5bc75a2dc7b28ba4fcbd76eee9d982ee

Sharing

Copy URL Twitter E-mail

General

Target

5bc75a2dc7b28ba4fcbd76eee9d982ee
Size

3.5MB
MD5

5bc75a2dc7b28ba4fcbd76eee9d982ee
SHA1

c0268c21f63aa263ec5c84b41860104594388252
SHA256

e01165d3e2a97918a813ad7c2526cb6be63743dc816a1476378cbfcf0acd9490
SHA512

ec2963cf8f52b8c0d444cea69ccfe98352f4a640b7fe005122ffbc3dc9a7259053a240a2d085fb1afce585e80b15a692d11a402b571c305dd4c3173da135f02e
SSDEEP

49152:f5o7hRp+re752BliTR1eNnKhEM9pR+NMF0GzlX+GEzMcRc/s+kobXnz/q/xnd/cR:hoXpOekGUKh1+NRGzlXe3PC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5bc75a2dc7b28ba4fcbd76eee9d982ee

Files

5bc75a2dc7b28ba4fcbd76eee9d982ee
.exe windows:6 windows x86 arch:x86

e9f12d484ade2afc7eaf43547a2fe750

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
QueryPerformanceCounter
QueryPerformanceFrequency
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseSemaphore
FreeLibrary
InitializeCriticalSectionAndSpinCount
TryEnterCriticalSection
GetSystemTimeAsFileTime
GetTimeZoneInformation
SetEvent
ResetEvent
CreateMutexW
CreateEventW
OutputDebugStringW
CreateFileW
GetFileSizeEx
ReadFile
SetFilePointer
SetFilePointerEx
WriteFile
SetErrorMode
GetTickCount
GetModuleFileNameW
GetModuleHandleW
SetThreadExecutionState
GetCurrentProcess
TerminateProcess
GlobalMemoryStatusEx
GetSystemInfo
CreateDirectoryW
GetLastError
LoadLibraryW
lstrcatW
lstrlenW
CreateToolhelp32Snapshot
Process32First
Process32Next
WaitForSingleObjectEx
CreateSemaphoreW
GetEnvironmentVariableA
SetEnvironmentVariableA
IsDebuggerPresent
RaiseException
CreateThread
GetCurrentThread
GetCurrentThreadId
SetThreadPriority
TlsAlloc
TlsGetValue
TlsSetValue
VerSetConditionMask
FormatMessageW
VerifyVersionInfoW
GlobalAlloc
GlobalUnlock
GlobalLock
CompareStringA
MulDiv
WideCharToMultiByte
GetSystemPowerStatus
CreateFileA
DeviceIoControl
GetOverlappedResult
CancelIo
CreateEventA
LocalFree
FlushFileBuffers
MapViewOfFile
FormatMessageA
GetSystemTime
SystemTimeToFileTime
GetProcessHeap
GetFileSize
LockFileEx
UnlockFile
HeapDestroy
HeapCompact
HeapReAlloc
DeleteFileW
DeleteFileA
FlushViewOfFile
GetFileAttributesExW
GetFileAttributesA
GetDiskFreeSpaceA
GetTempPathA
MultiByteToWideChar
HeapSize
HeapValidate
UnmapViewOfFile
GetFileAttributesW
GetTempPathW
UnlockFileEx
SetEndOfFile
GetFullPathNameA
LockFile
OutputDebugStringA
GetDiskFreeSpaceW
GetFullPathNameW
HeapFree
HeapCreate
AreFileApisANSI
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
InitializeSListHead
GetStartupInfoW
InitializeCriticalSectionEx
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
GetCPInfo
RtlUnwind
InterlockedPushEntrySList
SetLastError
TlsFree
LoadLibraryExW
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetConsoleOutputCP
GetConsoleMode
SetConsoleCtrlHandler
GetStdHandle
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
ReadConsoleW
GetFileType
SetStdHandle
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
WriteConsoleW
GetNativeSystemInfo
GetCurrentProcessId
HeapAlloc
ExitProcess
GetProcAddress
GetWindowsDirectoryW
LoadLibraryA
GetModuleFileNameA
CreateFileMappingW
WaitForSingleObject

user32

CreateIconFromResource
SetWindowRgn
SetCursorPos
LoadCursorW
CreateIconIndirect
RegisterRawInputDevices
ChangeDisplaySettingsExW
EnumDisplaySettingsW
EnumDisplayDevicesW
GetMonitorInfoW
EnumDisplayMonitors
GetDesktopWindow
RegisterDeviceNotificationW
UnregisterDeviceNotification
UnregisterClassA
RegisterClassExA
CreateWindowExA
GetMessageW
PostThreadMessageW
SetTimer
KillTimer
PostMessageW
DialogBoxIndirectParamW
EndDialog
GetDlgItem
SetFocus
DrawTextW
SystemParametersInfoA
SystemParametersInfoW
GetRawInputDeviceInfoA
GetRawInputDeviceList
SendMessageW
TrackMouseEvent
GetParent
ToUnicode
GetKeyboardState
GetKeyboardLayout
IsClipboardFormatAvailable
EmptyClipboard
GetClipboardData
SetPropW
GetClipboardSequenceNumber
CloseClipboard
OpenClipboard
GetDoubleClickTime
GetRawInputData
DestroyIcon
LoadIconW
GetWindowLongW
IsRectEmpty
ClipCursor
WindowFromPoint
ScreenToClient
ClientToScreen
GetClipCursor
GetCursorPos
SetCursor
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetPropW
ValidateRect
InvalidateRect
GetUpdateRect
GetMenu
GetSystemMetrics
GetAsyncKeyState
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
MapVirtualKeyW
RemovePropW
ReleaseDC
MessageBoxA
GetActiveWindow
GetDC
SetForegroundWindow
GetFocus
SetWindowPos
SetLayeredWindowAttributes
GetKeyState
IsIconic
IsWindowVisible
GetClassInfoExW
RegisterClassExW
UnregisterClassW
CallWindowProcW
DefWindowProcW
GetMessageExtraInfo
PeekMessageW
DispatchMessageW
TranslateMessage
ShowWindow
DestroyWindow
CreateWindowExW
SetClipboardData
RegisterClassW

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

imm32

ImmReleaseContext
ImmAssociateContext
ImmGetCompositionStringW
ImmSetCompositionStringW
ImmGetCandidateListW
ImmNotifyIME
ImmSetCompositionWindow
ImmGetIMEFileNameA
ImmGetContext

winmm

timeGetTime
timeBeginPeriod
waveInReset
waveInStart
waveInAddBuffer
waveInUnprepareHeader
waveInPrepareHeader
waveInClose
waveInOpen
waveInGetDevCapsW
waveInGetNumDevs
waveOutReset
waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveOutGetErrorTextW
waveOutGetDevCapsW
waveOutGetNumDevs
timeEndPeriod

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA

bcrypt

BCryptCloseAlgorithmProvider
BCryptGenRandom
BCryptOpenAlgorithmProvider

gdi32

DeleteObject
SelectObject
CreateDIBSection
CreateDCW
GetDeviceGammaRamp
SetDeviceGammaRamp
CombineRgn
DeleteDC
CreateBitmap
CreateCompatibleBitmap
GetDeviceCaps
GetDIBits
ChoosePixelFormat
DescribePixelFormat
GetPixelFormat
SetPixelFormat
SwapBuffers
BitBlt
CreateFontIndirectW
GetTextExtentPoint32A
GetTextMetricsW
CreateRectRgn
CreateCompatibleDC

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

SHGetFolderPathW
ExtractIconExW
DragFinish
DragQueryFileW
DragAcceptFiles

ole32

CoTaskMemFree
CoCreateInstance
CoInitializeEx
CoUninitialize
PropVariantClear

oleaut32

SysFreeString

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 731KB - Virtual size: 730KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 375KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9f12d484ade2afc7eaf43547a2fe750

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

version

imm32

winmm

setupapi

bcrypt

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 2.6MB - Virtual size: 2.6MB

.rdata Size: 731KB - Virtual size: 730KB

.data Size: 62KB - Virtual size: 375KB

.rsrc Size: 166KB - Virtual size: 165KB

.text
Size: 2.6MB - Virtual size: 2.6MB

.rdata
Size: 731KB - Virtual size: 730KB

.data
Size: 62KB - Virtual size: 375KB

.rsrc
Size: 166KB - Virtual size: 165KB