f2c61473a204e5a6b55266a01fe335bca50de12a522e5b5269243398f110d45a

Sharing

Copy URL Twitter E-mail

General

Target

f2c61473a204e5a6b55266a01fe335bca50de12a522e5b5269243398f110d45a
Size

380KB
MD5

1675fc65d261562e72e737454856afe6
SHA1

f5f5c93e0649ad7a6009af629bd8570e012f6b02
SHA256

f2c61473a204e5a6b55266a01fe335bca50de12a522e5b5269243398f110d45a
SHA512

088dfe98b36a144644a8c9ea9a5198bf2781e54c8e4592c5dd3b7365e4597022066aea25dd2184235403e949647b964bafcf92049de93de3bf76fdbdf849d158
SSDEEP

6144:yptBEwgOWVqzE+SQ95kzDxi0X2/xFvn8m7B:ytBEwgVVqzh95k/xBXKvn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2c61473a204e5a6b55266a01fe335bca50de12a522e5b5269243398f110d45a

Files

f2c61473a204e5a6b55266a01fe335bca50de12a522e5b5269243398f110d45a
.exe windows x86

2fed141386a1ebbd177976322651a4ac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
GetFileType
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetThreadPriority
CreateThread
HeapReAlloc
GetACP
GetProfileStringA
CreateEventA
PurgeComm
CloseHandle
WaitForSingleObject
TerminateThread
SetEvent
WriteFile
ReadFile
SetCommTimeouts
GetCommTimeouts
SetCommState
BuildCommDCBA
lstrcatA
GetCommState
CreateFileA
LocalAlloc
lstrlenA
FormatMessageA
InterlockedDecrement
GetLastError
MultiByteToWideChar
LocalFree
GetVersionExA
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalSize
MulDiv
FreeLibrary
LoadLibraryA
GetWindowsDirectoryA
GetTickCount
GetProcAddress
GetCurrentThreadId
GetCurrentThread
lstrcmpiA
lstrcmpA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RaiseException
HeapAlloc
HeapFree
TerminateProcess
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
SetErrorMode
GetFileTime
GetFileSize
GetFileAttributesA
GetOEMCP
GetCPInfo
CopyFileA
SizeofResource
GetProcessVersion
WritePrivateProfileStringA
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GetProfileIntA
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
DuplicateHandle
lstrcpynA
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
lstrlenW
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalFree
LockResource
FindResourceA
LoadResource
GetModuleHandleA
SetLastError
GetModuleFileNameA
WideCharToMultiByte
InterlockedIncrement
GlobalAlloc
GlobalDeleteAtom
Sleep

user32

GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
GetSysColorBrush
GetClassNameA
GetDesktopWindow
CharUpperA
RegisterClipboardFormatA
DestroyMenu
LoadStringA
wvsprintfA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
SetFocus
AdjustWindowRectEx
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollPos
GetTopWindow
IsChild
WinHelpA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgCtrlID
CreateWindowExA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetForegroundWindow
SetForegroundWindow
SetWindowLongA
RegisterWindowMessageA
GetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
EndDialog
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
EndPaint
BeginPaint
GetWindowDC
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageA
GetActiveWindow
SendMessageA
MessageBoxA
wsprintfA
LoadIconA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
CallNextHookEx
ValidateRect
PeekMessageA
SetWindowsHookExA
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
PostQuitMessage
SetRectEmpty
ClientToScreen
WindowFromPoint
IsWindowVisible
GetClassLongA
PostThreadMessageA
CopyRect
GetDoubleClickTime
CopyIcon
GetCapture
ReleaseCapture
SetCapture
ClipCursor
SetTimer
InvertRect
GetFocus
GetMessagePos
IsClipboardFormatAvailable
GrayStringA
GetClientRect
AppendMenuA
GetSystemMenu
DrawIcon
GetSystemMetrics
IsIconic
EnableWindow
SystemParametersInfoA
ReleaseDC
GetDC
DrawTextA
InflateRect
DrawEdge
FrameRect
FillRect
GetSysColor
SetCursor
LoadCursorA
SetRect
DrawFrameControl
InvalidateRect
PtInRect
IsRectEmpty
OffsetRect
DispatchMessageA
TranslateMessage
GetParent
GetKeyState
IsWindow
PostMessageA
DefWindowProcA
GetClassInfoA
GetWindowRect
IntersectRect
KillTimer
ScreenToClient
GetCursorPos
TabbedTextOutA
GetMenuCheckMarkDimensions
MessageBeep

gdi32

RestoreDC
SelectObject
GetStockObject
SetBkColor
SetBkMode
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
IntersectClipRect
MoveToEx
LineTo
SaveDC
DeleteObject
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
GetMapMode
DPtoLP
GetTextColor
LPtoDP
CopyMetaFileA
DeleteDC
CreateBitmap
GetDIBits
SetDIBits
GetTextMetricsA
PatBlt
CreateFontA
GetObjectA
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreatePen
CreateCompatibleDC
CreateCompatibleBitmap
GetBkColor
BitBlt
GetDeviceCaps
GetCurrentObject
GetTextExtentPoint32A
GetTextExtentPointA
CreateFontIndirectA
CreateDIBitmap

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

ShellExecuteA

comctl32

ImageList_Draw
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ord17

oledlg

ord8

ole32

OleDuplicateData
CoTaskMemAlloc
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
CoTaskMemFree
ReleaseStgMedium
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
OleRun
CoInitialize
CoRegisterMessageFilter
CoRevokeClassObject
CreateStreamOnHGlobal
OleGetClipboard

olepro32

ord253

oleaut32

VariantInit
SysFreeString
VariantCopy
SysAllocString
VariantChangeType
SysAllocStringLen
SysAllocStringByteLen
VariantTimeToSystemTime
SysStringLen
GetErrorInfo
VariantClear

Sections

.text
Size: 280KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2fed141386a1ebbd177976322651a4ac

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 280KB - Virtual size: 276KB

.rdata Size: 60KB - Virtual size: 56KB

.data Size: 12KB - Virtual size: 28KB

.rsrc Size: 24KB - Virtual size: 22KB

.text
Size: 280KB - Virtual size: 276KB

.rdata
Size: 60KB - Virtual size: 56KB

.data
Size: 12KB - Virtual size: 28KB

.rsrc
Size: 24KB - Virtual size: 22KB