5bde93a5b5aae830c679e27355b96f03

Sharing

Copy URL

Twitter E-mail

General

Target

5bde93a5b5aae830c679e27355b96f03
Size

205KB
MD5

5bde93a5b5aae830c679e27355b96f03
SHA1

706c838773c4d3e180500d69b014293c20b791cb
SHA256

60e6ca57ad170ebb3663a4b0268ac5b8b562a528f6098c53c32bd35575a6b115
SHA512

4fefa406783cf8ff6f7fddd3faf06c32859ed10435c0923bcd9ae8ea9f38dde7cbcfa18a9790c196dd7493db7adba2044d5f6cf6c3d0f6e44f6184b6bb4d145f
SSDEEP

3072:qkag6TZtczX1j0/kyZDYcSzy4jS192k4DRl+EoRdZWPQP32wysbCrR6ZogW:qkag6Tczlj0J0x5Sr2tMSOmlsWISB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5bde93a5b5aae830c679e27355b96f03

Files

5bde93a5b5aae830c679e27355b96f03
.exe windows:5 windows x86 arch:x86

ace52d8d4450702239e799a8f19dc2b1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

isdigit
wcscmp
_controlfp
getenv
wcsrchr
strncpy
strcpy
__set_app_type
printf
qsort
floor
isxdigit
__p__fmode
wcstol
towupper
strncmp
__p__commode
time
getc
wcstok
iswspace
iswxdigit
_amsg_exit
wcscpy
_initterm
isalnum
strpbrk
_ismbblead
vswprintf
fgetc
_XcptFilter
wcsncpy
_exit
fclose
_cexit
putc
setlocale
__setusermatherr
fwrite
perror
atol
__getmainargs
wcsncmp
remove

user32

LockWindowUpdate
TrackPopupMenu
SetCursor
IsWindowEnabled
InSendMessageEx
DestroyAcceleratorTable
GetDoubleClickTime
IsWindowVisible
LoadIconW
keybd_event
LoadBitmapA
SetRect
FindWindowExA
GetClassLongW
SendInput
DialogBoxIndirectParamA
wsprintfA
IsChild
GetClassLongA
IsIconic
GetNextDlgGroupItem
DrawIcon
OpenInputDesktop
GetClipCursor
IsZoomed
EnableWindow
CharLowerBuffW
ClientToScreen
AdjustWindowRectEx
PostMessageA
PeekMessageA
GetPropW
CloseDesktop
MapWindowPoints
RegisterClassA
IsCharAlphaNumericW
LoadImageA
IsRectEmpty
ToUnicodeEx
GetMessageExtraInfo
GetParent
CreateWindowExA
InvalidateRect
SetWindowLongA
ReleaseDC
ChangeMenuW
CheckMenuItem
OpenIcon
IsWindowUnicode
MessageBoxA
DrawMenuBar
SetForegroundWindow
wvsprintfW
IsWindow
GetScrollPos
GetAsyncKeyState
GetDialogBaseUnits
UpdateWindow
GetDCEx
LoadCursorA
SetScrollRange
CharUpperW
UnloadKeyboardLayout
GetScrollRange
GetWindowLongW
InflateRect
RemoveMenu
DrawAnimatedRects
SetActiveWindow
DialogBoxParamA
FrameRect
IsDialogMessageW
CharPrevW
GetForegroundWindow
WaitForInputIdle
SetPropW
SetMenu
LoadCursorW
SetSysColors
TranslateAcceleratorW
DefWindowProcW
CreatePopupMenu
SetParent
DialogBoxParamW
TileWindows
CharLowerW
PeekMessageW
GetWindowTextA
GetMessageW
CharNextW
LoadStringW
ShowWindowAsync
CharUpperA
PtInRect
CallWindowProcW
DispatchMessageA
TabbedTextOutW
SendMessageW
GetUpdateRgn
DrawStateW
GetMenuCheckMarkDimensions
LoadStringA
SetRectEmpty
CreateDialogIndirectParamW
CharUpperBuffW
GetWindowTextLengthW
CharToOemW
SetMenuDefaultItem

comctl32

ImageList_SetIconSize
ImageList_Write
ImageList_ReplaceIcon
ImageList_Draw
CreatePropertySheetPageW
PropertySheetW

gdi32

CreateCompatibleBitmap
CreatePalette
IntersectClipRect
SelectObject
GetSystemPaletteUse
CreateBrushIndirect
SetMapMode
GetLayout
SetPixel
SaveDC
GetMapMode
CreateICW
CreateEllipticRgnIndirect
CreateFontA
TranslateCharsetInfo
SetPaletteEntries
SetBitmapDimensionEx
StretchBlt
CreateDiscardableBitmap
GetDIBColorTable
LineTo
SetTextAlign
PatBlt
BeginPath
CreatePenIndirect
GetTextExtentPoint32A
SetBkColor
SetROP2
CreatePolygonRgn
GetTextExtentPointW
SetWindowOrgEx
CreatePen
GetViewportOrgEx
Escape
Polygon
CreateRectRgn
GetTextExtentPoint32W
AddFontResourceW
GetDeviceCaps
GetPixel
ExtTextOutW
CreatePatternBrush
ExcludeClipRect
EnumFontFamiliesW

kernel32

GetComputerNameA
SetHandleCount
OpenFile
CreateWaitableTimerA
MapViewOfFile
SetThreadPriority
GlobalGetAtomNameW
IsBadReadPtr
DeviceIoControl
FindClose
GetModuleHandleA
FindNextChangeNotification
SetThreadAffinityMask
GetPriorityClass
GetLastError
LockFile
GetCurrentDirectoryW
AreFileApisANSI
SetMailslotInfo
CreateEventA
FindResourceExW
ReadFile
GetTempPathA
GlobalAlloc
WinExec
GetTempPathW
CreateFileA
GetThreadLocale
EnumResourceNamesA
GetFullPathNameW
FileTimeToSystemTime
CreateRemoteThread
GetVersion
DeleteCriticalSection
GetModuleFileNameW
SuspendThread
lstrcpynW
GetHandleInformation
LocalAlloc
GetThreadContext
RtlUnwind
GetAtomNameW
GetFileAttributesExA
GetShortPathNameA
SearchPathA
SetTimerQueueTimer
RemoveDirectoryW
lstrcmpW
FileTimeToLocalFileTime
CancelWaitableTimer

shlwapi

PathFindExtensionA
PathFindExtensionW

Exports

Exports

?GenerateTextW@@YGPAJ_N<V

Sections

.text
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ace52d8d4450702239e799a8f19dc2b1

Headers

File Characteristics

Imports

msvcrt

user32

comctl32

gdi32

kernel32

shlwapi

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 66KB

.data Size: 135KB - Virtual size: 200KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 67KB - Virtual size: 66KB

.data
Size: 135KB - Virtual size: 200KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB