ComAnalyzer2_9[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

ComAnalyzer2_9.exe
Size

1.3MB
MD5

e61ac51ee3ed27fac108de76be73174d
SHA1

d35da738a690fea056146d452f8e5c5c14693980
SHA256

1eb79bada1533888e7433d87e3b470a507f1474c9704008e1a5154816eed29c5
SHA512

c110eca7f3e0384657d8e991e3021a87edf8dc3c149c4880067883f195d3a5256175285f0c2a92b270b125dde73f5a63d08af1ba86c8ae239a43306c3f82fce9
SSDEEP

24576:R/AdfoOrabcUzOhKZBKQcraskfX/qz0r7rnapd3UYrrzZpK/qba7VTDqBCzWQ:R83WcUzOhKuQcrTsvqziupdkYrrzZpKN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ComAnalyzer2_9.exe

Files

ComAnalyzer2_9.exe
.exe windows x86

38c1877d89aa5dbd1aaacc8f2acb3125

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetOpenEnumA
WNetEnumResourceA
WNetCloseEnum

ws2_32

listen
gethostname
WSAGetLastError
WSAStartup
gethostbyname
inet_ntoa
getsockname
WSACleanup
socket
bind

kernel32

LCMapStringA
LCMapStringW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
HeapSize
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapReAlloc
GetACP
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
HeapDestroy
GetLocalTime
GetSystemTime
GetTimeZoneInformation
TerminateProcess
ExitThread
CreateThread
HeapFree
HeapAlloc
ExitProcess
GetCommandLineA
GetStartupInfoA
VirtualFree
HeapCreate
RtlUnwind
SizeofResource
LockResource
GlobalLock
GlobalUnlock
GlobalAlloc
GlobalFree
LoadLibraryA
GetProcAddress
WaitCommEvent
ReadFile
ClearCommError
WriteFile
GetOverlappedResult
GetCommState
SetCommState
WaitForSingleObject
PurgeComm
CreateEventA
CreateFileA
SetCommMask
SetupComm
SetCommTimeouts
SetThreadPriority
ResumeThread
EscapeCommFunction
CloseHandle
FindFirstFileA
FindClose
GetLastError
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
GetProfileStringA
CreateDirectoryA
RaiseException
GetTickCount
SystemTimeToFileTime
SetErrorMode
GetOEMCP
LocalFileTimeToFileTime
GetFileSize
TlsGetValue
GetCPInfo
GetProcessVersion
GlobalReAlloc
LocalReAlloc
TlsSetValue
TlsAlloc
TlsFree
GlobalHandle
EnterCriticalSection
LocalAlloc
GlobalFlags
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetShortPathNameA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetVolumeInformationA
GetThreadLocale
GetStringTypeExA
SetEndOfFile
DeleteFileA
MoveFileA
FlushFileBuffers
UnlockFile
LockFile
DuplicateHandle
SetFilePointer
GetCurrentProcess
SetFileTime
GetDiskFreeSpaceA
GetFileTime
lstrcpynA
GetFullPathNameA
GetTempFileNameA
GetCurrentThread
GetFileAttributesA
GetPrivateProfileIntA
SetEvent
GetModuleFileNameA
SuspendThread
FreeLibrary
MulDiv
SetLastError
GetCurrentThreadId
GetVersion
lstrcatA
GlobalAddAtomA
GlobalGetAtomNameA
lstrcmpiA
GetModuleHandleA
GlobalFindAtomA
GlobalDeleteAtom
InterlockedDecrement
FormatMessageA
LocalFree
lstrcmpA
InterlockedIncrement
Sleep
MultiByteToWideChar
GlobalSize
lstrlenA
FindResourceA
lstrcpyA
WideCharToMultiByte
SetEnvironmentVariableA
LoadResource
GetStdHandle
CompareStringW

