29d28fe2b592d29fba6fe17ac6c70a54

Sharing

Copy URL

Twitter E-mail

General

Target

29d28fe2b592d29fba6fe17ac6c70a54
Size

184KB
MD5

29d28fe2b592d29fba6fe17ac6c70a54
SHA1

e4dfd9c874a9949734a29b40a15eef95bb8459ba
SHA256

cfe2877082e3d9c785b69a55e5c73ec1c6d248915997a14042f712acf10953b5
SHA512

ea5e3c9d0d0f0f78bf4e487e2a6e71e026a9091b0723e1e4ab8e08f7f3568231fd54d73864925c3874bd212b66bae4e6b0642195b58eaa68c569a8fd82a15e0c
SSDEEP

3072:UrV+TTp/Yq6JA45c/UULBhxSn+O5qvVn+Vp9cNecN5pEkXqSbo4nvSMgHOaISSkI:gVS/5458xLEn+vAVpoXRqSbokvSMgo/1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29d28fe2b592d29fba6fe17ac6c70a54

Files

29d28fe2b592d29fba6fe17ac6c70a54
.exe windows:5 windows x86 arch:x86

1c975734c4cb4a49ce69e0d0434b5649

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetUserObjectInformationA
wvsprintfA
InsertMenuA
SetForegroundWindow
SetRect
LoadIconA
SetWindowRgn
MonitorFromPoint
SetMenu
EndPaint
ClientToScreen
CharPrevA
CallWindowProcA
EnumThreadWindows
GetLastActivePopup
LoadBitmapW
RegisterClassW
GetMessageTime
EqualRect
SetMenuDefaultItem
GetParent
CharToOemA
DialogBoxIndirectParamA
GetTopWindow
PostMessageW
DrawTextA
CharLowerW
AttachThreadInput
SendMessageTimeoutA
SetScrollPos
CloseDesktop
DestroyMenu
GetUpdateRect
DestroyCursor
CharNextW
LoadStringA
LoadCursorW
UpdateWindow
GetClassLongA
CreateDialogParamW
IsWindowEnabled
PostMessageA
RegisterWindowMessageW
RegisterClassA
GetIconInfo
MonitorFromRect
RegisterClassExW
LookupIconIdFromDirectory
PostQuitMessage
RemovePropW
DeleteMenu
IsCharAlphaA
ToUnicodeEx
MapVirtualKeyW
GetWindowTextLengthW
GetUpdateRgn
SetDlgItemTextA
GetKeyNameTextW
GetWindowLongA
EnumChildWindows
GetForegroundWindow
TrackPopupMenu
GetWindowRect
BringWindowToTop
SetDlgItemTextW
CreateCursor
keybd_event
DrawFocusRect
GetDlgCtrlID
EnableMenuItem
GetWindowLongW
CharUpperBuffW
GetKeyState
ValidateRect
IsCharLowerA
DrawTextW
GetMenuStringA
mouse_event
CharUpperBuffA
UnionRect
DefWindowProcA
GetDCEx
PeekMessageA
AppendMenuA
EnableScrollBar
GetMenu
PostThreadMessageW
GetMenuCheckMarkDimensions
GetMenuItemCount
WaitMessage
OemToCharA
CheckRadioButton
KillTimer
GetDlgItem
DestroyIcon
GetClassInfoExA
SendDlgItemMessageA
DrawStateW
wsprintfA
HideCaret
CharNextA
IsChild
OpenDesktopW
SetScrollRange
GetClassNameW
GetNextDlgTabItem
AllowSetForegroundWindow
BeginDeferWindowPos
TranslateAcceleratorA
LoadImageA
HiliteMenuItem
SetTimer
TranslateMessage
SetWindowTextW
DispatchMessageA
GetSystemMenu
ScreenToClient
CheckDlgButton
FindWindowA
CharUpperW
DestroyWindow
InSendMessage
CharNextExA
SetMenuItemInfoW
DrawAnimatedRects
ReleaseDC
CopyRect
GetKeyboardLayout
CharPrevW
DefFrameProcW
ActivateKeyboardLayout
InvalidateRgn
SwitchToThisWindow
RegisterWindowMessageA
GetCaretPos
SetMenuItemBitmaps
CharLowerA
RegisterClassExA
SendInput
CharUpperA
SetWindowTextA
GetDC
IsWindowUnicode
GetWindowPlacement
GetMessageA
LoadCursorA
ShowWindow
DrawStateA
SendMessageTimeoutW
ShowScrollBar
SetRectEmpty
SetUserObjectInformationW
CreateMenu
InSendMessageEx
WaitForInputIdle
DrawMenuBar
CreateWindowExW
DialogBoxParamA
GrayStringW
EnableWindow

comctl32

ImageList_LoadImageW
ImageList_Write
ImageList_GetIcon
ImageList_Read
PropertySheetW
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Remove
ImageList_Draw

msvcrt

mbtowc
exit
wcschr
strchr
_controlfp
__set_app_type
__p__fmode
srand
time
strtok
toupper
iswspace
__p__commode
wcsncpy
gmtime
strtoul
getenv
putc
fseek
setlocale
free
strtol
strrchr
_amsg_exit
strstr
isxdigit
swprintf
_initterm
vswprintf
fgets
fputs
_ismbblead
_XcptFilter
_exit
localtime
towlower
qsort
wcscpy
wcstombs
mbstowcs
isalnum
wcstoul
gets
_cexit
__setusermatherr
__getmainargs
atoi
bsearch
islower
iswprint
isspace
strerror
strspn
iswxdigit
atol
wcsrchr
towupper
iswdigit
wcsstr

kernel32

GetStdHandle
FindCloseChangeNotification
MoveFileExA
GetModuleHandleA
CreateThread
GetSystemTime
ReleaseMutex
GetFullPathNameW
FlushFileBuffers
GlobalReAlloc
IsBadReadPtr
GlobalDeleteAtom
GlobalFlags
GetAtomNameW
GetStartupInfoW
SuspendThread
CreateFileMappingW
SetThreadContext
lstrcpynW
CreatePipe
SetCommMask
GetTimeFormatW
GetStringTypeExW
GetLocaleInfoW
GetOverlappedResult
ConnectNamedPipe
GetPriorityClass
GetFileAttributesExA
CreateSemaphoreW
SetPriorityClass
VirtualFree
GlobalHandle
GlobalUnlock
GlobalMemoryStatusEx
GetComputerNameW
GetNumberFormatA
SearchPathA
FindResourceExA
CompareStringW
SetThreadPriority
EnterCriticalSection
ResetEvent
FindNextFileW
CancelIo
GetSystemDirectoryA
DeviceIoControl
CreateNamedPipeW
CallNamedPipeW
EnumResourceNamesA
SearchPathW
GetThreadPriority
DeleteFileA
GetComputerNameA
CompareFileTime
GetNumberFormatW
SetTimerQueueTimer
GetModuleFileNameA
SetupComm
SetCurrentDirectoryW
AddAtomW
QueryDosDeviceW
WriteFile
SetHandleCount
FindFirstFileA
PulseEvent
SetHandleInformation
HeapLock
LocalUnlock
DisconnectNamedPipe
LCMapStringW
AddAtomA
LeaveCriticalSection
QueryPerformanceCounter
GetTempPathA
OpenEventW

gdi32

GetSystemPaletteUse
CreateFontW
TranslateCharsetInfo
GetRgnBox
BeginPath
EndPage
GetTextMetricsA
Polyline
PtVisible
UnrealizeObject
CreateDIBitmap
RoundRect
OffsetRgn
GetPaletteEntries
CreateFontA
PtInRegion
RemoveFontResourceW
CreateFontIndirectW
CreateFontIndirectA
CreateCompatibleBitmap
GetObjectW
CreateBitmapIndirect
RectInRegion
StartDocW
SetDIBits
SetBitmapBits
SetTextColor
EnumFontFamiliesW
RealizePalette
CreatePenIndirect
CreateDIBSection
ResizePalette
LineTo
SaveDC
CreateBrushIndirect
GetTextFaceW
ScaleWindowExtEx
WidenPath
Ellipse
CombineRgn
CreateDiscardableBitmap
GetTextExtentPointA
SetViewportOrgEx
EnumFontsW
GetWindowOrgEx
AddFontResourceW
CreateCompatibleDC
CreateBitmap
TextOutW
OffsetViewportOrgEx
IntersectClipRect
SelectObject
Polygon
SetBitmapDimensionEx
PathToRegion
SetLayout
SetWindowOrgEx
SetDIBColorTable
LPtoDP
GetBkMode
CreateRoundRectRgn
PolyBezier
StretchBlt
StartPage
CreateHalftonePalette

Exports

Exports

?CrtSemaphoreOriginal@@IJIPAGJNPAK@X

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.iat
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 109B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.virt
Size: - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c975734c4cb4a49ce69e0d0434b5649

Headers

File Characteristics

Imports

user32

comctl32

msvcrt

kernel32

gdi32

Exports

Exports

Sections

.text Size: 89KB - Virtual size: 88KB

.iat Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 109B

.data Size: 10KB - Virtual size: 9KB

.virt Size: - Virtual size: 45KB

.rsrc Size: 80KB - Virtual size: 80KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 89KB - Virtual size: 88KB

.iat
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 109B

.data
Size: 10KB - Virtual size: 9KB

.virt
Size: - Virtual size: 45KB

.rsrc
Size: 80KB - Virtual size: 80KB

.reloc
Size: 2KB - Virtual size: 1KB