5bbb5b66c5e65d7325af5deb7e0dbe65 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5bbb5b66c5e65d7325af5deb7e0dbe65
Size

84KB
MD5

5bbb5b66c5e65d7325af5deb7e0dbe65
SHA1

b6573782421c3b0ff1c87afc5ef79481081b726e
SHA256

21935e88441aaa1610410ff041b3f687953d678071553b16ba9f1f9d25e28c5e
SHA512

4c08c42b2a44151c2c457d46f6932526814d693aa24dd63d92269285c2df3219aaece7660a46d8b71279da97de5d0185d0dacc3c904eface3540cbcd07b7c049
SSDEEP

1536:0u5NiT4zzuoQbi1nB6jKAzyqvuwZ5ssOmC7c1CXmJocE4FkDGm3vSuqp2j:tNsezvB69vuwQybeOuDb3vSuY2j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5bbb5b66c5e65d7325af5deb7e0dbe65

Files

5bbb5b66c5e65d7325af5deb7e0dbe65
.dll windows:4 windows x86 arch:x86

05a5bfa7c11807ca40aa375d496f7883

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

SetFocus
OemToCharW
MessageBoxA
MessageBeep
LoadCursorA
EnableWindow
EnableScrollBar
EnableMenuItem
DrawStateA
DialogBoxParamA
DestroyIcon
DestroyCaret
CreateMenu
CreateDesktopW
CreateAcceleratorTableA
CharLowerA
ActivateKeyboardLayout

kernel32

GetPrivateProfileStringA
SetLastError
OpenFileMappingA
LoadResource
GetSystemTimeAsFileTime
GetStartupInfoA
GetModuleHandleA
FreeResource
FindResourceA
ExitProcess
EnumResourceTypesA
lstrcpynA
lstrcpyA
lstrcmpA
WriteFile
UnmapViewOfFile
TlsSetValue
EnumResourceNamesA
TlsAlloc

oleaut32

OleLoadPicture
OleLoadPicturePath
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCreate
SysFreeString
SysReAllocString
SysStringLen
VarBstrCat
ClearCustData

Sections

.text
Size: 16KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 63KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