42c81450f33d9ba21e2f256d6f4f94fc

Sharing

Copy URL

Twitter E-mail

General

Target

42c81450f33d9ba21e2f256d6f4f94fc
Size

140KB
MD5

42c81450f33d9ba21e2f256d6f4f94fc
SHA1

4de44318ce7f24ab34eb35231d6a7cbc9846ed18
SHA256

aa3a5df37e088138913108534e24bd40076d1e5dcaf5889edffd631e72b545ff
SHA512

15ead77193f508f18c82ebf29869e958fe3d2ac13d9afe232093f227d18ff801777efa9b8460a3b6970433bef57c940424884bf0ad9b90a8512a35131377a62e
SSDEEP

3072:uwaHZwuDb74RKiIChtuuoUvWJLa8jSSt50NIvXY1:uwNM74kUvWJ28jSSt50yv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42c81450f33d9ba21e2f256d6f4f94fc

Files

42c81450f33d9ba21e2f256d6f4f94fc
.exe windows:5 windows x86 arch:x86

10c9e4916dc0d2f59abd1cc6b9d3b313

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassW
OpenClipboard
UpdateWindow
ShowScrollBar
KillTimer
CloseClipboard
DrawIconEx
SetScrollRange
DrawCaption
DeferWindowPos
GetMessageA
GetMenuStringA
CharToOemA
GetMenuItemID
SetCursor
ClientToScreen
SetWindowsHookExA
ToAscii
PostMessageA
CallWindowProcW
IsWindowUnicode
EnumThreadWindows
GetDoubleClickTime
GetMenuState
EnumClipboardFormats
GetWindow
RemovePropA
SetDlgItemTextA
SetScrollInfo
ClipCursor
InsertMenuA
SetWindowTextA
GetCaretPos
IsRectEmpty
IntersectRect
DestroyWindow
OffsetRect
EnumChildWindows
MapVirtualKeyA
CharLowerBuffA
NotifyWinEvent
IsZoomed

kernel32

LoadLibraryW
TerminateThread
FileTimeToDosDateTime
OpenMutexA
CloseHandle
OutputDebugStringA
WaitForSingleObject
GetDateFormatA
GetCurrentProcessId
ReadFile
GetTempFileNameA
GetWindowsDirectoryA
lstrlenW
RemoveDirectoryA
CreateFileMappingA
TerminateProcess
IsValidLocale
FileTimeToSystemTime
MapViewOfFileEx
GetModuleHandleA
CreateEventA
lstrlenA
SetEndOfFile
LeaveCriticalSection
WaitForMultipleObjects
UnmapViewOfFile
CopyFileA
VirtualQueryEx
IsValidCodePage
TerminateProcess
GlobalAlloc

kbdstmsg

_Strxfrm
_Eps
_Tolower
_LInf
_LSinh
_FSinh

comctl32

ImageList_DragMove
ImageList_SetIconSize
ImageList_Replace
ImageList_LoadImageA
ImageList_Destroy

gdi32

GetNearestPaletteIndex
StretchDIBits
GetDeviceCaps
GetFontLanguageInfo
MoveToEx
GetBitmapBits
SetPixelV
GetCharWidthA
GetPaletteEntries
CreateHalftonePalette
CopyEnhMetaFileA
GetTextExtentPoint32W
EndDoc
Ellipse
SetROP2
CreateCompatibleDC
ExtTextOutA
DeleteDC
ExtCreateRegion
RectVisible
SetBrushOrgEx
SetTextCharacterExtra
SetAbortProc
GetCharABCWidthsA

ole32

CoUninitialize
RegisterDragDrop
CoTaskMemFree
CoInitialize
ReleaseStgMedium
CreateDataAdviseHolder

imm32

ImmGetVirtualKey

shell32

SHGetPathFromIDListA

wininet

InternetGoOnline

version

VerQueryValueA

oleaut32

VariantCopy

advapi32

RegSetValueExA
RegDeleteValueA

Sections

.text
Size: 116KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

10c9e4916dc0d2f59abd1cc6b9d3b313

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

kbdstmsg

comctl32

gdi32

ole32

imm32

shell32

wininet

version

oleaut32

advapi32

Sections

.text Size: 116KB - Virtual size: 120KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 17KB - Virtual size: 20KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 116KB - Virtual size: 120KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 17KB - Virtual size: 20KB

.rsrc
Size: 2KB - Virtual size: 4KB