139a81551ba765d2dbc738938321ff99

Sharing

Copy URL Twitter E-mail

General

Target

139a81551ba765d2dbc738938321ff99
Size

533KB
MD5

139a81551ba765d2dbc738938321ff99
SHA1

874965619410891d41aa3505e12e12ecac6c07aa
SHA256

6d16ee130951f455bb54bfdcb0d0375fc9b245b5f9ac039f7f782edba4e63f42
SHA512

a2572900318df485f80e9864305d302337dfcbb065e4300136be0ba7b6e5b899f41ebfc99e9af9ae694eff632cc19c88b22ed6b92e62b59c3a39d24056bdbc78
SSDEEP

12288:pzjJaw/oy2mruRgauspDB+2jsfcpQk7c3CgOUec3O:pzlcMruOVl2Akppu7ec3O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
139a81551ba765d2dbc738938321ff99

Files

139a81551ba765d2dbc738938321ff99
.exe windows:4 windows x86 arch:x86

91cfb0924bffdb2d7c0995b74114e6a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetDlgItemInt
DefWindowProcA
GetClassInfoExA
RegisterClassExA
InflateRect
CloseDesktop
DefDlgProcW
LockWindowUpdate
OpenIcon
CreatePopupMenu
RegisterClassA
GetWindowModuleFileNameW
GetMenu
CopyRect
GetWindowLongW
GrayStringW
DestroyWindow
EditWndProc
GetInputDesktop
RegisterClassExW
MessageBoxW
EnumWindowStationsA
GetThreadDesktop
GetDlgCtrlID
DrawEdge
SetUserObjectInformationW
SetClassLongW
CreateWindowExA
DdeGetData
TranslateAcceleratorW
ShowWindow
DdeCreateDataHandle
WinHelpA

gdi32

CreateCompatibleBitmap
DeleteDC
UpdateICMRegKeyW
gdiPlaySpoolStream
CreatePolygonRgn

advapi32

RegQueryInfoKeyA
RegSetKeySecurity
RegOpenKeyExA
LookupAccountSidA
DuplicateTokenEx
RegDeleteValueW
RegOpenKeyA
RegEnumKeyExW
RegDeleteKeyA
RegQueryValueExW
CryptEnumProviderTypesA
LookupAccountSidW
RegQueryValueA
CryptGetDefaultProviderW
LookupAccountNameW

kernel32

HeapSize
WriteConsoleOutputW
OpenFileMappingW
GetFileType
VirtualQuery
GetPrivateProfileSectionNamesA
GetModuleFileNameW
CreateDirectoryW
IsBadWritePtr
TerminateProcess
FreeEnvironmentStringsW
GetLastError
FindNextFileA
LoadLibraryA
GetCurrentProcess
GetShortPathNameA
GetDiskFreeSpaceW
WriteConsoleW
GetDriveTypeA
DeleteFileW
GetFullPathNameW
FlushViewOfFile
SetLastError
FindFirstFileExA
GetCurrentThread
GetPrivateProfileSectionW
GetOEMCP
GetFileAttributesA
OpenEventW
FlushFileBuffers
VirtualFree
IsValidCodePage
CompareStringA
GetStringTypeW
CreateMutexA
lstrcmpA
FreeResource
GetProfileSectionA
FindAtomW
IsValidLocale
DeleteFileA
GetCPInfo
GetACP
lstrcpynW
GetEnvironmentStringsW
GetThreadSelectorEntry
GetPrivateProfileIntA
HeapAlloc
RtlUnwind
GetCurrentDirectoryA
UnhandledExceptionFilter
GetTickCount
ReadFile
SetFilePointer
SetConsoleWindowInfo
GetTimeFormatA
WriteFile
WriteProfileSectionA
FreeEnvironmentStringsA
DeleteCriticalSection
EnterCriticalSection
GetCurrentProcessId
HeapReAlloc
TlsSetValue
CreateSemaphoreW
CreateProcessW
GetVersionExA
TerminateThread
WriteConsoleOutputCharacterW
TlsAlloc
GetStdHandle
GetProcAddress
CompareStringW
GetUserDefaultLCID
InitializeCriticalSection
SuspendThread
QueryPerformanceCounter
HeapCreate
TlsGetValue
SetConsoleCtrlHandler
SetStdHandle
InterlockedExchange
GetModuleHandleA
SetConsoleTextAttribute
GetStringTypeA
CreateNamedPipeW
VirtualProtect
GetStartupInfoW
GlobalFix
LCMapStringW
CloseHandle
GetSystemTimeAsFileTime
SetHandleCount
GetNamedPipeHandleStateA
VirtualAlloc
CreatePipe
GetProfileStringW
EnumResourceTypesW
EnumSystemLocalesA
HeapDestroy
CopyFileExA
GlobalAddAtomA
WideCharToMultiByte
HeapFree
OpenFile
GetStartupInfoA
ReadConsoleOutputCharacterW
ResumeThread
GetPrivateProfileStructW
ExitProcess
GetDateFormatA
LeaveCriticalSection
GetThreadPriority
GetCurrentThreadId
GlobalFree
GetModuleFileNameA
SetEnvironmentVariableA
GetTimeZoneInformation
LCMapStringA
GetLocaleInfoW
ConnectNamedPipe
OutputDebugStringA
WriteConsoleInputA
GetSystemInfo
LockResource
FindNextFileW
GetLocaleInfoA
GetPrivateProfileStringW
TlsFree
EnumCalendarInfoExA
GlobalFlags
TransactNamedPipe
MultiByteToWideChar
FillConsoleOutputAttribute
GetEnvironmentStrings
MoveFileExA
OpenMutexA
GetCommandLineA
GetEnvironmentVariableA

comctl32

ImageList_Create
ImageList_Destroy
CreateStatusWindow
ImageList_Write
ImageList_Merge
InitCommonControlsEx
ImageList_DragLeave
ImageList_SetOverlayImage
DrawStatusTextW
DrawInsert
ImageList_SetIconSize
DrawStatusTextA
_TrackMouseEvent
DrawStatusText

comdlg32

ChooseFontW
GetSaveFileNameA
ReplaceTextW

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91cfb0924bffdb2d7c0995b74114e6a5

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

comctl32

comdlg32

Sections

.text Size: 156KB - Virtual size: 155KB

.rdata Size: 252KB - Virtual size: 251KB

.data Size: 113KB - Virtual size: 125KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 156KB - Virtual size: 155KB

.rdata
Size: 252KB - Virtual size: 251KB

.data
Size: 113KB - Virtual size: 125KB

.rsrc
Size: 11KB - Virtual size: 10KB