43142f495d960974d03ee748dd4d72fc

Sharing

Copy URL Twitter E-mail

General

Target

43142f495d960974d03ee748dd4d72fc
Size

216KB
MD5

43142f495d960974d03ee748dd4d72fc
SHA1

ebf484f77063adf503b88f28e50fc377482d6c20
SHA256

511291551aed7290b826f47fda63652317f78d6bb3f2e443c08f5d9c64c87827
SHA512

0e9ea029ccbb7204644b36a5b8d64d7e530e60d2cad787b456794c898ef9bdd8b0c5c3fc8e8264fa7c2c92905c0113ae60eb7c688b11f020f03d943f035275d0
SSDEEP

3072:vfZ4ty88qlDAFS48RgkbK7Wqw+SAD2i+ZH7kC745ouloY0w2UZLrWP80ZATAikv5:vh4ty8Ry8RgkbeWqL/iZB7eowhR2ndY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43142f495d960974d03ee748dd4d72fc

Files

43142f495d960974d03ee748dd4d72fc
.exe windows:4 windows x86 arch:x86

9cf829de611adc18a2f5e43f54f6b5ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindowVisible
GetFocus
SetForegroundWindow
PostQuitMessage
IsWindow
EndPaint
GetDC
GetCursorPos
ReleaseDC
SendMessageA
GetClientRect
DestroyWindow
GetParent
UpdateWindow
ShowWindow
EnableWindow
PeekMessageA
SetWindowPos
TranslateMessage
GetWindow
LoadStringA
CallWindowProcA
EnableMenuItem
RegisterClassA
GetSubMenu
CreateWindowExA
DispatchMessageA
PtInRect
SetFocus
BeginPaint
KillTimer
DefWindowProcA
GetSystemMetrics
GetWindowRect
PostMessageA
SetWindowLongA
EndDialog
SetWindowTextA
CheckMenuItem
GetWindowLongA
GetDesktopWindow
MessageBoxA
DialogBoxParamA
GetSysColor

oleaut32

SysFreeString
SysAllocString
VariantClear

ole32

CoCreateInstance
CoInitialize

gdi32

GetDeviceCaps
DeleteDC
GetStockObject
SetTextColor
CreateCompatibleDC
SelectObject
DeleteObject

kernel32

GetFileAttributesW
GetLocalTime
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
SetErrorMode
GetTempPathA
WideCharToMultiByte
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetFullPathNameA
FreeLibrary
LocalFree
InitializeCriticalSection
LoadResource
FindClose
TlsGetValue
HeapDestroy
OutputDebugStringA
SetLastError
InterlockedDecrement
GetModuleFileNameW
IsDebuggerPresent
HeapAlloc
GetVersionExA
GetModuleFileNameA
lstrcmpiW
LoadLibraryExA
UnhandledExceptionFilter
MultiByteToWideChar
LeaveCriticalSection
CreateMutexA
GetModuleHandleA
CreateThread
MulDiv
SetEnvironmentVariableA
TerminateProcess
SetUnhandledExceptionFilter
WriteConsoleA
VirtualQuery
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
FormatMessageA
GetThreadLocale
lstrlenA
VirtualAlloc
GetCommandLineA
ResetEvent
GetOEMCP
FindResourceA
IsBadReadPtr
Sleep
VirtualFree
FindResourceW
UnmapViewOfFile
IsValidCodePage
CreateProcessA
GetEnvironmentStrings
GetCurrentThreadId
GetACP
lstrcpynA
CloseHandle
FindFirstFileA
ReadFile
SetFilePointer
TlsFree
RaiseException
GetCurrentThread
InterlockedCompareExchange
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
SizeofResource
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
LCMapStringA
GetModuleHandleW
GetConsoleCP
GlobalFree
GetSystemInfo
HeapCreate
SetStdHandle
GetLastError
InterlockedIncrement
ExitProcess
CreateFileA
GetFileType
GlobalLock
DuplicateHandle
FindFirstFileW
CreateFileMappingA
CompareStringA
lstrcpyA
FindNextFileW
CompareStringW
GetProcessHeap
GetProcAddress
GetEnvironmentVariableA
DeleteFileA
CreateDirectoryA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
GetVersion
GetLocaleInfoA
SetEndOfFile

Sections

iekyi
Size: 200KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9cf829de611adc18a2f5e43f54f6b5ba

Headers

File Characteristics

Imports

user32

oleaut32

ole32

gdi32

kernel32

Sections

iekyi Size: 200KB - Virtual size: 196KB

.rdata Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 776B

iekyi
Size: 200KB - Virtual size: 196KB

.rdata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 776B