1135663c5c1f0df2b1a2a5c495372d89

Sharing

Copy URL

Twitter E-mail

General

Target

1135663c5c1f0df2b1a2a5c495372d89
Size

599KB
MD5

1135663c5c1f0df2b1a2a5c495372d89
SHA1

271383ea466d31a14f0a9c5e2963921a7e64d8a6
SHA256

e6f8d98524b7f9f94a3ee0c057a166f03a8dcc1c84f9b89a8e0e745326b25e02
SHA512

8768ab78550e09448fc80d000168d3023bf50e2b00a2cc132c9e89ddec838d4d808117a698adf09c8fe8deedd8c06c8e6e46bf7036aed4ca8e3cd3b7f7cb873d
SSDEEP

12288:J4N/OklDJYM1HzgQoDq0JHG0Sxv1m6CE5oqzYSRcEkcyhjE:aN20rg60LSxIRE5oJe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/MUAutoClicker/MUAutoClicker.exe

Files

1135663c5c1f0df2b1a2a5c495372d89
.zip
MUAutoClicker/MUAutoClicker.exe
.exe windows:4 windows x86 arch:x86

fec74972b1d790e42f605e1695592abf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetNativeSystemInfo
CopyFileW
GetTempPathW
GetModuleFileNameW
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
lstrlenA
GetWindowsDirectoryW
LCMapStringW
LCMapStringA
GetStringTypeW
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
RaiseException
HeapFree
HeapAlloc
HeapReAlloc
GetProcessHeap
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
CloseHandle
EnterCriticalSection
LeaveCriticalSection
WriteFile
GetConsoleCP
GetConsoleMode
SetFilePointer
RtlUnwind
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
ReadFile
GetProcAddress
GetModuleHandleA
ExitProcess
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetStdHandle
FlushFileBuffers
Sleep
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileW
InitializeCriticalSection
LoadLibraryA
GetCPInfo
GetOEMCP
IsValidCodePage
CreateFileA
SetEndOfFile
GetStringTypeA

user32

MessageBoxW

shell32

ShellExecuteExW

shlwapi

PathAddBackslashW

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
MUAutoClicker/help/images/AdvancedSettings.png
.png
MUAutoClicker/help/images/SettingsWindow.jpg
.jpg
MUAutoClicker/help/images/bg.png
.png
MUAutoClicker/help/images/i_header.jpg
.jpg
MUAutoClicker/help/images/panel2_bg.png
.png
MUAutoClicker/help/images/panel_bg.png
.png
MUAutoClicker/help/index.html
MUAutoClicker/help/script_example.txt

Sharing

General

Malware Config

Signatures

Files

fec74972b1d790e42f605e1695592abf

Headers

File Characteristics

Imports

kernel32

user32

shell32

shlwapi

Sections

.text Size: 48KB - Virtual size: 46KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 8KB - Virtual size: 5KB

.text
Size: 48KB - Virtual size: 46KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 8KB - Virtual size: 5KB