140590b63f9d40999d60563ee09ef072

General

Target

140590b63f9d40999d60563ee09ef072
Size

60KB
MD5

140590b63f9d40999d60563ee09ef072
SHA1

2ac0887f88b958da3bead457e5db00bcdfb3476b
SHA256

f54e47850c34f4ff13b77216573bda0b2e19c65802179bec50b5b8fba38ec4dc
SHA512

1eecbc00ac42f0ab78474ba6471ae2456d5c62a214039d36c0393ba14db7e4221cec0bf4c114800950b605dcb3b0ec62000380fcf4b2140581683239657ac3ed
SSDEEP

768:JcNxwqsyjRkAoHR5YAdvD/PtbZRlcLOnTJH+EH/uB5SZtOgEDtxrvfVv:+xwjAoHR5bDldRlcLOdDWB55giZvNv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
140590b63f9d40999d60563ee09ef072

Files

140590b63f9d40999d60563ee09ef072
.exe windows:4 windows x86 arch:x86

94f3c91be66fb0df1b103f458670d1f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
FindNextFileW
LoadLibraryW
VirtualAlloc
LoadResource
WideCharToMultiByte
MoveFileW
CreateEventW
WriteFile
GlobalAddAtomW
SetWaitableTimer
CreateThread
GetTickCount
LoadLibraryA
FreeLibrary
GetFileAttributesExW
GetModuleFileNameW
SetThreadPriority
CancelWaitableTimer
GetProcAddress
GetCurrentThreadId
DuplicateHandle
CreateProcessW
FindResourceExW
GetLastError

user32

RegisterHotKey
GetDlgItem
SetCursorPos
AppendMenuW
UpdateWindow
GetWindowTextW
WindowFromPoint
SetLayeredWindowAttributes
GetClassNameW
IsDlgButtonChecked
LoadIconW
InvalidateRect
ReleaseCapture
ReleaseDC
SetCursor
DestroyIcon
GetParent
SystemParametersInfoW
GetSystemMetrics
SendDlgItemMessageW

gdi32

CreateICW
CreateBitmap
CreateFontIndirectW
GetMapMode
Rectangle
SetBkColor
SetDIBits
SetTextColor
SelectObject
SetBkMode
GetObjectW

advapi32

RegCloseKey
LookupPrivilegeValueW
RegOpenKeyExW
GetUserNameW
StartServiceW
SetSecurityDescriptorDacl
RegQueryValueExW
RegCreateKeyExW

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

94f3c91be66fb0df1b103f458670d1f4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 48KB - Virtual size: 45KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 48KB - Virtual size: 45KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB