5b7c33d20d74e14edfe1bd11b1d984c5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b7c33d20d74e14edfe1bd11b1d984c5
Size

87KB
MD5

5b7c33d20d74e14edfe1bd11b1d984c5
SHA1

ee38f32780b5683ff73441ba93a9331fdd4276fe
SHA256

2a83e82c58e7a48f6462902984d01a0a296ef63bbe405b4b82cdadad7f3430d3
SHA512

a076f7bab2abf0fa5455a96da1a8b9898ee8b371498d67e38d7de6040c6cf3fe6a5fdcb1d6fef50d99798c5a4df2203c51df796197fe8d08653c899d7113242c
SSDEEP

1536:k1ChWvtVN/tHXcS4+6BZytVkger2AwVp8fqoHvx+kP1/9wQUgUd9OP8cC:V0vvNF3Lxa2Aqp8pBqnfOPI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b7c33d20d74e14edfe1bd11b1d984c5

Files

5b7c33d20d74e14edfe1bd11b1d984c5
.dll windows:4 windows x86 arch:x86

d6cd72884fd21b13d14f24bce7fe4499

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DialogBoxParamA
CreatePopupMenu
CreateMDIWindowA
CreateDialogParamA
CreateDesktopW
CloseWindow
CharUpperA
CharPrevA

kernel32

GetVersion
lstrlenA
lstrcpynA
lstrcmpA
WriteFile
VirtualAlloc
UnmapViewOfFile
TlsSetValue
TlsGetValue
CloseHandle
EnterCriticalSection
EnumResourceLanguagesA
EnumResourceTypesA
ExitThread
GetModuleHandleA
GetPrivateProfileStringA
GetSystemTime
GetVersionExA
LeaveCriticalSection
LoadResource
LocalAlloc
RaiseException
RtlUnwind
SetLastError
TlsAlloc

Sections

.text
Size: 15KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