5bddbb5867942a6259fe5a1317ac5422

Sharing

Copy URL Twitter E-mail

General

Target

5bddbb5867942a6259fe5a1317ac5422
Size

37KB
MD5

5bddbb5867942a6259fe5a1317ac5422
SHA1

337599a4df693b52621963dfcaad964958d1ca4a
SHA256

3e733f388b6d087a048fd73563c2f3298ab7052169f4228c9c65be2e457e8ea4
SHA512

094f075264f74cc1b324934c247c739b04fb24b3ccbd9483b11d9fb246a53b757938269f9f82d08997a5a336876413e0cac6aa51b584d499c5cefdf4e57e41a5
SSDEEP

384:AeMz6oxxnxh0+XIT1ifGbBCRjLbZVRQnMNzKrQA+Uuq+sbmK9:9MBxCcCbBCRj/fR3zKEA+LsbmK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5bddbb5867942a6259fe5a1317ac5422

Files

5bddbb5867942a6259fe5a1317ac5422
.exe windows:4 windows x86 arch:x86

7a259fd7494a418c693d475969dbb3e7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CancelDC
ExcludeClipRect
BeginPath
GetBrushOrgEx
CreateSolidBrush
GetBitmapBits
AddFontResourceA
CopyMetaFileA
AddFontResourceW
RestoreDC
AddFontResourceExA
ClearBitmapAttributes
AddFontMemResourceEx
AddFontResourceExW
GetCurrentPositionEx
ClearBrushAttributes
DeleteObject

kernel32

Sleep
CopyFileW
FindFirstFileA
GlobalFree
CopyFileA
DeleteFileA
ExitThread
OpenFile
FindAtomA
CopyFileExA
OpenFileMappingA
CreateThread
GetCommandLineA
GetFileSize
GetFileTime
GetCPInfo
DeleteFileW
CreateDirectoryA

advapi32

RegDeleteKeyW
RegCreateKeyExW
RegQueryValueW
RegDeleteKeyA
RegEnumKeyExW
RegReplaceKeyA
RegOpenKeyExA
RegEnumKeyW
RegOpenKeyW
RegLoadKeyA
RegCreateKeyExA
RegEnumKeyExA
RegQueryInfoKeyW
RegLoadKeyW
RegEnumKeyA
RegOpenKeyExW
RegDeleteValueA
RegGetKeySecurity
RegQueryValueA

user32

CopyIcon
AppendMenuA
GetWindowTextA
LoadCursorA
LoadMenuA
BlockInput
GetDlgItem
EndDialog
InsertMenuA
CalcMenuBar
DrawIconEx
CloseWindow
IsWindow
GetCursor
AlignRects
IsMenu
DialogBoxParamW

comctl32

ImageList_ReplaceIcon
ImageList_BeginDrag
ImageList_Draw
ImageList_GetIconSize
ImageList_AddIcon
InitCommonControls
ImageList_Read
ImageList_DrawIndirect
ImageList_Copy
ImageList_Merge
ImageList_GetIcon
ImageList_GetImageCount
ImageList_DrawEx
ImageList_GetImageRect
ImageList_GetImageInfo
ImageList_DragEnter
ImageList_DragLeave
ImageList_LoadImageA
ImageList_Replace

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a259fd7494a418c693d475969dbb3e7

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

user32

comctl32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 26KB - Virtual size: 69KB

.reloc Size: - Virtual size: 2KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 26KB - Virtual size: 69KB

.reloc
Size: - Virtual size: 2KB

.rsrc
Size: 2KB - Virtual size: 2KB