1442445bac4bf11b863fe8e7ac5dda73

Sharing

Copy URL Twitter E-mail

General

Target

1442445bac4bf11b863fe8e7ac5dda73
Size

620KB
MD5

1442445bac4bf11b863fe8e7ac5dda73
SHA1

a635e9a5df6e667add38ae929abb6f6026055a30
SHA256

4e4e753a8a49c614acbc45501755c17ae37936c5a0627b5353e04c76e22b0807
SHA512

2a7c3e103dec92519487f112ef22a8ad47cd9e8e2ea48d0dea7a5081ac937f72ad7504ccc405d91c7eb7ea6bc49781429daf22c8229e919d0dd2659e1596b071
SSDEEP

12288:jKI6FgzdBkTdIMlUzduzaejuyE1xjJXXGworV7Fiqw:mIcoBJMKzdEjulx9XXGwbqw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1442445bac4bf11b863fe8e7ac5dda73

Files

1442445bac4bf11b863fe8e7ac5dda73
.exe windows:4 windows x86 arch:x86

c295886c12245300c4629b664e5ff9d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetScrollBarInfo
SendMessageTimeoutA
GetProcessWindowStation
RegisterClassExA
TabbedTextOutA
OemKeyScan
RegisterClassA
ChildWindowFromPoint
FindWindowW
UnpackDDElParam
RegisterDeviceNotificationA
TranslateAccelerator
DragDetect
GetForegroundWindow
GetCapture
EditWndProc
PackDDElParam
DestroyCursor
ToUnicode
SetCapture
RegisterHotKey
MapDialogRect
CheckRadioButton
LoadMenuIndirectW
DrawFrame
EnableWindow
WaitForInputIdle
SetWindowsHookA
SetClassLongA
VkKeyScanExW
GetClassWord
IsRectEmpty
EndDialog
IsCharAlphaNumericA
GetGuiResources
OffsetRect
GetWindowTextA
GetUpdateRect
MessageBoxExW
OpenDesktopW
CharPrevExA
DefWindowProcA
UpdateWindow
GetDC
GetKeyboardLayoutNameW
MessageBoxIndirectA
EqualRect
wvsprintfA
PostThreadMessageA
GetMessageExtraInfo
CreateWindowExA
GetWindowWord
GetClassInfoExA
BringWindowToTop
GetOpenClipboardWindow
ChangeDisplaySettingsA
DestroyWindow
LoadAcceleratorsA
CreateCursor
TileWindows
SendMessageA
IsWindowVisible
DdeCreateDataHandle
GetKeyboardState
DdeDisconnectList
MessageBoxW
DefFrameProcW
ChangeMenuW
UnregisterClassA
GetMenuItemID
UnionRect
EndPaint
AttachThreadInput
EnumPropsExA
EnumWindowStationsW
ShowScrollBar
GetClassLongA
SetDlgItemTextA
GetMenuBarInfo
CreateIconFromResource
SendInput
GetNextDlgGroupItem
SetWindowTextA
DdeCmpStringHandles
GetScrollInfo
LoadBitmapA
GetKeyboardType
DdeConnectList
ReplyMessage
CreateDesktopW
IsCharLowerW
ReuseDDElParam
LoadStringA
GetTabbedTextExtentW
SetMessageQueue
SetWindowWord
ShowWindow
GetMessageTime
CreateAcceleratorTableW
CloseDesktop

kernel32

EnumResourceNamesW
HeapReAlloc
IsDebuggerPresent
GetEnvironmentStringsW
TlsGetValue
TlsSetValue
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetUserDefaultLCID
GlobalUnlock
UnlockFile
TransactNamedPipe
TransmitCommChar
InterlockedIncrement
GetSystemDirectoryA
SetStdHandle
FormatMessageA
SetConsoleCP
IsValidCodePage
ReadConsoleOutputA
WriteConsoleInputW
IsBadReadPtr
HeapCreate
GlobalFix
CloseHandle
SetLocaleInfoW
SetFilePointer
CreateFileA
SetEnvironmentVariableA
LocalCompact
GetCommandLineA
CreateDirectoryExW
WideCharToMultiByte
ReadConsoleOutputW
LocalUnlock
VirtualAlloc
LoadLibraryA
FillConsoleOutputAttribute
CreateFileW
FindClose
GetModuleHandleA
WriteConsoleW
EnterCriticalSection
ReadFile
CreateMutexA
SetUnhandledExceptionFilter
WritePrivateProfileStringW
ReadConsoleOutputCharacterW
GetLocaleInfoW
IsValidLocale
HeapFree
MultiByteToWideChar
GetFileType
GetTickCount
GetConsoleOutputCP
VirtualQuery
OpenEventW
GetLastError
HeapDestroy
InitializeCriticalSection
GetTimeFormatA
GetCPInfo
GetTimeZoneInformation
GetDateFormatA
SetHandleCount
MoveFileExW
lstrlen
CreateMailslotW
GetEnvironmentStrings
FreeLibrary
InterlockedDecrement
Sleep
LCMapStringW
EnumSystemLocalesA
GetStartupInfoA
LocalSize
VirtualFree
SetVolumeLabelA
VirtualAllocEx
UnmapViewOfFile
TlsAlloc
GetStringTypeW
HeapSize
GetConsoleMode
lstrcpynW
DeleteCriticalSection
OpenMutexA
WriteConsoleOutputAttribute
InterlockedCompareExchange
EnumResourceLanguagesA
GetLocaleInfoA
ExitProcess
GetNamedPipeHandleStateA
GetCurrentThreadId
CompareStringA
SetThreadContext
LoadLibraryExW
LeaveCriticalSection
CommConfigDialogA
GetShortPathNameA
WriteConsoleA
OutputDebugStringA
SetConsoleCtrlHandler
GetPrivateProfileIntW
ReadConsoleW
FreeEnvironmentStringsW
GetTempPathW
GetVersionExA
CreateProcessA
GetConsoleCP
TerminateProcess
RtlUnwind
FindFirstFileW
FreeEnvironmentStringsA
GetMailslotInfo
FindFirstFileA
GetStringTypeA
GetACP
QueryPerformanceCounter
GetProcAddress
HeapAlloc
lstrlenA
SystemTimeToTzSpecificLocalTime
GetOEMCP
GetCurrentProcess
GetTempPathA
GetCurrentThread
lstrcpy
OpenFileMappingA
EnumDateFormatsW
GlobalFlags
FlushFileBuffers
SetLastError
GetProcessHeap
InterlockedExchange
GlobalFree
LCMapStringA
GetConsoleTitleA
GetModuleFileNameA
CommConfigDialogW
SetThreadIdealProcessor
WriteFile
CompareStringW
TlsFree
GetPriorityClass
GetCurrentProcessId
GetStdHandle

comctl32

ImageList_Merge
ImageList_GetBkColor
InitCommonControlsEx
ImageList_SetOverlayImage

Sections

.text
Size: 204KB - Virtual size: 202KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c295886c12245300c4629b664e5ff9d0

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 204KB - Virtual size: 202KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 116KB - Virtual size: 142KB

.rsrc Size: 36KB - Virtual size: 35KB

.text
Size: 204KB - Virtual size: 202KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 116KB - Virtual size: 142KB

.rsrc
Size: 36KB - Virtual size: 35KB