84cd4d896748e2d52e2e22d1a4b9ee46[.]bin

Sharing

Copy URL

Twitter E-mail

General

Target

84cd4d896748e2d52e2e22d1a4b9ee46.bin
Size

14.4MB
MD5

84cd4d896748e2d52e2e22d1a4b9ee46
SHA1

04037ff2c6e6b99643f023817f906c791dcb3ef8
SHA256

c5a470cdf6f57125a8671f6b8843149cc78ccbc1a7bc615f34b23d9f241312bf
SHA512

108b863a627ba9e59016a46b0a74147c6e95edc7882644890f10174e759959acda510f828edc6c503361be8623f48ae5f15507214bb4c9e39d66a01984000d5b
SSDEEP

196608:VVqsU/IkSs/lVE8lnpXsMZWZQy0GvJ4Z08RBCxXB7q3oWFCVcC3XBRW:V3JqEGRdZGQy0Z08RBCxXJq3oANWXLW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84cd4d896748e2d52e2e22d1a4b9ee46.bin

Files

84cd4d896748e2d52e2e22d1a4b9ee46.bin
.exe windows x86

10302b6c7da57ae669f2705b8572bd36

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Create
ImageList_Draw
ord413
ord412
ord410
ImageList_Destroy
CreatePropertySheetPageW
ImageList_GetIconSize
ImageList_AddMasked
InitCommonControlsEx
ImageList_BeginDrag
ImageList_DragMove
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_EndDrag

kernel32

CreateMutexW
LocalAlloc
LocalFree
SetLastError
HeapAlloc
HeapFree
GetProcessHeap
GetNativeSystemInfo
VirtualAlloc
VirtualProtect
VirtualFree
FreeLibrary
GetProcAddress
LoadLibraryA
IsBadReadPtr
CreateFileW
FlushFileBuffers
GetFileAttributesW
GetFileSize
ReadFile
WriteFile
GetTempPathW
CloseHandle
Sleep
GetSystemTimeAsFileTime
SystemTimeToFileTime
GetLogicalDrives
QueryPerformanceCounter
QueryPerformanceFrequency
MulDiv
GetModuleHandleW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetEnvironmentVariableA
SetUnhandledExceptionFilter
LoadLibraryExA
WriteConsoleW
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
HeapSize
SetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
LCMapStringW
DecodePointer
GetConsoleOutputCP
ReadConsoleW
SetFilePointerEx
SetEnvironmentVariableW
FreeLibraryAndExitThread
GetModuleHandleExW
PeekNamedPipe
EncodePointer
LoadLibraryExW
TlsFree
RtlUnwind
InitializeCriticalSectionEx
GetStartupInfoW
InitializeSListHead
IsProcessorFeaturePresent
UnhandledExceptionFilter
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
GetConsoleMode
CreateSemaphoreW
GetProcessAffinityMask
ReleaseSemaphore
MoveFileW
GetFileType
SetEndOfFile
CreateHardLinkW
RemoveDirectoryW
DeviceIoControl
SetThreadPriority
SetConsoleCtrlHandler
FoldStringW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
TzSpecificLocalTimeToSystemTime
IsDBCSLeadByte
GetCPInfo
CompareStringW
AreFileApisANSI
LocalFileTimeToFileTime
FileTimeToDosDateTime
FileTimeToLocalFileTime
RaiseException
OutputDebugStringW
GetSystemDirectoryW
AllocConsole
VerifyVersionInfoW
CreateProcessW
VerSetConditionMask
SetCurrentDirectoryW
GetCurrentDirectoryW
GetStdHandle
SetConsoleScreenBufferSize
GetConsoleScreenBufferInfo
OpenThread
VirtualQuery
FormatMessageA
GetThreadContext
GetModuleHandleA
ResumeThread
SuspendThread
Thread32First
Thread32Next
ReadDirectoryChangesW
QueueUserAPC
DeleteFileW
GetUserDefaultUILanguage
LoadLibraryW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
SetErrorMode
IsDebuggerPresent
GetFullPathNameW
GetTimeFormatW
GetDateFormatW
MoveFileExW
FormatMessageW
SetFileAttributesW
FindResourceW
SizeofResource
LockResource
LoadResource
SetThreadExecutionState
GlobalAddAtomW
GlobalDeleteAtom
GetTickCount
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
GetCurrentThread
CopyFileW
GetSystemTime
ExitProcess
GetCommandLineW
Process32NextW
Process32FirstW
OpenProcess
GetLastError
FindNextFileW
FindFirstFileW
FindClose
Module32NextW
Module32FirstW
CreateToolhelp32Snapshot
TlsAlloc
ResetEvent
ExitThread
WaitForMultipleObjectsEx
CompareFileTime
CancelIo
GetFileTime
GetDriveTypeW
GetLocaleInfoA
GetVersionExW
GetSystemInfo
GlobalMemoryStatusEx
GetCurrentThreadId
CreateThread
TerminateProcess
GetCurrentProcessId
GetCurrentProcess
GetTempFileNameW
GetFileAttributesExW
GetFileInformationByHandle
GetVolumePathNameW
GetModuleFileNameW
SetFileTime
GetPrivateProfileIntW
GetShortPathNameW
GetLongPathNameW
WritePrivateProfileStringW
GetFileSizeEx
GetLocaleInfoW
WideCharToMultiByte
GetWindowsDirectoryW
lstrcpynW
GetFullPathNameA
CreateEventW
WaitForSingleObject
SetEvent
HeapReAlloc
HeapDestroy
HeapCreate
GetACP
MultiByteToWideChar
CreateDirectoryW
GetEnvironmentVariableW
GetExitCodeProcess
SetFilePointer
TlsSetValue
ReleaseMutex
TlsGetValue
OutputDebugStringA
CreateEventA
GetModuleFileNameA

