a614bb33a87d30145e8c294b4056d04e323b1d2bcefc563368984c2a21ab0dca

Sharing

Copy URL Twitter E-mail

General

Target

a614bb33a87d30145e8c294b4056d04e323b1d2bcefc563368984c2a21ab0dca
Size

4.4MB
MD5

884b92bd13e2ffec6c8f75f5668ecf20
SHA1

343711bacf687ae6bd9086e50f763fc3b7121b77
SHA256

a614bb33a87d30145e8c294b4056d04e323b1d2bcefc563368984c2a21ab0dca
SHA512

35842a1e7f3ac35a6396f1c004bfc6d6590321ac776adb2db7e892e1df48793dc982dcf057e7ae4c693903caabc6107527e8408cfeb0d5864412ebf0698365b9
SSDEEP

98304:uALiEIPI7N4grZ6TmG441qUvwJJmSHtDCE50xoAhcTWZtHtpcVTgFv9CB+OG:uzTtqEM+OG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a614bb33a87d30145e8c294b4056d04e323b1d2bcefc563368984c2a21ab0dca

Files

a614bb33a87d30145e8c294b4056d04e323b1d2bcefc563368984c2a21ab0dca
.exe windows x86

7a6cb12ef15bda179f1e32d4443f052b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringEx
GetStringTypeW
GetCPInfo
RtlUnwind
HeapValidate
GetSystemInfo
GetCommandLineA
CreateThread
ExitThread
FreeLibraryAndExitThread
HeapQueryInformation
GetStdHandle
GetFileType
WriteConsoleW
QueryPerformanceFrequency
SetStdHandle
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
ReadConsoleW
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
VirtualQuery
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
OutputDebugStringW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
Sleep
SearchPathW
ResetEvent
GetTempPathW
VerifyVersionInfoW
VerSetConditionMask
GetTickCount
lstrcpyW
GetWindowsDirectoryW
FindResourceExW
GetUserDefaultLCID
GetTempFileNameW
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetThreadLocale
lstrcmpiW
GetHandleInformation
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
QueryPerformanceCounter
GetProfileIntW
GetAtomNameW
SetErrorMode
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
SetThreadPriority
CompareStringW
GlobalGetAtomNameW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalSize
GetCurrentProcessId
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CreateEventW
WaitForSingleObject
SetEvent
GlobalFree
GlobalUnlock
FreeResource
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GlobalLock
GlobalAlloc
LoadLibraryW
LoadLibraryExW
GetModuleHandleW
GetVersionExW
GetCurrentThreadId
OutputDebugStringA
DeleteCriticalSection
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
RaiseException
DecodePointer
ExitProcess
SetLastError
GetLastError
GetCommandLineW
FindResourceW
SizeofResource
LockResource
LoadResource
GetModuleHandleExW
GetModuleFileNameW
MultiByteToWideChar
WriteFile
SetFilePointer
ReadFile
GetFileSize
DeleteFileW
CreateFileW
GetCurrentDirectoryW
LoadLibraryA
GetProcAddress
GetModuleHandleA
FreeLibrary
VirtualFree
VirtualProtect
VirtualAlloc
ResumeThread
GetCurrentThread
TerminateProcess
GetCurrentProcess
CloseHandle
WideCharToMultiByte
FindClose
SetEnvironmentVariableW

