c5be323d05e81a9e1406f91e00519ec5

Sharing

Copy URL Twitter E-mail

General

Target

c5be323d05e81a9e1406f91e00519ec5
Size

388KB
MD5

c5be323d05e81a9e1406f91e00519ec5
SHA1

ed41f41dc9c44d541780c17b71fc3c7e9dc7d044
SHA256

a1e893f776bf8b031d4ddf1c1bd65f5b17dc6f7218de63c0fe86b5db9728aaca
SHA512

5e1c99361e62dbfcc5599dae3c2a7eba95397ff7768c74a07de48c8e2e6c193aa3b74fc7318a466d891c8c749eaa14ade4345b671212b1b4a94b9b5832da464f
SSDEEP

3072:fbBrXsEvAjH4SUAZtaCy1lXDrON+Y8glb+IjVf1tkZisPRiytuT4:dTsEvK26oCy1lzrGqgYo1t0iG4yM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c5be323d05e81a9e1406f91e00519ec5

Files

c5be323d05e81a9e1406f91e00519ec5
.exe windows:4 windows x86 arch:x86

23ab912a3e7d291a768393b563468b39

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LZOpenFileA
SetFilePointer
LocalFileTimeToFileTime
GetProcessShutdownParameters
GetTempPathA
_llseek
HeapReAlloc
GetTickCount
ReleaseMutex
GetDllDirectoryA
EnumResourceNamesA
GlobalUnWire
GetTickCount
RequestWakeupLatency
VirtualAlloc
GetConsoleTitleA
SetConsoleInputExeNameA
OpenProcess
GetBinaryType
AddAtomA
PurgeComm
ReadFile
PeekConsoleInputA
LocalHandle
MoveFileExA
GetDevicePowerState
GetVolumePathNameA
PeekConsoleInputA
GetPriorityClass
VerifyVersionInfoA
GetVDMCurrentDirectories
SetConsoleMode
GetDiskFreeSpaceExA
GetVersionExA
LocalCompact
OpenThread
GlobalMemoryStatusEx
SetMessageWaitingIndicator
GetSystemWindowsDirectoryA
WriteConsoleInputA
RemoveDirectoryA
GetThreadContext
UnlockFile
GetCommMask
GetVolumeNameForVolumeMountPointA
GetExitCodeThread
ResetEvent
WriteConsoleOutputA
WriteConsoleOutputCharacterW
EnumResourceNamesA
GetConsoleCursorInfo
WriteProfileSectionA
GetWindowsDirectoryA
lstrcmpA
EnumSystemLocalesA
Sleep
IsBadStringPtrA
GetConsoleHardwareState
GetCurrentProcess
GetLogicalDriveStringsA
LoadResource
GetProcessWorkingSetSize
LocalAlloc
SetSystemTime
DeleteTimerQueueTimer
VirtualLock
SetConsoleTitleA
LocalSize
GetLongPathNameA
VirtualFreeEx
IsDebuggerPresent
GetDriveTypeA
CreatePipe
SetPriorityClass
GetConsoleKeyboardLayoutNameA
WritePrivateProfileStructA
FreeEnvironmentStringsA
SetLastConsoleEventActive
ExpandEnvironmentStringsA
GetFileAttributesA
EndUpdateResourceA
SizeofResource
IsBadWritePtr
SetFileAttributesA
GetStdHandle
WaitNamedPipeA
CallNamedPipeA
FlushConsoleInputBuffer
GetFullPathNameA
SetDefaultCommConfigA
GetVersionExA
WaitForSingleObjectEx
GetTickCount
SearchPathA
VirtualFreeEx
EnumResourceNamesA
GetConsoleAliasExesA
UnregisterConsoleIME
IsBadReadPtr
IsBadCodePtr
GetDevicePowerState
GetConsoleInputExeNameA
WriteFileEx
ShowConsoleCursor
DuplicateHandle
OpenWaitableTimerA
GetStringTypeA
GetVersionExA
Process32First
GetConsoleCP
WaitForMultipleObjectsEx
ProcessIdToSessionId
OpenFileMappingA
GetCommandLineA
GetSystemTimes
GetConsoleAliasA
WriteConsoleOutputCharacterA
QueueUserAPC
HeapSize
FindResourceA
SetConsoleDisplayMode
GlobalHandle
MapViewOfFile
OpenSemaphoreA
SetEndOfFile
CloseHandle
WaitCommEvent
FindNextVolumeA
CloseHandle
IsValidCodePage
GetCPInfoExA
GetCurrentConsoleFont
IsBadWritePtr
HeapFree
GetUserDefaultLangID
RegisterWaitForInputIdle
TransmitCommChar
BeginUpdateResourceA
GetModuleFileNameA
GlobalAddAtomA
PrepareTape
WriteProcessMemory
BeginUpdateResourceA
GetProcessPriorityBoost
GetQueuedCompletionStatus
SetVolumeLabelA
SetProcessPriorityBoost
SetInformationJobObject
ReadConsoleOutputA
GetFullPathNameA
GetModuleFileNameA
SetHandleInformation
GetCurrentDirectoryA
QueryDosDeviceA
GetConsoleAliasExesLengthA
GetThreadPriority
CommConfigDialogA
PeekConsoleInputA
GetStartupInfoA
GetLogicalDrives
GetModuleFileNameA
ReadConsoleA
GlobalFindAtomA
GetFullPathNameA
PeekNamedPipe
OpenFileMappingA
GetCurrentDirectoryA
GetCurrentConsoleFont
GetCommProperties
IsBadWritePtr
UnlockFileEx

