5b377cddc6d5c1e534b7a846df258827

General

Target

5b377cddc6d5c1e534b7a846df258827
Size

64KB
MD5

5b377cddc6d5c1e534b7a846df258827
SHA1

06f3a22a9e491397999089c562cfa3ee678f8208
SHA256

e5c3910e0e8dd7c30660fa04adbb88e9679673694b5365cb85b766dbb5723e69
SHA512

7b482056fd2c420bd2028db7fb1e85674254d332d4f503b827890bf0e4962cf2da05fbd5e01ff7c8ae18c84cfb547838e387593a5aff4eaa4f4dba58217efc49
SSDEEP

768:20Sc9Oh2gXD72sMK3jtvlD0PgzOAgS8r9KNUTma1sMixZEyD6UaMxuVEvh8nPJ:1bEXD7jL5NHXgSOQNU6pEyW1E58

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b377cddc6d5c1e534b7a846df258827

Files

5b377cddc6d5c1e534b7a846df258827
.exe windows:4 windows x86 arch:x86

bac6cd3874bbcbcb385f8755bf42c10e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetCurrentProcess
LoadLibraryA
GetCurrentThread
GetFileAttributesExW
VirtualFree
GetDriveTypeW
CreateFileW
DeleteFileW
GetTickCount
DuplicateHandle
GetProcAddress
GetLogicalDrives
WideCharToMultiByte
SetEvent
GlobalUnlock
WriteFile
FindResourceExW
CloseHandle
SizeofResource
WaitForMultipleObjects
GetModuleHandleW
FindNextChangeNotification
GetPrivateProfileStringW
SetFilePointer
SetThreadPriority
FreeLibrary

user32

SendMessageW
DialogBoxParamW
GetKeyState
GetWindowDC
SetCursor
DestroyIcon
SystemParametersInfoW
OffsetRect
SetLayeredWindowAttributes
UpdateWindow
TrackPopupMenu
GetClassNameW
PostThreadMessageW
RegisterClassExW
DispatchMessageW
GetDlgItem
DefWindowProcW
SetCapture
ReleaseCapture
RegisterHotKey
LoadCursorW
PostQuitMessage
SetWindowPos
LoadIconW
LoadImageW

gdi32

DeleteDC
CreateFontIndirectW
GetMapMode
Rectangle
SelectObject
StretchBlt
CreateCompatibleDC
GetDeviceCaps
CreateSolidBrush

advapi32

RegCloseKey

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bac6cd3874bbcbcb385f8755bf42c10e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1012B

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1012B