e0e5ffa2ce995f0277ee33bfeaee2ee4

General

Target

e0e5ffa2ce995f0277ee33bfeaee2ee4
Size

1.4MB
MD5

e0e5ffa2ce995f0277ee33bfeaee2ee4
SHA1

f5e998ee17ae78ae0ecc0f70de316226e65cfbb1
SHA256

01d456b565623ed21bf5fbb6c4d6421820853d4ee23a53524467f55f5d5d8676
SHA512

71f2539e8ade9a9e48da1ae4dcd452b62735adead9ca2eab903d02fb85343891f21081552307bb65f3124e53c40dda35e66f55631d0b814c57ae1ad77182ca5c
SSDEEP

3072:I/eUm4BYloZ3G9Jh2LbHOkSWD5xxEGn8BI9XD6O8V03CGbfzqfmfOxc/ujcC0ZL:ImYgyMWJEGDX+PG35bfzqfmfhOcC05

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0e5ffa2ce995f0277ee33bfeaee2ee4

Files

e0e5ffa2ce995f0277ee33bfeaee2ee4
.exe windows:4 windows x86 arch:x86

52020349e2dc106307ff70514b5481ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

setsockopt

user32

IsWindowVisible
FindWindowA
CreateWindowExW
IsChild
DestroyWindow
LoadIconA
ReleaseDC
GetDesktopWindow

gdi32

FloodFill
SelectObject

winscard

SCardForgetReaderA

kernel32

GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LCMapStringA
LoadLibraryA
HeapReAlloc
HeapAlloc
LCMapStringW
RaiseException
GetCommandLineA
GetOEMCP
GetACP
CreateEventA
InterlockedExchange
LocalUnlock
GetWindowsDirectoryW
GetCurrentThreadId
OpenEventA
CloseHandle
VirtualFree
LockResource
Sleep
WaitForSingleObject
VirtualAlloc
GetLastError
GlobalUnlock
GetModuleHandleA
GetCurrentProcessId
GetTickCount
GetThreadPriority
GetStartupInfoA
GetVersion
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
HeapFree
RtlUnwind
WriteFile
GetCPInfo

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52020349e2dc106307ff70514b5481ee

Headers

File Characteristics

Imports

ws2_32

user32

gdi32

winscard

kernel32

Sections

.text Size: 84KB - Virtual size: 83KB

.data Size: 1.3MB - Virtual size: 1.3MB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 84KB - Virtual size: 83KB

.data
Size: 1.3MB - Virtual size: 1.3MB

.rsrc
Size: 48KB - Virtual size: 47KB