42ab64a3d95b9ba4834f828751ea6bde

Sharing

Copy URL Twitter E-mail

General

Target

42ab64a3d95b9ba4834f828751ea6bde
Size

488KB
MD5

42ab64a3d95b9ba4834f828751ea6bde
SHA1

ea7479da77bede0ae802075bfdf4904cfb20e280
SHA256

78a39f5b055a52ba3961a0126119f8c98687f5d9a12054138babe277cb4a8bc4
SHA512

ea73cebcb5c07f57c6bcd906082761b06f76cbe7bf8f18e4692a7ead0fde5639a63969d2cbcfdc49466abb8a5dcd81d049f0be18b75eec09124789f3b2c8edaa
SSDEEP

6144:+10VG4xXFQy9imsMqpZ1nFirgnOFOx+meYX1huX05uyjmFy26Jm4BpJJXP:+10Vbx1Qy9rqNFiJFOxJeg1cX08ujX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42ab64a3d95b9ba4834f828751ea6bde

Files

42ab64a3d95b9ba4834f828751ea6bde
.exe windows:4 windows

268f16b62d24600228bd9140dd3f8669

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

BeginPath
SetViewportOrgEx
CreateBitmap
GetDeviceCaps
OffsetViewportOrgEx
DeleteObject
PtVisible
AbortPath
SetTextColor
SetViewportExtEx
RestoreDC
ScaleViewportExtEx
GetObjectW
SelectObject
SetBkColor
GetClipBox
GetPath
RectVisible
Escape
ScaleWindowExtEx
CreatePen
SetWindowExtEx
SaveDC
CloseFigure
EndPath
SetMapMode
GetStockObject
AddFontResourceW
SetBkMode
GetTextMetricsW
GetTextExtentPoint32W
CreateFontIndirectW
CreateDIBSection
TranslateCharsetInfo

shell32

SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteW
Shell_NotifyIconW

kernel32

GetUserDefaultLCID
FindResourceW
SetFileAttributesW
SetFileTime
CreateSemaphoreW
LockFile
FreeLibraryAndExitThread
DisableThreadLibraryCalls
IsProcessorFeaturePresent
SetLastError
SetThreadPriority
GetSystemDefaultUILanguage
FormatMessageW
LockResource
DeleteFileW
GetTempFileNameW
GetStartupInfoW
WriteConsoleW
SystemTimeToFileTime
GetFileAttributesW
HeapAlloc
FindClose
InterlockedIncrement
GlobalLock
IsDebuggerPresent
MoveFileW
FindFirstFileW
MulDiv
LoadResource
lstrcmpW
HeapSize
GetProcessAffinityMask
SetEndOfFile
GetModuleHandleW
CreateEventW
CreateTimerQueueTimer
UnregisterWait
WaitForSingleObjectEx
SetFilePointer
InitializeSListHead
GetPrivateProfileStringW
EnumSystemLocalesW
IsDBCSLeadByte
FileTimeToSystemTime
ExitProcess
ChangeTimerQueueTimer
FileTimeToLocalFileTime
GetLocaleInfoW
GetConsoleCP
InterlockedDecrement
IsValidLocale
CreateTimerQueue
GlobalAlloc
GetStringTypeW
OutputDebugStringW
GetPrivateProfileIntW
LocalReAlloc
lstrlenA
GetFullPathNameW
FreeLibrary
HeapReAlloc
FreeResource
CreateThread
GetFileAttributesExW
InterlockedPushEntrySList
IsDBCSLeadByteEx
FreeEnvironmentStringsW
DuplicateHandle
GetModuleHandleA
GetProcessHeap
DeleteTimerQueueTimer
OutputDebugStringA
GetCommandLineA
TlsSetValue
GetFileType
GetEnvironmentStringsW
GetCPInfo
GetTempPathW
RemoveDirectoryW
GetCurrentThreadId
GetCurrentThread
lstrcmpA
AreFileApisANSI
InterlockedFlushSList
Sleep
IsValidCodePage
GetThreadTimes
GetCurrentProcess
GetACP
GlobalReAlloc
LCMapStringW
SizeofResource
GlobalDeleteAtom
SignalObjectAndWait
SetUnhandledExceptionFilter
UnregisterWaitEx
CloseHandle
TlsGetValue
HeapQueryInformation
GetExitCodeThread
GetStdHandle
WaitForSingleObject
GetVolumeInformationW
GetThreadPriority
SetStdHandle
LocalFileTimeToFileTime
ReleaseSemaphore
FindCloseChangeNotification
GetSystemDirectoryW
GlobalFlags
GetProcAddress
SetFilePointerEx
SwitchToThread
WritePrivateProfileStringW
SystemTimeToTzSpecificLocalTime
InterlockedPopEntrySList
LocalAlloc
LoadLibraryA
GetNumaHighestNodeNumber
GetFileTime
lstrlenW
UnlockFile
GlobalFree
RegisterWaitForSingleObject
DeleteCriticalSection
VirtualProtect
EnterCriticalSection
SetThreadAffinityMask
InitializeCriticalSectionAndSpinCount
RaiseException
GetUserDefaultUILanguage
GetLongPathNameW
HeapFree
GlobalFindAtomW
GetFileSizeEx
GlobalHandle
GetShortPathNameW
FindNextFileW
GlobalAddAtomW
GetCurrentDirectoryW
LeaveCriticalSection
GetLastError
VirtualFree
QueryDepthSList
CreateFileW
QueryPerformanceCounter
GetModuleFileNameA
GetModuleHandleExW
CreateHardLinkW
GlobalUnlock
GetFileSize
TzSpecificLocalTimeToSystemTime
LocalFree
SetEvent
LoadLibraryW
ReadFile
CreateDirectoryW
GetModuleFileNameW
FindFirstChangeNotificationW
FindNextChangeNotification
InitializeCriticalSection
ReadConsoleW
WriteFile
RtlUnwind
TlsFree

