5aef9fe11591bcf130e9bf0bcf131210N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

5aef9fe11591bcf130e9bf0bcf131210N.exe
Size

110KB
MD5

5aef9fe11591bcf130e9bf0bcf131210
SHA1

3a4bb6746ca4a1f6d9e64c168379557a027d3e20
SHA256

ecaa6a6c087494c1a693caabddd6a10986552fe9f60712bf95819844bd96624b
SHA512

dc47de0fa63b9cce9e515caaf82a394684c2c58f78ca5c658f7c57cba70c63b235e3ec04a3fd686076dcac6c6916adf37bdfd0d6a53d0c247688e61f9d35ce46
SSDEEP

3072:shfTFglry97ZEr8dfS0HasXUs3QYcLv3YBBAT:yGk7WM6sXUsfcjIBe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5aef9fe11591bcf130e9bf0bcf131210N.exe

Files

5aef9fe11591bcf130e9bf0bcf131210N.exe
.dll windows:5 windows x86 arch:x86

6495b3f4df178784d10f98d63b4cf440

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\TKgCccm\jpgQYrnD\xlpZui\ukvywjl\NlPfVY.pdb

Imports

comctl32

CreateToolbarEx
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_Read

gdi32

PatBlt
RealizePalette
ScaleViewportExtEx
GetDIBColorTable
GetLayout
CreateBitmap
CreateBrushIndirect
EnumFontFamiliesExW

user32

ShowScrollBar
GetWindowLongW
WindowFromPoint
SendMessageA
GetMenuItemRect
IsCharUpperA
LoadBitmapA
keybd_event
GetPropW
CreateDialogIndirectParamW
GetCursorPos
LockWindowUpdate
DrawEdge
DefFrameProcW

comdlg32

PageSetupDlgW
GetFileTitleW
GetOpenFileNameA

shlwapi

StrCmpNW

kernel32

lstrcmpiW
GetLocalTime
GetProcAddress
lstrcpynA
SetThreadAffinityMask
HeapWalk
SetThreadContext
lstrlenW
TerminateThread
LoadLibraryW
HeapSize
GetCompressedFileSizeW
FileTimeToDosDateTime

Exports

Exports

?lHUddvOpfXNjmvYzgx@@YGPAX_N@Z
?dpzqiWQnrgeSExrSgXkaq@@YGEKM@Z

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6495b3f4df178784d10f98d63b4cf440

Headers

File Characteristics

PDB Paths

Imports

comctl32

gdi32

user32

comdlg32

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 140B

.temp Size: 75KB - Virtual size: 75KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 17KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 140B

.temp
Size: 75KB - Virtual size: 75KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB