HEUR-Trojan[.]Win32[.]Generic-4e05a40fbe6230bf51ca9e6dbd10165b9ae0507c3c7b3fb382fb51f80f39dd22

Sharing

Copy URL Twitter E-mail

General

Target

HEUR-Trojan.Win32.Generic-4e05a40fbe6230bf51ca9e6dbd10165b9ae0507c3c7b3fb382fb51f80f39dd22
Size

152KB
MD5

e42b2b7e505e31ebcba53dff6dc72cdf
SHA1

2ab39da5ca921b17941c06f19ae475feb4e9d4a6
SHA256

4e05a40fbe6230bf51ca9e6dbd10165b9ae0507c3c7b3fb382fb51f80f39dd22
SHA512

55d30062a4ebaa38e28e8539de2710b796893d6e51102e316d869b58dd28a3499a50d3d47d71a8233af670fae3e8bdeb12a095b6dd0b7ca4e8ee9fbf1163b94f
SSDEEP

3072:pngohLRKQBJlegn79ZMUOG7FBEzgv73T4N/Ul6TTk/w1qMBtJ/6RNa:Zth1KQB99KUOmyzg/SDT4I1qMhx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HEUR-Trojan.Win32.Generic-4e05a40fbe6230bf51ca9e6dbd10165b9ae0507c3c7b3fb382fb51f80f39dd22

Files

HEUR-Trojan.Win32.Generic-4e05a40fbe6230bf51ca9e6dbd10165b9ae0507c3c7b3fb382fb51f80f39dd22
.exe windows x86

81ba501fb85a99c58036cadb3dba486e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42u

ord2377
ord5157
ord6370
ord4347
ord5276
ord3793
ord4831
ord4435
ord2640
ord2047
ord6372
ord3744
ord5059
ord1720
ord5257
ord2438
ord2116
ord5273
ord2977
ord3142
ord3254
ord4459
ord3131
ord3257
ord2980
ord3076
ord2971
ord3825
ord3826
ord3820
ord3074
ord4075
ord4621
ord4419
ord3592
ord800
ord641
ord861
ord540
ord324
ord825
ord2358
ord2294
ord4229
ord2574
ord4396
ord3365
ord3635
ord2403
ord2015
ord4213
ord2570
ord6051
ord1768
ord4392
ord5286
ord3397
ord4418
ord3577
ord693
ord616
ord567
ord775
ord1986
ord3991
ord3461
ord5186
ord2634
ord3087
ord535
ord537
ord2371
ord3312
ord2606
ord858
ord922
ord4094
ord1903
ord3311
ord3309
ord5238
ord6117
ord1766
ord2482
ord5237
ord5654
ord2387
ord6318
ord2601
ord1006
ord1779
ord6119
ord4286
ord503
ord538
ord5699
ord5702
ord5704
ord1254
ord2092
ord2356
ord6330
ord4667
ord4269
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord4616
ord3733
ord815
ord317
ord561
ord635
ord2385
ord823
ord4124
ord5679
ord5568
ord2914
ord1196
ord1244
ord2613
ord1131
ord1143
ord1165
ord665
ord5180
ord354
ord4155
ord2858
ord755
ord470
ord4390
ord3569
ord3614
ord609
ord3658
ord3621
ord2406
ord4270
ord3568
ord2559
ord1634
ord3871
ord5871
ord2854
ord2746
ord2855
ord6195
ord2579
ord4400
ord3724
ord804
ord4262
ord6193
ord6375
ord6211
ord6777
ord2078
ord4401
ord1767
ord4073
ord6048
ord2506
ord4704
ord4992
ord4847
ord4370
ord5004
ord5261
ord1569

msvcrt

_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
__dllonexit
_onexit
??1type_info@@UAE@XZ
_controlfp
_XcptFilter
_exit
_wfopen
fseek
ftell
memset
__CxxFrameHandler
wcscmp
exit
strlen
sprintf
memcpy

kernel32

GetStartupInfoW
GetModuleHandleW
GetModuleFileNameA
GetModuleFileNameW
CreateFileA

user32

DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
LoadCursorW
GetSysColor
CopyRect
SetCursor
InvalidateRect
KillTimer
PtInRect
GetWindowRect
GetCursorPos
GetSystemMenu
AppendMenuW
LoadIconW
SetTimer
EnableWindow
SendMessageW

gdi32

CreateFontIndirectW
CreateSolidBrush
GetTextExtentPoint32W
GetObjectW

Sections

.text
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Wsrc
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81ba501fb85a99c58036cadb3dba486e

Headers

File Characteristics

Imports

mfc42u

msvcrt

kernel32

user32

gdi32

Sections

.text Size: 12KB - Virtual size: 14KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 4KB

.Wsrc Size: 116KB - Virtual size: 114KB

.text
Size: 12KB - Virtual size: 14KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 4KB

.Wsrc
Size: 116KB - Virtual size: 114KB