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

shlwapi

PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW
PathIsUNCW
UrlUnescapeW
PathFindFileNameW

oleaut32

VariantChangeType
OleCreatePropertyFrame
SysFreeString
SysStringLen
VarBstrCmp
SysAllocString
VariantClear
VariantInit

ole32

CoInitializeEx
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromString
CoFreeUnusedLibraries
CoTaskMemRealloc
StringFromGUID2
CoUninitialize
CoCreateInstance
CoCreateGuid

advapi32

RegDeleteKeyW
RegCreateKeyW
RegOpenKeyExW
RegEnumKeyW
RegSetValueW
RegQueryValueExW
RegEnumKeyExW
RegQueryValueW
RegDeleteValueW
RegCloseKey

user32

GetWindowTextLengthW
CreateDialogIndirectParamW
GetClientRect
GetFocus
LoadBitmapW
BeginPaint
UpdateWindow
EqualRect
SetMenu
IsDialogMessageW
OffsetRect
DrawTextW
RemovePropW
CharLowerBuffW
SetMenuItemInfoW
SetCursor
GetWindowLongW
IsWindowVisible
DrawTextExW
CharLowerW
SetMenuItemBitmaps
SetPropW
SetWindowsHookExW
GetMessageTime
GetClassNameW
InvalidateRect
IsRectEmpty
GetWindow
PtInRect
GetMonitorInfoW
TabbedTextOutW
CharUpperW
GrayStringW
OemToCharBuffA
LoadCursorW
GetDC
EnableWindow
ScreenToClient
SetTimer
RegisterWindowMessageW
GetDlgCtrlID
AdjustWindowRectEx
WinHelpW
GetNextDlgTabItem
OemToCharA
InflateRect
EndDialog
CreatePopupMenu
GetSysColor
MonitorFromWindow
ValidateRect
RealChildWindowFromPoint
GetWindowRect
SetWindowPos
UnionRect
IsWindowEnabled
GetMenu
GetWindowThreadProcessId
TranslateMessage
SetDlgItemTextW
EnableMenuItem
PostQuitMessage
GetMenuItemCount
GetClassInfoExW
CreateDialogParamW
DestroyIcon
GetLastActivePopup
MessageBoxW
GetTopWindow
GetDlgItem
GetSubMenu
TrackPopupMenu
PeekMessageW
CheckMenuItem
ShowWindow
EndPaint
RegisterClassW
SetWindowTextW
GetMenuCheckMarkDimensions
GetClassLongW
MapWindowPoints
GetMessagePos
SetRectEmpty
SetRect
GetDesktopWindow
GetMessageW
DestroyMenu
IntersectRect
GetClassInfoW
CreateWindowExW
GetSystemMetrics
GetPropW
CallNextHookEx
SetActiveWindow
GetMenuItemID
GetForegroundWindow
LoadIconW
CopyRect
GetCapture
GetCursorPos
KillTimer
SetWindowLongW
ReleaseDC
GetKeyState
IsWindow
DispatchMessageW
PostMessageW
CharToOemA
GetSysColorBrush
CharToOemBuffW
SendDlgItemMessageA
SetForegroundWindow
ClientToScreen
GetParent
SetFocus

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 238KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

268f16b62d24600228bd9140dd3f8669

Headers

File Characteristics

Imports

gdi32

shell32

kernel32

winspool.drv

shlwapi

oleaut32

ole32

advapi32

user32

oleacc

Sections

.text Size: 77KB - Virtual size: 80KB

.data Size: 238KB - Virtual size: 237KB

.rdata Size: 124KB - Virtual size: 123KB

.bss Size: - Virtual size: 16KB

.idata Size: 13KB - Virtual size: 12KB

.CRT Size: 1024B - Virtual size: 768B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 77KB - Virtual size: 80KB

.data
Size: 238KB - Virtual size: 237KB

.rdata
Size: 124KB - Virtual size: 123KB

.bss
Size: - Virtual size: 16KB

.idata
Size: 13KB - Virtual size: 12KB

.CRT
Size: 1024B - Virtual size: 768B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 32KB - Virtual size: 32KB