user32

DefWindowProcW
SystemParametersInfoW
GetSystemMetrics
ShowWindow
CreateAcceleratorTableW
GetSysColor
SendMessageW
IsIconic
LoadAcceleratorsW
GetCursorPos
CharLowerW
SetClassLongW
ShowCaret
HideCaret
IsCharAlphaNumericW
ValidateRect
GetUpdateRect
LoadBitmapW
GetWindowThreadProcessId
FindWindowExW
SetParent
AllowSetForegroundWindow
TranslateAcceleratorW
GetMessageW
GetAncestor
ScreenToClient
MapVirtualKeyW
IsCharUpperW
CharLowerBuffW
IsWindow
GetWindow
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
SetDlgItemTextW
EndDialog
DialogBoxIndirectParamW
DialogBoxParamW
SetActiveWindow
MoveWindow
GetFocus
EmptyClipboard
CloseClipboard
OpenClipboard
ReuseDDElParam
UnpackDDElParam
GetWindowTextLengthW
IsWindowUnicode
ShowWindowAsync
LoadCursorW
DrawTextW
CheckMenuRadioItem
DrawTextExW
SetMenuItemInfoW
ModifyMenuW
AppendMenuA
InsertMenuW
GetMenuItemID
SetMenu
GetMenu
IsDialogMessageW
MessageBoxA
EnableWindow
MsgWaitForMultipleObjects
GetDlgItem
PostQuitMessage
PeekMessageW
DispatchMessageW
TranslateMessage
GetDesktopWindow
MessageBeep
UpdateWindow
MessageBoxW
CreateMenu
LoadIconW
BringWindowToTop
wsprintfA
DestroyWindow
DrawIconEx
FindWindowW
GetParent
GetClassLongW
SetWindowLongW
GetWindowLongW
OffsetRect
MapWindowPoints
GetWindowRect
GetClientRect
RedrawWindow
InvalidateRgn
InvalidateRect
GetWindowDC
GetForegroundWindow
SetMenuDefaultItem
CopyImage
SetForegroundWindow
DdeFreeStringHandle
DdeDisconnect
CheckMenuItem
SetClipboardData
EndDeferWindowPos
DdeFreeDataHandle
DdeClientTransaction
DdeUninitialize
DdeInitializeW
TrackMouseEvent
ClientToScreen
GetMonitorInfoW
GetWindowInfo
DdeConnect
DdeCreateStringHandleW
BeginDeferWindowPos
DestroyCursor
EnumDisplayMonitors
MonitorFromWindow
MonitorFromRect
GetKeyState
AdjustWindowRectEx
DeferWindowPos
SetLayeredWindowAttributes
IsWindowEnabled
WindowFromDC
GetMessagePos
SetPropW
RemovePropW
GetPropW
PtInRect
OemToCharA
CharToOemA
OemToCharBuffA
CharUpperW
CharToOemBuffW
DrawTextA
GetMenuItemInfoW
TrackPopupMenuEx
TrackPopupMenu
RemoveMenu
AppendMenuW
GetMenuItemCount
EnableMenuItem
DestroyMenu
CreatePopupMenu
GetSystemMenu
IsZoomed
IsWindowVisible
SetFocus
SetWindowPos
CreateWindowExW
RegisterClassExW
CallWindowProcW
DrawFrameControl
DrawEdge
GetScrollInfo
SetScrollInfo
FillRect
GetCursor
SetCursor
ShowScrollBar
GetScrollPos
EndPaint
BeginPaint
ReleaseDC
GetDC
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetCapture
PostMessageW

gdi32

CreateCompatibleBitmap
SetROP2
SetDIBColorTable
CreateFontIndirectA
GetTextMetricsA
GetClipRgn
SetGraphicsMode
GetDIBColorTable
GetDIBits
SetStretchBltMode
GetTextMetricsW
SetDIBits
SetDIBitsToDevice
ExtTextOutW
CreatePatternBrush
CreateBitmap
GetObjectW
GetObjectA
SetWorldTransform
IntersectClipRect
CreateDIBSection
TextOutW
SetLayout
SelectClipRgn
RoundRect
GetTextExtentPoint32W
CreateRoundRectRgn
BitBlt
AbortDoc
EndPage
StartPage
EndDoc
StartDocW
SetMapMode
CreateDCW
GetDeviceCaps
MoveToEx
SetBkColor
LineTo
SetBkMode
CreateFontIndirectW
SetViewportOrgEx
ExtSelectClipRgn
GetClipBox
ExcludeClipRect
CreateRectRgn
SetBrushOrgEx
SetTextColor
StretchBlt
SelectObject
Rectangle
PatBlt
GetStockObject
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
CreateCompatibleDC

winspool.drv

DeviceCapabilitiesW
EnumPrintersW
OpenPrinterW
GetPrinterW
DocumentPropertiesW
ClosePrinter
ord203

comdlg32

GetSaveFileNameW
GetOpenFileNameW
PrintDlgExW
CommDlgExtendedError

advapi32

RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyW
RegQueryValueExW
InitializeSecurityDescriptor
CheckTokenMembership
RegCloseKey
RegOpenKeyA
SetFileSecurityW
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenProcessToken
CryptAcquireContextW
CryptCreateHash
CryptHashData
CryptDestroyHash
CryptGetHashParam
CryptReleaseContext
SetSecurityDescriptorDacl
AllocateAndInitializeSid
RegCreateKeyExW
RegSetKeySecurity
FreeSid

shell32

SHFileOperationW
DragQueryPoint
SHAddToRecentDocs
SHChangeNotify
SHGetFolderPathW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
SHGetFileInfoW
DragFinish
DragQueryFileW
SHGetDesktopFolder
ShellExecuteExW
SHBindToParent
DragAcceptFiles

ole32

CoCreateInstance
CoUninitialize
CoTaskMemFree
CreateStreamOnHGlobal
ReleaseStgMedium
CoGetMalloc
OleInitialize
OleUninitialize
CoTaskMemAlloc
CoInitialize

oleaut32

VariantClear
SysFreeString
SafeArrayCreateVector
SafeArrayPutElement
SysAllocString
VariantInit

Sections

.text
Size: 4.5MB - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data:
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.7MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

10302b6c7da57ae669f2705b8572bd36

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 4.5MB - Virtual size: 4.5MB

.data: Size: 5.4MB - Virtual size: 5.4MB

.rdata Size: 2.4MB - Virtual size: 2.4MB

.data Size: 1.7MB - Virtual size: 2.1MB

_RDATA Size: 512B - Virtual size: 48B

.rsrc Size: 132KB - Virtual size: 131KB

.reloc Size: 204KB - Virtual size: 203KB

.text
Size: 4.5MB - Virtual size: 4.5MB

.data:
Size: 5.4MB - Virtual size: 5.4MB

.rdata
Size: 2.4MB - Virtual size: 2.4MB

.data
Size: 1.7MB - Virtual size: 2.1MB

_RDATA
Size: 512B - Virtual size: 48B

.rsrc
Size: 132KB - Virtual size: 131KB

.reloc
Size: 204KB - Virtual size: 203KB