5b202510c19d8d783fed43d7642d1af6

General

Target

5b202510c19d8d783fed43d7642d1af6
Size

583KB
MD5

5b202510c19d8d783fed43d7642d1af6
SHA1

636ec196f6f5c0b1fc02c564519dc916f5bab1ee
SHA256

52bfc220d00e9c128c1615883bb60a4a5e042bb6565a5dfe39a7fc64768792fb
SHA512

2ed7d5fa2e57395c5058509945f03018072bea8b283f815fafb82e7fef8ba8b457b0c8f2d28f5bd18c258faabb4582512b6256bf69e1d5163ac4df333a09e771
SSDEEP

12288:lVKxPOi6r31ptzDksAQOFlzQ2hcpWRFlyTsJ+JGfoW:bK1O3rFppg5r72pgym+8b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b202510c19d8d783fed43d7642d1af6

Files

5b202510c19d8d783fed43d7642d1af6
.exe windows:4 windows x86 arch:x86

53989fa82ce42f632158d5d6b40c86ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AreFileApisANSI
BeginUpdateResourceA
CreateNamedPipeA
DeleteFileA
ExitProcess
FlushViewOfFile
GetCurrencyFormatW
GetDevicePowerState
GetDiskFreeSpaceA
GetFileAttributesExA
GetFileInformationByHandle
GetModuleFileNameW
GetPrivateProfileStructA
GetSystemInfo
GetTempFileNameW
GetThreadTimes
GetTimeFormatA
IsBadStringPtrW
MoveFileA
OpenEventA
ReadConsoleOutputCharacterA
SetThreadPriorityBoost
SystemTimeToTzSpecificLocalTime
_llseek
lstrcpynW
lstrlenA

user32

ChangeDisplaySettingsExA
CopyAcceleratorTableA
CopyIcon
CreateDesktopW
CreateIconFromResourceEx
DefWindowProcW
DestroyAcceleratorTable
DrawTextA
EnumDisplayDevicesW
EnumWindowStationsA
ExcludeUpdateRgn
GetClientRect
GetClipboardData
GetKeyboardLayoutList
GetScrollRange
GetWindowPlacement
IMPQueryIMEA
RealChildWindowFromPoint
SetClassWord
SetCursorPos
SetDebugErrorLevel
SetMenuItemInfoW
SwapMouseButton
ToUnicode
ToUnicodeEx
UnhookWindowsHookEx
mouse_event

gdi32

BeginPath
ColorCorrectPalette
ColorMatchToTarget
CreateCompatibleDC
GdiComment
GdiPlayDCScript
GetBitmapDimensionEx
GetCharABCWidthsA
GetCharWidthFloatA
GetCharWidthW
GetColorAdjustment
GetLayout
GetMapMode
GetROP2
OffsetViewportOrgEx
PtInRegion
SaveDC
ScaleWindowExtEx
SetBoundsRect
SetICMProfileA
SetMetaRgn
SetMiterLimit
SetPixelV
SetWindowOrgEx
TextOutA
TextOutW
UnrealizeObject

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 552KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53989fa82ce42f632158d5d6b40c86ea

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 552KB - Virtual size: 568KB

.xdata Size: 512B - Virtual size: 20KB

.rsrc Size: 20KB - Virtual size: 308KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 552KB - Virtual size: 568KB

.xdata
Size: 512B - Virtual size: 20KB

.rsrc
Size: 20KB - Virtual size: 308KB