b53e0181ac19a58a7fde35003bae2f7b

Sharing

Copy URL Twitter E-mail

General

Target

b53e0181ac19a58a7fde35003bae2f7b
Size

655KB
MD5

b53e0181ac19a58a7fde35003bae2f7b
SHA1

868f836dfdb1cf49cb3bda0241dbdef19d2d0a34
SHA256

7390f679387b09fdf3b563a956f783c5dd34aac5930dc7f1de8a6268c1ec29e8
SHA512

9ddd72c9ac2791999d13e3a3a94a1aa2b378135b852ae1edb0d792f843f7517d11c766d8197cb01c139ec44bf32f641f0493e4c7a3e91e02366222180c1a5d04
SSDEEP

12288:ZLl6NvnsYUIyA3dDzB2k8E14oD9oB+SBDcWZPbfvX:Zx6xnrUnAtDzhq+K/Zzff

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b53e0181ac19a58a7fde35003bae2f7b

Files

b53e0181ac19a58a7fde35003bae2f7b
.exe windows:4 windows x86 arch:x86

a78c7862f4e4d14ef8a932f5437f8321

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

comdlg32

FindTextA
LoadAlterBitmap

gdi32

GetWindowExtEx
AbortDoc
AnimatePalette
SetAbortProc
CreateDiscardableBitmap
MaskBlt
TextOutA
Polyline
ExtTextOutA
PolyDraw
CreateRoundRectRgn
CreatePenIndirect
CreateMetaFileW
StartDocA
GetTextColor
SetPolyFillMode
GetEnhMetaFileW
DeleteEnhMetaFile
GetMetaFileBitsEx
GetSystemPaletteEntries
SetWorldTransform
GetCharWidthFloatW
CreateBrushIndirect

shell32

SHGetPathFromIDList

user32

OpenDesktopA
SetWindowWord
MapVirtualKeyA
CreateCaret
PostThreadMessageA
ShowCaret
GetDesktopWindow
DestroyCaret
RegisterClassA
TranslateAccelerator
GetKeyboardType
SetLastErrorEx
SetWindowContextHelpId
RegisterClassExA
PtInRect
GetWindow
DlgDirSelectComboBoxExW
GetCursorInfo
IsCharUpperW

kernel32

IsDebuggerPresent
GetACP
CreateMutexA
LCMapStringW
GetCurrentThread
LeaveCriticalSection
IsValidLocale
GetCPInfo
InterlockedDecrement
GetCurrentProcessId
TlsAlloc
GetConsoleOutputCP
CompareStringW
FreeEnvironmentStringsA
GetModuleFileNameA
Sleep
GetCommandLineA
CloseHandle
TerminateProcess
GetTimeFormatA
ReadFile
CreateFileA
WriteConsoleW
SetFilePointer
GetStdHandle
LCMapStringA
GetProcAddress
GetModuleHandleA
HeapDestroy
VirtualFree
GetProcessHeap
InterlockedIncrement
CompareStringA
GetDateFormatA
GetStartupInfoA
HeapFree
TlsFree
GetCurrentThreadId
GetEnvironmentStrings
GetUserDefaultLCID
SetStdHandle
EnterCriticalSection
VirtualAlloc
VirtualQuery
HeapSize
EnumSystemLocalesA
FlushFileBuffers
GetLocaleInfoW
IsValidCodePage
SetUnhandledExceptionFilter
GetStringTypeA
SetLastError
GetSystemTimeAsFileTime
GetConsoleMode
GetEnvironmentStringsW
InitializeCriticalSection
GetCurrentProcess
WideCharToMultiByte
GlobalAddAtomW
MultiByteToWideChar
SetHandleCount
FreeEnvironmentStringsW
DeleteCriticalSection
SetConsoleCtrlHandler
QueryPerformanceCounter
GetTimeZoneInformation
GetFileType
UnhandledExceptionFilter
RtlUnwind
WriteConsoleA
EnumTimeFormatsW
TlsGetValue
SetEnvironmentVariableA
HeapAlloc
GetTickCount
GetOEMCP
GetStringTypeW
GetLocaleInfoA
FreeLibrary
InterlockedExchange
TlsSetValue
GetVersionExA
GetLastError
WriteProfileStringA
WriteFile
LoadLibraryA
ExitProcess
HeapCreate
GetConsoleCP
OpenMutexA
HeapReAlloc

Sections

.text
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 319KB - Virtual size: 319KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a78c7862f4e4d14ef8a932f5437f8321

Headers

File Characteristics

Imports

comctl32

comdlg32

gdi32

shell32

user32

kernel32

Sections

.text Size: 314KB - Virtual size: 314KB

.rdata Size: 10KB - Virtual size: 34KB

.data Size: 319KB - Virtual size: 319KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 314KB - Virtual size: 314KB

.rdata
Size: 10KB - Virtual size: 34KB

.data
Size: 319KB - Virtual size: 319KB

.rsrc
Size: 10KB - Virtual size: 9KB