5b2b23225e0e051d454fe54b2d233311

General

Target

5b2b23225e0e051d454fe54b2d233311
Size

42KB
MD5

5b2b23225e0e051d454fe54b2d233311
SHA1

bdc7e961fee5b287e1f7f1c7d57ba4aac72ecfa0
SHA256

9892604228d54979ad1eda9142c51cf8a2e0567cbcdebf56ab3e332de7b9e3dd
SHA512

941a085e7e0f4183b09d21217eb82d3da9b9c0c75629bd1ca67485a2bc0b03af50260e08940d3166de3060ba4bd315c936fc85be64f7fedce3a1b178f33a030a
SSDEEP

768:u7BiRb5JrGBoMp5sAvShy5AXVc1WOdqUIo/MAX+LD+AlA:GiFq5pC2ShRVc1MLo/MlSA6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b2b23225e0e051d454fe54b2d233311

Files

5b2b23225e0e051d454fe54b2d233311
.exe windows:4 windows x86 arch:x86

e0cff22078ec676374a8a02780916cd7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

BeginUpdateResourceA
BuildCommDCBAndTimeoutsW
CreateEventW
CreateSemaphoreA
DeleteCriticalSection
DeleteFileA
ExitProcess
GetCurrentProcess
GetCurrentThreadId
GetEnvironmentStringsA
GetExitCodeThread
GetFileAttributesExW
GetNamedPipeHandleStateA
GetNumberOfConsoleMouseButtons
GetProcessHeaps
Heap32First
HeapDestroy
QueryPerformanceFrequency
SetThreadContext
SystemTimeToTzSpecificLocalTime
WaitForSingleObjectEx
_lclose
lstrcmpiA

user32

ChangeMenuA
CharLowerW
DdeNameService
DdeQueryConvInfo
DefDlgProcW
DragObject
DrawCaption
DrawMenuBarTemp
EnumWindowStationsW
FindWindowExW
GetActiveWindow
GetDC
GetKeyboardState
GetWindowModuleFileNameW
GrayStringA
IntersectRect
IsMenu
LoadImageA
LoadMenuIndirectW
LoadMenuW
MessageBoxW
MsgWaitForMultipleObjectsEx
OpenClipboard
PostMessageW
RegisterDeviceNotificationW
SetMenuItemBitmaps
TrackMouseEvent
WindowFromPoint

gdi32

ChoosePixelFormat
CloseEnhMetaFile
CombineTransform
CopyMetaFileW
CreateDIBSection
CreateEnhMetaFileW
EnumEnhMetaFile
GdiGetBatchLimit
GetColorSpace
GetEnhMetaFileA
GetLayout
GetLogColorSpaceA
GetMetaFileA
GetRegionData
MoveToEx
OffsetRgn
PlgBlt
PolyDraw
PolyTextOutA
RectInRegion
RemoveFontResourceA
SelectClipPath
SetBoundsRect
SetGraphicsMode
SetICMMode
SetRectRgn

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e0cff22078ec676374a8a02780916cd7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 32KB - Virtual size: 36KB

.xdata Size: 4KB - Virtual size: 16KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 32KB - Virtual size: 36KB

.xdata
Size: 4KB - Virtual size: 16KB