5ae42a76b8e0be0c51e72253642d2246c40917d0876f644455e5c8086908ae11[.]exe

General

Target

5ae42a76b8e0be0c51e72253642d2246c40917d0876f644455e5c8086908ae11.exe
Size

340KB
MD5

e8703bbb8919c4168b25fe6924578ad1
SHA1

467ea20757ec174fb41a6c1a01ddbdfb68aaee1e
SHA256

5ae42a76b8e0be0c51e72253642d2246c40917d0876f644455e5c8086908ae11
SHA512

a7610c470a2aa7a54d272b4b39fe4cc505de7325dfc92d55046273358537a0545b0762c022f9c4bc3a93eaa69a9098b0f9e8bd9a0dbccbf725357739125417a2
SSDEEP

6144:Kvg8iFtyBSmnt9NuhmJt9IPdO6W+SqR5tulhjH2rBEgh0B:NF/K6+tB6g7LC3h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ae42a76b8e0be0c51e72253642d2246c40917d0876f644455e5c8086908ae11.exe

Files

5ae42a76b8e0be0c51e72253642d2246c40917d0876f644455e5c8086908ae11.exe
.exe windows:5 windows x86 arch:x86

1c45682dfd1b23077ce1a76f6e65dbae

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetGraphicsMode
SetTextColor
GetDCBrushColor
GetObjectType
GetPolyFillMode
GetNearestColor
SetTextAlign
UpdateColors
GetDeviceCaps

user32

CharLowerBuffA
wvsprintfA
GetInputState
GetScrollPos
RemovePropA
GetDlgItemInt
LoadIconA
EndPaint
EndDialog
ShowWindow
IsWindowUnicode
GetMenuItemID
GetMenuState
SetFocus
GetWindowLongA
BeginPaint
GetKeyboardType
WindowFromDC
GetWindowContextHelpId
MoveWindow
GetQueueStatus
SetWindowTextA
GetMenu
GetPropA
GetMenuItemCount
GetDC
IsWindowEnabled

kernel32

GetModuleHandleA
CreateFileA
GetProcAddress
GetSystemTime
SystemTimeToFileTime
WriteFile
HeapFree
ExitProcess
lstrlenA
HeapReAlloc
HeapAlloc
GetFileTime
GetFileSize
GlobalHandle
GlobalAlloc
GetProcessHeap
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
GetCurrentProcess
MoveFileA
GetLastError
FindResourceA
IsDebuggerPresent
GetStdHandle
LockResource
CloseHandle
GlobalSize

Sections

.text
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c45682dfd1b23077ce1a76f6e65dbae

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 252KB - Virtual size: 251KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 1KB - Virtual size: 3KB

.reloc Size: 48KB - Virtual size: 47KB

.text
Size: 252KB - Virtual size: 251KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 1KB - Virtual size: 3KB

.reloc
Size: 48KB - Virtual size: 47KB