0a4b32b59e44146
SHA256

e72aabe22e7f194919151858c1a3406d90b17da148dd191270e1050c0d4658cf
SHA512

3ae24358793c4872e1b644a90adf78f674c28e7858c89e6ab23ad8e243a10f940dce599e470e1f779df00f80802e45e32972cba5d2be26d1c763853e63c1f98e
SSDEEP

384:WHoFGN511TrBpPKunY53iZzRDpc0nblD7qQzQ:LFGN511TrrPEiZ1Xnb8S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5823c7d2e415646b6212a6ac3bf88233

Files

5823c7d2e415646b6212a6ac3bf88233
.exe windows:4 windows x86 arch:x86

c8bd88784e6f8401a20548d87861e2e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
FreeLibrary
MultiByteToWideChar
SizeofResource
GetLocalTime
GetLastError
RaiseException
GlobalFree
CreateEventA
GetStartupInfoA
SetErrorMode
TlsGetValue
VirtualAlloc
WriteFile
SetThreadLocale
GetOEMCP
UnhandledExceptionFilter
GlobalHandle
CreateThread
lstrcpynA
ResetEvent
GetCPInfo
GetProcAddress
WaitForSingleObject
LocalAlloc
LoadLibraryA
RtlUnwind
GetVersionExA
CloseHandle
FreeLibrary
LoadResource
FormatMessageA
lstrlenA
GetVersion
VirtualAlloc
LeaveCriticalSection
GetLocaleInfoA
LocalAlloc
GetStringTypeExA
VirtualProtect
GetStdHandle
GetTickCount
ExitProcess
FindClose
GlobalLock
GetCommandLineA
EnumCalendarInfoA
GetProcAddress
ReadFile
FreeResource
VirtualQuery
SetFilePointer
GetDateFormatA
GetCurrentThreadId
Sleep
LocalFree
GetFullPathNameA
GetCurrentThreadId
InitializeCriticalSection
VirtualFree
VirtualQuery
lstrcpyA
GetVersion

user32

GetFocus
FrameRect
TranslateMessage
MapWindowPoints
GetKeyNameTextA
CharToOemA
RemoveMenu
GetSysColorBrush
DispatchMessageA
SetTimer
InvalidateRect
GetClassInfoA
UpdateWindow
OffsetRect
GetKeyboardLayoutList
BeginPaint
ScrollWindow
GetSubMenu
DrawIcon
SetScrollPos
InsertMenuItemA
EnumWindows
UnhookWindowsHook
LoadIconA
LoadStringA
PostMessageA
GetMenu
CallWindowProcA
RemovePropA
GetScrollInfo
SetForegroundWindow
GetWindowThreadProcessId
EndPaint
ShowCursor
IsWindow
UnregisterClassA
LoadStringA
GetForegroundWindow
ActivateKeyboardLayout
PtInRect
GetMenuItemCount
ClientToScreen
ScreenToClient
GetWindow
DefFrameProcA
SetClassLongA
GetSystemMenu
DrawEdge
SetMenu
GetWindowLongA
DrawTextA
SetWindowLongA
InflateRect
FillRect
IsRectEmpty
SystemParametersInfoA
KillTimer
GetCapture
IsZoomed
GetCursor
WinHelpA
LoadCursorA
GetDesktopWindow
WaitMessage
GetDCEx
MapVirtualKeyA
GetDC
ShowWindow
GetActiveWindow
ShowScrollBar
IsWindowVisible
IsChild
ShowOwnedPopups
EnableWindow
GetWindowTextA
DrawIconEx
SetParent
GetTopWindow
GetSystemMetrics
DestroyMenu
GetScrollPos
GetMenuStringA
RegisterClipboardFormatA
GetLastActivePopup
PeekMessageA
CharNextA
IsIconic
EqualRect
SetWindowPos
GetWindowRect
DrawFrameControl
SetMenuItemInfoA
DestroyIcon
SetCapture
RegisterClassA
SetWindowsHookExA
IntersectRect
DefMDIChildProcA

gdi32

GetDeviceCaps
CreateCompatibleDC
SetBkMode
GetTextExtentPoint32A
GetStockObject
CreatePenIndirect
SetTextColor
MaskBlt
GetClipBox
CreateBrushIndirect
SaveDC
GetPaletteEntries
CreateFontIndirectA
SetPixel
GetTextMetricsA
DeleteObject
SetViewportOrgEx
PatBlt
GetCurrentPositionEx
CreateCompatibleBitmap
SelectObject
GetPixel
CreateHalftonePalette
SetDIBColorTable
GetWindowOrgEx
DeleteDC
BitBlt
RestoreDC
GetDIBits
CreateDIBSection
CreateSolidBrush
SetWindowOrgEx
MoveToEx
GetBrushOrgEx
RectVisible
GetDCOrgEx
GetObjectA
CreateDIBitmap
GetSystemPaletteEntries

advapi32

GetLocalManagedApplications
AccessCheckByTypeResultListAndAuditAlarmByHandleW
DuplicateTokenEx
GetExplicitEntriesFromAclA
AbortSystemShutdownW
ChangeServiceConfigW
FreeInheritedFromArray
IsValidSecurityDescriptor
AddAccessDeniedAceEx
ElfChangeNotify
GetInformationCodeAuthzPolicyW
AccessCheckByTypeResultList
DeleteAce
GetAuditedPermissionsFromAclA
LookupAccountNameA
BuildTrusteeWithSidA
FileEncryptionStatusA
IsValidAcl
AddAccessAllowedAce
ElfBackupEventLogFileW
GetInformationCodeAuthzLevelW
AccessCheckByType
DeleteService
GetAclInformation
LookupAccountSidA
BuildTrusteeWithSidW
FindFirstFreeAce
AddAccessDeniedAce
ElfClearEventLogFileW
GetLengthSid
AccessCheckByTypeResultListAndAuditAlarmA
DuplicateEncryptionInfoFile
GetFileSecurityA
AccessCheckAndAuditAlarmW
ClearEventLogW
LookupPrivilegeDisplayNameA
ChangeServiceConfigA
FlushTraceA
IsValidSid
AddAccessDeniedObjectAce
ElfCloseEventLog
InitializeSecurityDescriptor
GetEffectiveRightsFromAclA
CancelOverlappedAccess
LockServiceDatabase
BuildTrusteeWithObjectsAndSidA
ElfFlushEventLog
InitiateSystemShutdownA
DuplicateToken
DestroyPrivateObjectSecurity
AccessCheckAndAuditAlarmA

Sections

wtewtw
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

zxgsgt
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c8bd88784e6f8401a20548d87861e2e2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

wtewtw Size: 512B - Virtual size: 512B

zxgsgt Size: 18KB - Virtual size: 18KB

wtewtw
Size: 512B - Virtual size: 512B

zxgsgt
Size: 18KB - Virtual size: 18KB