0142281e3b77a894209adcaa074c4ede

General

Target

0142281e3b77a894209adcaa074c4ede
Size

146KB
MD5

0142281e3b77a894209adcaa074c4ede
SHA1

aa4b9530936e37ed82e2b1efa59bebdbb4b64c83
SHA256

c25154f4fe2069371f543032f0e64181dc3eed18c000150a4a3412f27ea20fd5
SHA512

98253374f6db6ee0ec82169258252222113a0c3b5c4b3c267b77b46b4ef9f273a6b09cb45f4de1c9823afb3e3aa3df8ac904af7f84e3ba639f2e3e93f9341c21
SSDEEP

3072:te4gdxx20HLYRTZXW/nVO+ZNmFpqUgBCbweZEIv/8R:WxdHLYRT2VZNmqUOcEAM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0142281e3b77a894209adcaa074c4ede

Files

0142281e3b77a894209adcaa074c4ede
.exe windows:4 windows x86 arch:x86

4efe35e50815a6d17af950d908e3d24a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
DefMDIChildProcA
CreateIcon
GetMenu
RegisterClassA
DefWindowProcA
GetDesktopWindow
GetPropA
TrackPopupMenu
EnumChildWindows
CharLowerBuffA
CallNextHookEx
GetDlgItem
GetClassInfoA
GetScrollPos

gdi32

CreateDIBitmap
SaveDC
SelectObject
CreatePenIndirect
SetBkMode
GetClipBox
BitBlt
CreateBitmap
CreatePalette
GetPaletteEntries

msvcrt

malloc
clock
wcschr
memmove
sqrt
atol
memcpy
memset

ole32

CoRegisterClassObject
CoDisconnectObject
StgCreateDocfileOnILockBytes
WriteClassStm
CoCreateFreeThreadedMarshaler
CoRevokeClassObject
CoUninitialize
PropVariantClear
CLSIDFromProgID
ReleaseStgMedium

kernel32

GetCurrentThread
GetVersionExA
GlobalAlloc
LocalAlloc
GetCommandLineA
LoadLibraryA
HeapAlloc
MoveFileA
ExitProcess
GetEnvironmentStrings
GetDateFormatA
VirtualAlloc
GetOEMCP
ExitThread
CreateThread
GlobalAddAtomA

shlwapi

SHStrDupA
SHGetValueA

Sections

BSS
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 3KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4efe35e50815a6d17af950d908e3d24a

Headers

File Characteristics

Imports

user32

gdi32

msvcrt

ole32

kernel32

shlwapi

Sections

BSS Size: 28KB - Virtual size: 27KB

DATA Size: 111KB - Virtual size: 111KB

.tls Size: 3KB - Virtual size: 111KB

.idata Size: 2KB - Virtual size: 1KB

BSS
Size: 28KB - Virtual size: 27KB

DATA
Size: 111KB - Virtual size: 111KB

.tls
Size: 3KB - Virtual size: 111KB

.idata
Size: 2KB - Virtual size: 1KB