142cba2c9c1f6f074d7fe04ae6a77dad

Sharing

Copy URL

Twitter E-mail

General

Target

142cba2c9c1f6f074d7fe04ae6a77dad
Size

144KB
MD5

142cba2c9c1f6f074d7fe04ae6a77dad
SHA1

56a6bd63041a9e2cb25335eb992083007bdac059
SHA256

ba260484a4262c9a5cc9df61fc9ed3d21495c4cebe00e950ba45ae1e0b4a887a
SHA512

67c5df009a8f251dae555ab359ae7471fd942b4ff142e3b60957e8a97a51656e2f844e761315dabdfd46ff68f0ffce52a73b038e8f06649edcc1f2bb4962e800
SSDEEP

3072:PhFbQBX551rZJyUvuodJvzduFlWK7F/BuTPqUJsQ8bbddsA:P7bQF55zJy5oHv0FN/Buur5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
142cba2c9c1f6f074d7fe04ae6a77dad

Files

142cba2c9c1f6f074d7fe04ae6a77dad
.exe windows:5 windows x86 arch:x86

5b309a1c480eba47b29246e0e9d2f4d0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectPalette
GetCharWidth32W
PathToRegion
SetAbortProc
ResizePalette
GetWindowOrgEx
CreateICW
LineDDA
ExtFloodFill
GetTextColor
TranslateCharsetInfo
SetBkMode
CreateDIBSection
GetStockObject
GetCurrentObject
GetTextMetricsW
EnumFontFamiliesW
SetBrushOrgEx

user32

AdjustWindowRectEx
TrackPopupMenu
GetDlgItemTextW
KillTimer
DrawTextA
GetKeyboardLayoutList
ShowCaret
CharNextExA
CharToOemA
CloseDesktop
GetMenuState
SystemParametersInfoA
RemovePropW
SetWindowLongA
GetMessageTime
IsWindow
FindWindowExW
AppendMenuW
CallWindowProcW
GetWindowDC
SetActiveWindow
OpenDesktopW
DefFrameProcA
SetWindowPlacement
GetMenuItemInfoW
RegisterWindowMessageW
MapVirtualKeyW
IsWindowEnabled
RegisterClassExW
DrawTextW
CharUpperBuffW
TranslateAcceleratorW
CharUpperW
GetClassInfoExA
LoadStringA
ModifyMenuW
InsertMenuW
CreateDialogParamW
HiliteMenuItem
EndDialog
GetLastActivePopup
GetKeyNameTextW
DeleteMenu
GetKeyboardLayout

kernel32

FileTimeToSystemTime
CreateDirectoryA
PulseEvent
SetCurrentDirectoryW
LoadLibraryW
GetCurrentThreadId
ConnectNamedPipe
GlobalAddAtomW
GetPriorityClass
GetStartupInfoW
HeapFree
LockFile
GetStdHandle
FlushFileBuffers
GetCompressedFileSizeW
LocalFree
LockResource
SetFileAttributesW
SetFilePointer
ClearCommBreak
LoadLibraryA

msvcrt

printf
atoi
_controlfp
__set_app_type
isalnum
strstr
__p__fmode
__p__commode
_amsg_exit
clearerr
bsearch
_initterm
_acmdln
wcstoul
exit
_ismbblead
_XcptFilter
iswdigit
wcschr
system
isspace
malloc
_exit
_cexit
__setusermatherr
__getmainargs
fgetc

shlwapi

StrDupA

Exports

Exports

?MessageExW@@YGKPAE*Z
?IsNotDialogOriginal@@YGHGHDPAM*Z
?GlobalClassOld@@YGPAFIIDM*Z
?InsertTaskExW@@YGGKF*Z
?DeletePenExW@@YGPAGIEJF*Z
?AddProfile@@YGPAXPA_NK_NM*Z

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idir
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edir
Size: 512B - Virtual size: 341B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vdir
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdir
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdir
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b309a1c480eba47b29246e0e9d2f4d0

Headers

File Characteristics

Imports

gdi32

user32

kernel32

msvcrt

shlwapi

Exports

Exports

Sections

.text Size: 115KB - Virtual size: 115KB

.itext Size: 512B - Virtual size: 464B

.idir Size: 2KB - Virtual size: 2KB

.edir Size: 512B - Virtual size: 341B

.vdir Size: 512B - Virtual size: 140B

.pdir Size: 512B - Virtual size: 140B

.data Size: 2KB - Virtual size: 91KB

.sdir Size: 13KB - Virtual size: 13KB

.rsrc Size: 6KB - Virtual size: 6KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 115KB - Virtual size: 115KB

.itext
Size: 512B - Virtual size: 464B

.idir
Size: 2KB - Virtual size: 2KB

.edir
Size: 512B - Virtual size: 341B

.vdir
Size: 512B - Virtual size: 140B

.pdir
Size: 512B - Virtual size: 140B

.data
Size: 2KB - Virtual size: 91KB

.sdir
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 6KB - Virtual size: 6KB

.reloc
Size: 1KB - Virtual size: 1KB