e31e931ccbb008dd5fd0fe430cbb5ba14bcffa46640f4751bcc72d70232ca732

Sharing

Copy URL

Twitter E-mail

General

Target

e31e931ccbb008dd5fd0fe430cbb5ba14bcffa46640f4751bcc72d70232ca732
Size

545KB
MD5

73a04fa96283729b1115149872e8eb91
SHA1

a43856a1efe1e2b74eacf3e9ceb1ea781b4d9e49
SHA256

e31e931ccbb008dd5fd0fe430cbb5ba14bcffa46640f4751bcc72d70232ca732
SHA512

6a9c2a511ef9b90954bd0cc7ac024d40e5bb58f15fcf67d29e2cc3df684b4e74f8b673a2fdfdae15670d13a9a9559073aa8e7555994174aa97129812cf2c9a39
SSDEEP

6144:GRg1VrUJCqSM25Wmw24KRlMAFaVnDKzDevFl3HGcOm2qcVM5QCsITLzXa206T/wC:ZVrUJLmN4VAY3dl3HGcOmg8XrXjM2E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e31e931ccbb008dd5fd0fe430cbb5ba14bcffa46640f4751bcc72d70232ca732

Files

e31e931ccbb008dd5fd0fe430cbb5ba14bcffa46640f4751bcc72d70232ca732
.exe windows x86

5cec68410b92739f564bfa12ff84a5f9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentProcessId
GetModuleFileNameA
GetThreadLocale
FileTimeToSystemTime
lstrcmpA
InterlockedExchange
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
GetFileTime
GetTempFileNameA
GetFullPathNameA
GetDiskFreeSpaceA
GetModuleFileNameW
GlobalFlags
GetModuleHandleW
InterlockedIncrement
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
CompareStringA
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
MoveFileA
GetStringTypeExA
lstrcmpiA
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetVolumeInformationA
GetShortPathNameA
FileTimeToLocalFileTime
GetFileAttributesExA
GetFileSizeEx
SetErrorMode
GetTickCount
RtlUnwind
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitProcess
HeapFree
HeapAlloc
GetCommandLineA
GetStartupInfoA
VirtualQuery
HeapReAlloc
HeapSize
GetACP
IsValidCodePage
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetStdHandle
InitializeCriticalSectionAndSpinCount
HeapCreate
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
CompareStringW
SetEnvironmentVariableA
lstrcmpW
GetModuleHandleA
GetVersionExA
GetCurrentThreadId
SetLastError
GlobalAlloc
FormatMessageA
LocalFree
MultiByteToWideChar
MulDiv
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
WriteFile
SetFileTime
GetCurrentDirectoryA
CreateDirectoryA
LocalFileTimeToFileTime
lstrlenA
lstrcatA
SystemTimeToFileTime
ReadFile
SetFilePointer
lstrcpyA
Sleep
GetFileAttributesA
LoadLibraryA
GetProcAddress
FreeLibrary
CreateFileA
UnmapViewOfFile
CloseHandle
FindFirstFileA
FindClose
GetLastError
DeleteFileA
GetSystemInfo
VirtualAlloc
VirtualProtect
VirtualFree
InterlockedDecrement
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
TlsFree
SizeofResource

user32

GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
InflateRect
IsZoomed
PostQuitMessage
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
GetMenuItemInfoA
GetSysColorBrush
LoadCursorA
IsRectEmpty
SetRect
SetTimer
KillTimer
WindowFromPoint
DestroyIcon
CharUpperA
CharNextA
CopyAcceleratorTableA
InvalidateRgn
SetCapture
GetNextDlgGroupItem
MessageBeep
UnregisterClassA
RegisterClipboardFormatA
PostThreadMessageA
LoadAcceleratorsA
InvalidateRect
InsertMenuItemA
CreatePopupMenu
SetRectEmpty
BringWindowToTop
TranslateAcceleratorA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
EnableMenuItem
CheckMenuItem
RegisterWindowMessageA
LoadIconA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
SetMenu
ClientToScreen
UpdateWindow
PostMessageA
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
CopyRect
DefWindowProcA
CallWindowProcA
PtInRect
GetMenu
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetFocus
SetWindowPos
ShowWindow
MoveWindow
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetWindowTextLengthA
GetWindowTextA
GetWindow
SetFocus
SetWindowsHookExA
CallNextHookEx
GetMessageA
SendMessageA
EnableWindow
SetWindowLongA
GetWindowLongA
TranslateMessage
DispatchMessageA
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
GetMenuState
GetMenuItemID
GetMenuItemCount
GetDesktopWindow
GetActiveWindow
SetActiveWindow
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetSubMenu
LoadMenuA
GetClientRect
wsprintfA
FillRect
UnpackDDElParam
ReuseDDElParam
DestroyMenu
GetWindowThreadProcessId
SetCursor
SetForegroundWindow
ReleaseCapture
EndDialog
GetNextDlgTabItem
GetParent
IsWindowEnabled
GetDlgItem
IsWindow
DestroyWindow
CreateDialogIndirectParamA
RegisterClassA

shell32

DragQueryFileA
ExtractIconA
SHGetFileInfoA
ShellExecuteA
DragFinish

oleaut32

SysAllocStringLen
SysAllocStringByteLen
SafeArrayDestroy
VarDateFromStr
VarUdateFromDate
VariantChangeType
VariantCopy
SysFreeString
SysAllocString
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantClear
VariantInit
VarBstrFromDate
OleCreateFontIndirect
GetErrorInfo
SysStringLen

shlwapi

PathFindFileNameA
PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathRemoveFileSpecW

oledlg

ord8

urlmon

URLDownloadToFileA

wininet

DeleteUrlCacheEntry
InternetCheckConnectionA
InternetCloseHandle
InternetOpenUrlA
InternetOpenA

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

CreateSolidBrush
CreateFontIndirectA
CreateRectRgnIndirect
GetTextMetricsA
GetTextExtentPoint32A
GetBkColor
GetTextColor
GetRgnBox
GetMapMode
GetClipBox
SetTextColor
SetBkColor
GetObjectA
GetStockObject
CreateCompatibleBitmap
CreateCompatibleDC
SaveDC
RestoreDC
SetBkMode
SetMapMode
ExcludeClipRect
IntersectClipRect
DeleteObject
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
CreateBitmap
GetDeviceCaps
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
ScaleViewportExtEx

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

comdlg32

GetFileTitleA

advapi32

RegSetValueExA
RegCreateKeyA
RegCreateKeyExA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueA
RegCloseKey

ole32

CoRegisterMessageFilter
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleFlushClipboard
CLSIDFromString
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CoInitializeEx
OleIsCurrentClipboard
CoUninitialize
CLSIDFromProgID
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CoRevokeClassObject

Sections

.text
Size: 373KB - Virtual size: 372KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5cec68410b92739f564bfa12ff84a5f9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shell32

oleaut32

shlwapi

oledlg

urlmon

wininet

oleacc

gdi32

winspool.drv

comdlg32

advapi32

ole32

Sections

.text Size: 373KB - Virtual size: 372KB

.rdata Size: 88KB - Virtual size: 87KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 29KB - Virtual size: 28KB

.reloc Size: 42KB - Virtual size: 41KB

.text
Size: 373KB - Virtual size: 372KB

.rdata
Size: 88KB - Virtual size: 87KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 29KB - Virtual size: 28KB

.reloc
Size: 42KB - Virtual size: 41KB