b5d4c02f1a4e449b45a5ad1b4b1830c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b5d4c02f1a4e449b45a5ad1b4b1830c1
Size

176KB
MD5

b5d4c02f1a4e449b45a5ad1b4b1830c1
SHA1

55f334479d0b4b09d80a570901c4109d5804f2bf
SHA256

cf2e09438890d874a7dce878286ed9cc3dacb67f7a5aaeeff781ca9f627f0f69
SHA512

f7984c60b8b2db324e4b331ed495f54e402b257f832e81d0f781c8b3a11d1a8d8e25acf92f5e84c65aad3eaad35159408c04301093b3cc849f646060ebe10e73
SSDEEP

3072:JTcUJujwdbtZw5SgHp7CCjBwRiKAlUz5xWuVpZ1wR1BuMs/6yhv:x/SAzw5pHgNiK3SeeRMp9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b5d4c02f1a4e449b45a5ad1b4b1830c1

Files

b5d4c02f1a4e449b45a5ad1b4b1830c1
.exe windows:4 windows x86 arch:x86

22b7b782187cab752d493a6da3dd48d7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
LoadLibraryA

Sections

.text
Size: 22KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE