5a0a4282c0dac1ca95740e52914181af

General

Target

5a0a4282c0dac1ca95740e52914181af
Size

56KB
MD5

5a0a4282c0dac1ca95740e52914181af
SHA1

80052e6ad99d1ec82a46e33dae41239d6d53b97a
SHA256

fe25743448c2ba56180778db8e73a12366bc4fadfc08e616dcd0effcd6ccc489
SHA512

08df4fa8b0a5432a3488ee5a412e16d1bd86c933803097dceb7056023549e46904ab991f3e3e360859417d242225fbcd90ce86ed5510699a231805495358f362
SSDEEP

768:GU1ZTbAL7yZ0xt0rIcm+MvYzKfEctDY89PahPpj74gXKQh6RzyNg9Pz:G8TMIuaID+MYKp1F9PahRjcX46dg8Pz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a0a4282c0dac1ca95740e52914181af

Files

5a0a4282c0dac1ca95740e52914181af
.exe windows:4 windows x86 arch:x86

bee7c40cd900a8e3054a61183d8e358e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessW
GetModuleHandleW
DeleteFileW
LockResource
GetProcAddress
CancelWaitableTimer
ResetEvent
LoadLibraryA
InterlockedDecrement
GetPrivateProfileStringW
FindResourceW
WritePrivateProfileStringW
SetEvent
GlobalAlloc
GetCurrentThreadId
lstrlenW
GetTickCount
MoveFileW
GetLogicalDrives
GetCurrentProcessId
SuspendThread
GlobalAddAtomW
lstrcpyW
GetVersion
GlobalDeleteAtom
WideCharToMultiByte
SetFilePointer
GetSystemTime
ResumeThread

user32

DispatchMessageW
UpdateWindow
DialogBoxParamW
EndDialog
MessageBoxW
SystemParametersInfoW
PostQuitMessage
LoadBitmapW
FillRect
SetDlgItemTextW
GetClassNameW
VkKeyScanW
SetWindowTextW
GetParent
WindowFromPoint
CreateWindowExW
SetWindowPos
OffsetRect
IsWindow
GetCursorPos
GetSysColor
wsprintfW

gdi32

GetObjectW
CreateBitmap
CreateCompatibleBitmap
CreateSolidBrush
SetMapMode
CreateRoundRectRgn

advapi32

RegNotifyChangeKeyValue
RegQueryValueExW
RegCreateKeyExW
InitializeSecurityDescriptor
RegDeleteValueW
RegSetValueExW
StartServiceW

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bee7c40cd900a8e3054a61183d8e358e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB