5c045b919a9fa4488e448af734ad63d0N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

5c045b919a9fa4488e448af734ad63d0N.exe
Size

198KB
MD5

5c045b919a9fa4488e448af734ad63d0
SHA1

0d9df27e736b4e964376f0d808e2c20c2112ce50
SHA256

d321dc13f34a7c9dd48f4bffc8ee530838f42229196d78700e7ce1045e1c7bcc
SHA512

a04a33c76622d3fa68267919e8e4c9b89708060d7ca10df83b14bf9e73126d7bcefc873879da7f8a3d5fbfd2ccb3c1730f83035375968607618fadabfc332061
SSDEEP

3072:xnasTryjVV7rUWtsTGlVzaU9R2a/5PTKFP5QjwwSGMh:xnasnmRjlVzayBbyQj0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c045b919a9fa4488e448af734ad63d0N.exe

Files

5c045b919a9fa4488e448af734ad63d0N.exe
.exe windows:4 windows x64 arch:x64

7acb3678a3168abb00609fb4cecae0c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddVectoredExceptionHandler
CloseHandle
CompareStringA
CompareStringW
CreateEventA
CreateFileA
CreateThread
DeleteCriticalSection
EnterCriticalSection
EnumCalendarInfoA
EnumResourceLanguagesA
EnumResourceNamesA
EnumResourceTypesA
ExitProcess
ExitThread
FindResourceA
FindResourceExA
FormatMessageA
FreeLibrary
FreeResource
GetCommandLineA
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetThreadLocale
GetThreadPriority
GetUserDefaultLCID
GetVersionExA
GetWindowsDirectoryA
HeapAlloc
HeapFree
InitializeCriticalSection
LeaveCriticalSection
LoadResource
LocalAlloc
LocalFree
LockResource
MultiByteToWideChar
ReadFile
ReadProcessMemory
ResetEvent
ResumeThread
SetEndOfFile
SetEvent
SetFilePointer
SetLastError
SetThreadLocale
SetThreadPriority
SizeofResource
Sleep
SuspendThread
TerminateThread
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
WaitForSingleObject
WideCharToMultiByte
WriteFile

oleaut32

SysAllocStringLen
SysFreeString
SysReAllocStringLen

user32

CharLowerA
CharLowerBuffA
CharLowerBuffW
CharUpperA
CharUpperBuffA
CharUpperBuffW
GetSystemMetrics
MessageBeep
MessageBoxA

Sections

.text
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_MEM_DISCARDABLE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7acb3678a3168abb00609fb4cecae0c5

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

Sections

.text Size: 131KB - Virtual size: 130KB

.data Size: 63KB - Virtual size: 62KB

.bss Size: - Virtual size: 9KB

.CRT Size: 512B - Virtual size: 8B

.idata Size: 3KB - Virtual size: 2KB

.text
Size: 131KB - Virtual size: 130KB

.data
Size: 63KB - Virtual size: 62KB

.bss
Size: - Virtual size: 9KB

.CRT
Size: 512B - Virtual size: 8B

.idata
Size: 3KB - Virtual size: 2KB