206360fec3fc54b772881f91cad225a2ccac786811c403fab2981acbd975ee4a

Sharing

Copy URL Twitter E-mail

General

Target

206360fec3fc54b772881f91cad225a2ccac786811c403fab2981acbd975ee4a
Size

1020KB
MD5

7d1710ce714cd99fd66c01d415eea705
SHA1

0da44109557eb3889f817e3065207ecc4a3be345
SHA256

206360fec3fc54b772881f91cad225a2ccac786811c403fab2981acbd975ee4a
SHA512

0910dae7c2686e48e906411f099672c28976e0903952fd83d0f0fb22f211653e0199c82704e3ac20f421d8c8dc47cda6722a3746848ee1b32fa3625adc009eee
SSDEEP

12288:aXkvN4TOe0fE9i8GAvbnFa5nCmtKjH0H/iicZlGzd7U8N1jSN07DsXyx:aXQe0fE9YAD45nPoUH//cZiO8N1jSN0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
206360fec3fc54b772881f91cad225a2ccac786811c403fab2981acbd975ee4a

Files

206360fec3fc54b772881f91cad225a2ccac786811c403fab2981acbd975ee4a
.exe windows x86

7c33c7ddda720fe1277ac048ea2e7e23

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
CompareStringA
IsBadCodePtr
IsBadReadPtr
Sleep
GetStringTypeW
GetStringTypeA
LCMapStringW
IsBadWritePtr
VirtualAlloc
VirtualFree
LCMapStringA
SetUnhandledExceptionFilter
SetHandleCount
GetEnvironmentVariableA
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
GetFileType
SetStdHandle
ExitThread
HeapReAlloc
TerminateProcess
GetLocalTime
CreateThread
GetACP
RaiseException
GetSystemTime
GetTimeZoneInformation
GetStartupInfoA
ExitProcess
GetCommandLineA
RtlUnwind
SetEnvironmentVariableA
CreateDirectoryA
SystemTimeToFileTime
SetErrorMode
LocalFileTimeToFileTime
GetFileSize
GetOEMCP
CopyFileA
GlobalSize
TlsGetValue
GetCPInfo
GetProcessVersion
GlobalReAlloc
LocalReAlloc
TlsSetValue
TlsAlloc
TlsFree
GlobalHandle
GetShortPathNameA
SizeofResource
GlobalFlags
FindFirstFileA
GetThreadLocale
GetStringTypeExA
MoveFileA
FindClose
DeleteFileA
LockFile
SetEndOfFile
UnlockFile
WriteFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
ReadFile
CreateFileA
GetFileTime
DuplicateHandle
GetDiskFreeSpaceA
GetTempFileNameA
SetFileTime
GetFullPathNameA
GlobalAlloc
GetFileAttributesA
GetTickCount
SuspendThread
GetCurrentThread
CreateEventA
SetEvent
SetThreadPriority
ResumeThread
MulDiv
WaitForSingleObject
CloseHandle
LeaveCriticalSection
lstrcmpA
SetLastError
LocalAlloc
DeleteCriticalSection
InitializeCriticalSection
FormatMessageA
lstrcpynA
EnterCriticalSection
FileTimeToLocalFileTime
LocalFree
GetModuleFileNameA
lstrlenW
CreateMutexA
SetCurrentDirectoryA
GetLastError
GetCurrentThreadId
GetTempPathA
GetVersionExA
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
GetVolumeInformationA
LoadResource
FindResourceA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
GetProcAddress
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
lstrcpyA
lstrcatA
GetVersion
FreeLibrary
LoadLibraryA
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
SearchPathA
GetProfileStringA
GetProfileIntA
VirtualProtect
FindResourceExA
GetSystemTimeAsFileTime
GetCurrentDirectoryA
FileTimeToSystemTime

user32

RegisterClassA
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
GetScrollRange
SetScrollRange
GetMenu
GetMenuItemCount
CharNextA
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetClassInfoA
GetWindowTextA
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
DeferWindowPos
EqualRect
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
GetDlgCtrlID
ShowScrollBar
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
CopyAcceleratorTableA
ScreenToClient
IsWindow
GetSystemMetrics
DestroyIcon
DeleteMenu
LockWindowUpdate
GetDCEx
RemoveMenu
GetMenuStringA
AppendMenuA
InsertMenuA
GetSysColorBrush
GetClassNameA
InflateRect
BeginDeferWindowPos
CharUpperA
RegisterClipboardFormatA
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
GetMessageA
TranslateMessage
ValidateRect
LoadStringA
SetRect
WindowFromPoint
UnionRect
SetScrollInfo
GetScrollInfo
ScrollWindow
IsWindowVisible
EndDeferWindowPos
SetWindowPos
RegisterWindowMessageA
FindWindowA
IsRectEmpty
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
DestroyMenu
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
AdjustWindowRectEx
SetFocus
DispatchMessageA
PeekMessageA
MapWindowPoints
SendDlgItemMessageA
CheckDlgButton
ClientToScreen
ReleaseDC
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
wvsprintfA
InvertRect
GetDesktopWindow
PostThreadMessageA
GetSystemMenu
SetParent
GetActiveWindow
GetNextDlgGroupItem
SetActiveWindow
GetClassLongA
SetPropA
GetDC
GetMenuDefaultItem
SetCursorPos
CreateMenu
EnableWindow
SetTimer
GetParent
KillTimer
SendMessageA
wsprintfA
PostMessageA
GetSysColor
InvalidateRect
GetSubMenu
LoadMenuA
MessageBeep
LoadBitmapA
UpdateWindow
MessageBoxA
LoadIconA
GetCursorPos
GetWindowRect
SetForegroundWindow
LoadCursorA
GetClientRect
SetCursor
SetCapture
RedrawWindow
ReleaseCapture
PtInRect
DestroyWindow
CreateDialogIndirectParamA
TranslateMDISysAccel
DefFrameProcA
DrawMenuBar
WaitMessage
HideCaret
GetWindowThreadProcessId
ExcludeUpdateRgn
DefDlgProcA
ShowCaret
IsClipboardFormatAvailable
DestroyCursor
IsWindowUnicode
GetKeyNameTextA
IsCharLowerA
MapVirtualKeyExA
EnumChildWindows
EnableScrollBar
DrawStateA
ShowCursor
FrameRect
GetKeyboardLayout
MapVirtualKeyA
GetKeyboardState
CreateAcceleratorTableA
OpenClipboard
ToAsciiEx
CloseClipboard
DefMDIChildProcA
EmptyClipboard
DrawIconEx
CreatePopupMenu
GetFocus
DrawFocusRect
CopyRect
IsWindowEnabled
GetDlgItem
GetWindowLongA
SetClipboardData
DrawFrameControl
LoadImageA
DestroyAcceleratorTable
GetMenuItemInfoA
IsMenu
GetAsyncKeyState
UnregisterClassA
FillRect
SetMenuDefaultItem

gdi32

SelectClipRgn
CreateRectRgn
GetObjectA
CreateSolidBrush
GetTextColor
CreateFontIndirectA
GetTextExtentPoint32A
CreateRectRgnIndirect
SetTextColor
SetBkColor
GetClipBox
DeleteDC
CreateBitmap
RestoreDC
SelectObject
SaveDC
SelectPalette
SetBkMode
GetStockObject
SetROP2
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
OffsetWindowOrgEx
IntersectClipRect
ExcludeClipRect
LineTo
SetTextAlign
MoveToEx
DeleteObject
ExtSelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetDeviceCaps
CreatePen
PtVisible
CreatePatternBrush
TextOutA
ExtTextOutA
RectVisible
PatBlt
StretchDIBits
Escape
CreateCompatibleBitmap
GetCharWidthA
CreateCompatibleDC
GetTextMetricsA
LPtoDP
CreateFontA
GetMapMode
SetRectRgn
DPtoLP
CopyMetaFileA
CombineRgn
BitBlt
GetBkColor
Polygon
EnumFontFamiliesA
SetPixel
CreateDIBitmap
CreateDIBSection
GetTextCharsetInfo
RealizePalette
StretchBlt
GetDIBits
OffsetRgn
Rectangle
GetPixel
CreatePalette
Ellipse
GetPaletteEntries
SetPaletteEntries
GetNearestPaletteIndex
ExtFloodFill
PtInRegion
CreatePolygonRgn
GetSystemPaletteEntries
SetPixelV
GetTextExtentPointA
FrameRgn
EnumFontFamiliesExA

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyExA
RegEnumKeyA
RegCloseKey
RegQueryInfoKeyA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegDeleteValueA
RegQueryValueA
RegDeleteKeyA
SetFileSecurityA
GetFileSecurityA
RegCreateKeyA
RegOpenKeyA
RegSetValueA

shell32

ExtractIconA
SHGetFileInfoA
DragQueryFileA
DragFinish
ShellExecuteA
Shell_NotifyIconA

comctl32

ImageList_Draw
ord17
ImageList_Destroy
ImageList_Create
ImageList_GetImageInfo
ImageList_GetImageCount
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_AddMasked
ImageList_ReplaceIcon

oledlg

ord8

ole32

CLSIDFromProgID
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
ReleaseStgMedium
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
DoDragDrop
OleGetClipboard
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleLockRunning
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop

olepro32

ord253

oleaut32

VariantClear
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
VarCyFromStr
VarBstrFromCy
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
SysStringLen

wininet

InternetGetLastResponseInfoA
InternetReadFile
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetOpenUrlA
InternetCloseHandle
InternetCrackUrlA
InternetQueryOptionA
InternetCanonicalizeUrlA

winmm

PlaySoundA

Sections

.text
Size: 688KB - Virtual size: 688KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7c33c7ddda720fe1277ac048ea2e7e23

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wininet

winmm

Sections

.text Size: 688KB - Virtual size: 688KB

.rdata Size: 140KB - Virtual size: 140KB

.data Size: 88KB - Virtual size: 88KB

.rsrc Size: 84KB - Virtual size: 84KB

.aspack Size: 16KB - Virtual size: 16KB

.text
Size: 688KB - Virtual size: 688KB

.rdata
Size: 140KB - Virtual size: 140KB

.data
Size: 88KB - Virtual size: 88KB

.rsrc
Size: 84KB - Virtual size: 84KB

.aspack
Size: 16KB - Virtual size: 16KB