user32

NotifyWinEvent
LoadCursorW
SetParent
WindowFromPoint
HideCaret
EnableScrollBar
ShowScrollBar
LockWindowUpdate
RedrawWindow
InvalidateRgn
InvalidateRect
GetWindowRgn
SetWindowRgn
GetUpdateRect
SetForegroundWindow
GetForegroundWindow
UpdateWindow
GetSystemMenu
DrawMenuBar
KillTimer
SetTimer
SetCapture
OpenClipboard
GetNextDlgTabItem
GetNextDlgGroupItem
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
ShowOwnedPopups
PostThreadMessageW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
UnhookWindowsHookEx
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ShowWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
CopyRect
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
InvertRect
FrameRect
FillRect
DrawFocusRect
GetSysColorBrush
DrawStateW
GrayStringW
DrawTextExW
DrawTextW
SetWindowTextW
IsDialogMessageW
DestroyCursor
GetSystemMetrics
UnregisterClassW
PeekMessageW
DrawIcon
SetMenuDefaultItem
GetMenuDefaultItem
SetMenuItemInfoW
GetMenuItemInfoW
InsertMenuItemW
DeleteMenu
ModifyMenuW
EnableMenuItem
CheckMenuItem
CreatePopupMenu
CreateMenu
LoadMenuW
DrawFrameControl
DrawEdge
WaitMessage
ReleaseCapture
CopyImage
SystemParametersInfoW
RealChildWindowFromPoint
LoadAcceleratorsW
DestroyMenu
SetRectEmpty
SetRect
OffsetRect
InflateRect
GetAsyncKeyState
SendDlgItemMessageA
GetClipboardFormatNameA
MoveWindow
RemoveMenu
AppendMenuW
CheckDlgButton
PostQuitMessage
SendMessageW
PostMessageW
IsWindow
TabbedTextOutW
MapDialogRect
GetFocus
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetActiveWindow
EnableWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongW
UnpackDDElParam
GetDesktopWindow
GetMessageW
TranslateMessage
DispatchMessageW
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExW
CallNextHookEx
SetCursor
MessageBoxW
GetParent
GetWindowThreadProcessId
GetLastActivePopup
SetWindowPos
SetWindowContextHelpId
GetWindow
IsMenu
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
SubtractRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
IsClipboardFormatAvailable
CharUpperBuffW
GetDoubleClickTime
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
GetComboBoxInfo
MonitorFromPoint
UpdateLayeredWindow
CopyIcon
SetCursorPos
SetClassLongW
EmptyClipboard
SetClipboardData
CloseClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
GetIconInfo
DrawIconEx
RegisterClipboardFormatW
UnionRect
TrackMouseEvent
MapVirtualKeyW
GetKeyNameTextW
MessageBeep
IsRectEmpty
CopyAcceleratorTableW
CharNextW
ReuseDDElParam
LoadImageW
IntersectRect
TranslateAcceleratorW
CharUpperW
DestroyIcon
GetClipboardFormatNameW

gdi32

CreateCompatibleDC
CreateEllipticRgn
CreateFontIndirectW
CreateHatchBrush
CreatePalette
CreatePen
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
Ellipse
Escape
ExtFloodFill
FillRgn
FrameRgn
GetBkColor
GetBoundsRect
GetMapMode
GetNearestPaletteIndex
GetObjectType
GetPaletteEntries
GetPixel
GetRgnBox
GetStockObject
GetTextColor
GetTextExtentPoint32W
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
OffsetRgn
PatBlt
PtInRegion
PtVisible
RectVisible
Rectangle
RealizePalette
RoundRect
SelectObject
SetPaletteEntries
SetPixel
SetPixelV
StretchBlt
SetRectRgn
GetTextMetricsW
CreateCompatibleBitmap
GetObjectW
TextOutW
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
GetTextFaceW
DeleteDC
DeleteObject
ExcludeClipRect
GetClipBox
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
EnumFontFamiliesExW
GetSystemPaletteEntries
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateDIBSection
SetDIBColorTable
CombineRgn
BitBlt
GetDeviceCaps
CreateDCW
CopyMetaFileW
CreateBitmap
ExtTextOutW

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegSetValueExW
RegOpenKeyW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
RegEnumKeyExW
RegCloseKey

shell32

SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ShellExecuteW
DragFinish
SHGetFileInfoW
CommandLineToArgvW
SHBrowseForFolderW
SHAppBarMessage
DragQueryFileW

comctl32

InitCommonControlsEx

shlwapi

PathIsUNCW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
PathStripToRootW
StrFormatKBSizeW

uxtheme

DrawThemeBackground
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeParentBackground
GetThemeColor
GetCurrentThemeName
GetWindowTheme
GetThemeSysColor
OpenThemeData
DrawThemeText
CloseThemeData

ole32

OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
StringFromCLSID
OleLockRunning
CreateStreamOnHGlobal
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoRevokeClassObject
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CoDisconnectObject
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
StringFromGUID2
CoGetClassObject
CoInitializeEx
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
OleTranslateAccelerator
IsAccelerator
CoRegisterMessageFilter

oleaut32

VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
OleCreateFontIndirect
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
SysAllocString
LoadTypeLi

oledlg

OleUIBusyW

gdiplus

GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipCloneImage
GdiplusStartup
GdipFree
GdipGetImagePixelFormat
GdiplusShutdown
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipCreateBitmapFromStream
GdipAlloc
GdipCreateBitmapFromStreamICM
GdipDisposeImage
GdipDrawImageRectI
GdipGetImagePaletteSize
GdipGetImagePalette

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 524KB - Virtual size: 524KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a6cb12ef15bda179f1e32d4443f052b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 3.6MB - Virtual size: 3.6MB

.rdata Size: 524KB - Virtual size: 524KB

.data Size: 26KB - Virtual size: 56KB

.rsrc Size: 13KB - Virtual size: 12KB

.reloc Size: 197KB - Virtual size: 197KB

.text
Size: 3.6MB - Virtual size: 3.6MB

.rdata
Size: 524KB - Virtual size: 524KB

.data
Size: 26KB - Virtual size: 56KB

.rsrc
Size: 13KB - Virtual size: 12KB

.reloc
Size: 197KB - Virtual size: 197KB