user32

DrawCaption
DefRawInputProc
GetWindowTextA
MessageBoxExA
OemToCharBuffW
DialogBoxIndirectParamAorW
EnumDesktopsA
RegisterSystemThread
BlockInput
RegisterWindowMessageA
GetPropA
DialogBoxParamA
GetAltTabInfo
CascadeWindows
DragObject
MapVirtualKeyExA
ToAscii
GetWindowModuleFileNameA
SetWindowPos
IsDialogMessageA
GetListBoxInfo
AdjustWindowRect
SetDebugErrorLevel
GetMessageA
UnlockWindowStation
CopyIcon
ReasonCodeNeedsComment
LoadCursorA
SetMessageExtraInfo
GetKeyState
SendIMEMessageExA
SendMessageCallbackA
GetClassLongA
GetDlgItemInt
EnumDesktopsA
RegisterShellHookWindow
EnumDisplaySettingsA
FindWindowExA
MenuItemFromPoint
InvalidateRect
ClientToScreen
CreateDialogIndirectParamA
RegisterUserApiHook
TileChildWindows
SetWindowLongA
CallNextHookEx
DlgDirSelectComboBoxExA
AdjustWindowRect
GetMenuItemRect
IsZoomed
MonitorFromWindow
SetWindowsHookExA
GetWindowTextLengthA
GetMenuItemRect
ReasonCodeNeedsComment
EndDialog
RealChildWindowFromPoint
PostQuitMessage
SetMenuDefaultItem
ReasonCodeNeedsComment
EnumWindowStationsA
GetDlgItemTextA
LoadCursorFromFileA
GetDlgItemTextA
ShowCursor
UpdatePerUserSystemParameters
GetSystemMetrics
EmptyClipboard
MapVirtualKeyExA
MonitorFromRect
GetDlgItemTextA
CascadeChildWindows
EnumDisplayDevicesA
ChildWindowFromPointEx
CreateWindowStationA
CopyAcceleratorTableA
EnumClipboardFormats
ScrollWindow
CreateIconFromResourceEx
GetMessageExtraInfo
DeleteMenu
DestroyIcon

ws2_32

closesocket

Exports

Exports

Lmgadkun
Wdrerjqcn
CreateRjtpemki
BeginLtckovdnyxk
Drpichtrm
WriteIeckcrjeb

Sections

.itext
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 56KB - Virtual size: 676KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 256KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23ab912a3e7d291a768393b563468b39

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 1KB

.text Size: 56KB - Virtual size: 676KB

.idata Size: 256KB - Virtual size: 254KB

.rsrc Size: 72KB - Virtual size: 70KB

.itext
Size: - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 676KB

.idata
Size: 256KB - Virtual size: 254KB

.rsrc
Size: 72KB - Virtual size: 70KB