42bf96646b407ef87902df50449b81daeba0126589a6013fc5294f48c7f93436

Sharing

Copy URL Twitter E-mail

General

Target

42bf96646b407ef87902df50449b81daeba0126589a6013fc5294f48c7f93436
Size

200KB
MD5

7222bd7fdf3928bd4382c50fc58bc8a7
SHA1

cfb3cc899ee1e8da4a6e7402c7be0bba62f1762b
SHA256

42bf96646b407ef87902df50449b81daeba0126589a6013fc5294f48c7f93436
SHA512

2d9f413bbde672bbb2d1d7997d0d7330eddafd77a4eb7c5ee33ece8f1b600f63c5d081db0d5a1221f820574059b562e4ede2268e6a8f1f6678ad7e74d809bb6d
SSDEEP

3072:tvaYvvMD+Ks8z8xPdr9xoFQd+nyrceqlbxyQ8zPlhecMucYnbHGR1FH:tvRnJhPd5xndOyYNDCPSFucYbHez

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42bf96646b407ef87902df50449b81daeba0126589a6013fc5294f48c7f93436

Files

42bf96646b407ef87902df50449b81daeba0126589a6013fc5294f48c7f93436
.exe windows:5 windows x86

8f7e31f87e901cc1337a770679fe9427

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyIcon
wsprintfA
TranslateMessage
TranslateAcceleratorW
TrackPopupMenu
SystemParametersInfoW
SetWindowTextA
SetWindowLongW
SetWindowLongA
SetCursor
SetActiveWindow
SendMessageW
SendMessageA
SendDlgItemMessageW
ScreenToClient
RegisterClassExA
RedrawWindow
PostQuitMessage
PostMessageW
MoveWindow
MessageBoxW
MessageBoxA
LoadStringA
LoadMenuW
LoadIconW
LoadCursorW
LoadAcceleratorsW
InvalidateRect
GetWindowRect
GetWindow
GetWindowLongW
GetWindowLongA
GetSystemMetrics
GetSubMenu
GetParent
GetMessagePos
GetMessageW
GetDlgItem
GetClientRect
EndPaint
DispatchMessageW
DestroyWindow
DestroyMenu
DefWindowProcA
ClientToScreen
CallWindowProcA
BeginPaint
AdjustWindowRect
ShowWindow
SetWindowPos
SetFocus
LoadStringW
LoadImageW
GetMenu
EnableWindow
CreateWindowExA
CheckMenuItem
ReleaseDC
GetDC
CreateIconFromResourceEx

gdi32

CreateBitmap
CreateCompatibleDC
CreateDIBitmap
CreateEnhMetaFileW
DeleteDC
DeleteEnhMetaFile
DeleteObject
GetEnhMetaFileBits
SelectObject
SetBkColor
SetTextColor
CreateFontIndirectW
GetTextExtentPointA
GetTextMetricsW
TextOutA
CloseEnhMetaFile
BitBlt

shell32

ShellExecuteA
ShellAboutW

comctl32

PropertySheetA
InitCommonControls
CreatePropertySheetPageA

comdlg32

PrintDlgW
GetOpenFileNameA

msvcrt

bsearch
__setusermatherr
_amsg_exit
__getmainargs
__set_app_type
_cexit
_fpreset
_initterm
__initenv
_acmdln
signal
strcspn
memcmp
_iob
__lconv_init
malloc
strtol
sprintf
memcpy
memset
strcpy
strcmp
strlen
strchr
_stricmp
_assert
_snprintf
strcat
memmove
strrchr
fprintf
fwrite
_errno
exit
realloc

kernel32

GetCurrentDirectoryA
lstrcmpiA
LoadLibraryA
GetProcAddress
GetFileAttributesA
OpenFile
MulDiv
lstrcpynA
HeapReAlloc
GetEnvironmentVariableA
HeapAlloc
GetProcessHeap
_lclose
_hread
CreateFileA
CloseHandle
TlsGetValue
LeaveCriticalSection
InitializeCriticalSection
EnterCriticalSection
SearchPathA
GetLastError
LocalAlloc
LocalFree
LocalReAlloc
SetLastError
GetStartupInfoA
SetUnhandledExceptionFilter
Sleep
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
GetModuleHandleA
LoadLibraryW
HeapFree
DeleteCriticalSection

ntdll

vDbgPrintExWithPrefix

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f7e31f87e901cc1337a770679fe9427

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

shell32

comctl32

comdlg32

msvcrt

kernel32

ntdll

Sections

.text Size: 96KB - Virtual size: 96KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 2KB - Virtual size: 7KB

.rsrc Size: 75KB - Virtual size: 74KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 96KB - Virtual size: 96KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 2KB - Virtual size: 7KB

.rsrc
Size: 75KB - Virtual size: 74KB

.reloc
Size: 7KB - Virtual size: 7KB