1c5b6d560cdbcfb5aaa4bf7d7eb312952a9a1bac5e17fe61449f2f6a79ed7529N

Sharing

Copy URL Twitter E-mail

General

Target

1c5b6d560cdbcfb5aaa4bf7d7eb312952a9a1bac5e17fe61449f2f6a79ed7529N
Size

242KB
MD5

e184b8375c459abac3e7625093d33570
SHA1

1d60fa323d7fc614964769eb2ed32f2e5d429622
SHA256

1c5b6d560cdbcfb5aaa4bf7d7eb312952a9a1bac5e17fe61449f2f6a79ed7529
SHA512

0215ce8cb8262079b73d4eef8b7c6b1d89ad8421cd1d58f517c340185c024db833455a1e2be3edd5c1e4ae3ce4386f049573d76dc0d549f5435060ba0d936d3d
SSDEEP

3072:XBaMi4cU74n5L9kmSWQTsg1hmzbkHQyyhui4bBo/c5KHohSV4w4fLQ0cGA+8dWP:MFfzntWmNoXHQoi4bmiKIK4ws8GYdM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c5b6d560cdbcfb5aaa4bf7d7eb312952a9a1bac5e17fe61449f2f6a79ed7529N

Files

1c5b6d560cdbcfb5aaa4bf7d7eb312952a9a1bac5e17fe61449f2f6a79ed7529N
.exe windows:5 windows x86 arch:x86

de3604ac177ad3ccfffd960e4208db66

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClassInfoW
IsZoomed
ShowWindow
ModifyMenuA
CheckMenuItem
IsDialogMessageW
CharUpperBuffW
SetRectEmpty
GetWindowTextLengthW
ReplyMessage
InflateRect
HideCaret
GetWindowRect
OemToCharA
GetMessageA
GetWindowLongA
SetRect
GetClipCursor
GetUserObjectInformationA
CopyAcceleratorTableW
PostThreadMessageA
PostQuitMessage
GetMenuItemRect
DialogBoxParamA
GetWindowDC
TranslateMessage
SetForegroundWindow
WaitMessage
GetMenuState
wvsprintfA
GetDlgCtrlID
CopyImage
GetMenuItemCount
GetMenuStringA
SetWindowLongA
CharUpperBuffA
CharUpperA
OpenInputDesktop

kernel32

SetErrorMode
GetFileAttributesExA
SetCurrentDirectoryW
GetPriorityClass
GetFileAttributesA
GetTempPathA
OpenSemaphoreW
EnumResourceNamesW
MoveFileW
CreateMailslotW
SetWaitableTimer
FileTimeToLocalFileTime
IsBadReadPtr
HeapUnlock
RegisterWaitForSingleObject
GetCommProperties
HeapFree

gdi32

DeleteObject
SetStretchBltMode
CreateDCW
TextOutW
CreatePenIndirect
SetMapMode
GetCurrentObject
EndDoc
SetBitmapDimensionEx
GetBoundsRect
CreatePolygonRgn
SaveDC
SetBrushOrgEx
GetFontData
SetWindowOrgEx
CreatePatternBrush
TranslateCharsetInfo
GetCharWidth32W

Exports

Exports

?DmjdjhUYDoiu7DIOdiouYUDIOYuikdHhd@@YGKEPA_WG@Z

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.fdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 163KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de3604ac177ad3ccfffd960e4208db66

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 58KB - Virtual size: 58KB

.fdata Size: 12KB - Virtual size: 12KB

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 2KB - Virtual size: 2KB

.xdata Size: 163KB - Virtual size: 277KB

.gdata Size: 1KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 58KB - Virtual size: 58KB

.fdata
Size: 12KB - Virtual size: 12KB

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 2KB - Virtual size: 2KB

.xdata
Size: 163KB - Virtual size: 277KB

.gdata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB