5bfb18eab45b8441a43fae93cf0eeef940b67747633586b9378fb4a244c376ab

Sharing

Copy URL Twitter E-mail

General

Target

5bfb18eab45b8441a43fae93cf0eeef940b67747633586b9378fb4a244c376ab
Size

3.2MB
MD5

faf70a490f08acb65d00d3bedd08e7d8
SHA1

aca67b5e8342c75e86d8196217874ab65f1d660e
SHA256

5bfb18eab45b8441a43fae93cf0eeef940b67747633586b9378fb4a244c376ab
SHA512

22e9f2de0971059e125c500d415fe5c902c2e9d00b6b64c68799f0c594c8c2985666d1263dd8c14daef75dbc2ec9e208f8e4deb98ee1c3e7e20f96ed338e1d9e
SSDEEP

49152:SIo72WMLZpeSFtSpDMuvQ/0UVPSse9dl+p+Yl8SuomuLOthDxRozBT5snY23FmK0:S2WMLERr6gd0p+YlZuoXOtfRgBts3mK0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5bfb18eab45b8441a43fae93cf0eeef940b67747633586b9378fb4a244c376ab

Files

5bfb18eab45b8441a43fae93cf0eeef940b67747633586b9378fb4a244c376ab
.exe windows:5 windows x86 arch:x86

775bac772432a39c0b3ac76c73f3128d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\桌面源码\登录器打包\LoginMain\Release\LoginMain.pdb

Imports

kernel32

GetStartupInfoA

user32

MessageBeep

gdi32

ExtSelectClipRgn

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA

advapi32

RegQueryValueExA

shell32

Shell_NotifyIconA

comctl32

InitCommonControlsEx

shlwapi

PathFileExistsA

oledlg

ord8

ole32

OleFlushClipboard

oleaut32

SysAllocString

ws2_32

send

winmm

timeGetTime

gdiplus

GdiplusShutdown

netapi32

Netbios

psapi

GetModuleFileNameExA

iphlpapi

GetAdaptersInfo

version

GetFileVersionInfoA

msvcrt

strncpy

Exports

Exports

WndHandleDLL

Sections

.text
Size: 2.2MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 994KB - Virtual size: 996KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

775bac772432a39c0b3ac76c73f3128d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

winmm

gdiplus

netapi32

psapi

iphlpapi

version

msvcrt

Exports

Exports

Sections

.text Size: 2.2MB - Virtual size: 4.7MB

.sedata Size: 994KB - Virtual size: 996KB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 12KB - Virtual size: 12KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 2.2MB - Virtual size: 4.7MB

.sedata
Size: 994KB - Virtual size: 996KB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 12KB - Virtual size: 12KB

.sedata
Size: 4KB - Virtual size: 4KB