user32

CopyAcceleratorTableA
RegisterClipboardFormatA
PostThreadMessageA
TranslateAcceleratorA
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
wvsprintfA
FindWindowA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
SetFocus
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
GetScrollPos
GetTopWindow
MessageBoxA
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
CharNextA
GetNextDlgGroupItem
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowPos
IntersectRect
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
SetMenu
SetScrollRange
MessageBeep
SetScrollPos
IsWindowVisible
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
GetUpdateRect
ScrollDC
AppendMenuA
DeleteMenu
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SetParent
SetActiveWindow
ValidateRect
RegisterWindowMessageA
LoadIconA
CreatePopupMenu
TrackPopupMenu
DestroyMenu
GetDC
ReleaseDC
SetCursor
ClientToScreen
GetCapture
PtInRect
SetCapture
ReleaseCapture
FrameRect
DrawStateA
DrawFrameControl
IsRectEmpty
LoadCursorA
RedrawWindow
OffsetRect
EqualRect
SetRectEmpty
InflateRect
UnionRect
GetParent
GetSystemMetrics
DestroyIcon
IsWindow
GetWindowLongA
KillTimer
wsprintfA
GetSysColorBrush
GetMenuStringA
InsertMenuA
LoadStringA
WindowFromPoint
ReuseDDElParam
CharUpperA
UnpackDDElParam
RemovePropA
GetMessageTime
GetKeyState
LoadMenuA
GetWindowRect
GetSubMenu
GetCursorPos
SetForegroundWindow
BringWindowToTop
GetDesktopWindow
SetRect
LoadAcceleratorsA
SetWindowLongA
UpdateWindow
LoadBitmapA
PostMessageA
SetTimer
GetMessagePos
ScreenToClient
CopyRect
SendMessageA
GetFocus
GetSysColor
FillRect
DrawFocusRect
LoadImageA
EnableWindow
IsChild
InvalidateRect
GetClassNameA
GetClientRect
SystemParametersInfoA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode

gdi32

CreatePalette
CreateCompatibleDC
CreateSolidBrush
GetDIBColorTable
RealizePalette
CreateHalftonePalette
GetObjectA
CreateRectRgnIndirect
BitBlt
GetDeviceCaps
CreateCompatibleBitmap
GetTextExtentPoint32A
CreateBitmap
CreateDCA
GetClipBox
SetTextColor
DeleteDC
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetViewportOrgEx
SetStretchBltMode
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
SelectClipRgn
ScaleWindowExtEx
MoveToEx
IntersectClipRect
LineTo
ExtTextOutA
GetWindowExtEx
GetViewportExtEx
RectVisible
TextOutA
PtVisible
LPtoDP
DPtoLP
Escape
GetMapMode
PatBlt
GetTextColor
GetBkColor
SaveDC
RestoreDC
StretchBlt
GetPaletteEntries
GetPixel
GetTextExtentPointA
GetCharWidthA
Ellipse
SelectObject
DeleteObject
CreateDIBitmap
CreatePen
CreateFontA
SetDIBitsToDevice
StretchDIBits
GetDIBits
StartDocA
StartPage
EndPage
EndDoc
AbortDoc
CreateFontIndirectA
GetStockObject
GetCurrentObject
Polygon

comdlg32

GetOpenFileNameA
GetFileTitleA
CommDlgExtendedError
GetSaveFileNameA
PrintDlgA
ChooseColorA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegDeleteValueA
RegSetValueA
GetUserNameA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegOpenKeyExA
RegCloseKey

shell32

ExtractIconA
DragQueryFileA
DragAcceptFiles
Shell_NotifyIconA
DragFinish
SHGetDesktopFolder
SHGetPathFromIDListA
SHGetFileInfoA
ShellExecuteA
SHGetMalloc

comctl32

ImageList_Create
ImageList_Destroy
ImageList_LoadImageA
ord17
ImageList_GetImageCount
ImageList_Draw
ImageList_AddMasked
ImageList_GetImageInfo

oledlg

ord8

ole32

OleUninitialize
OleFlushClipboard
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
OleInitialize
OleIsCurrentClipboard
CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries

olepro32

ord253

oleaut32

SysAllocStringByteLen
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen
SysAllocString

wsock32

accept
recvfrom
ioctlsocket
sendto
recv
htonl
closesocket
inet_ntoa
send
WSAAsyncSelect
connect
WSASetLastError
htons

Sections

.text
Size: 428KB - Virtual size: 425KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 792KB - Virtual size: 792KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

38c1877d89aa5dbd1aaacc8f2acb3125

Headers

File Characteristics

Imports

mpr

ws2_32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

Sections

.text Size: 428KB - Virtual size: 425KB

.rdata Size: 100KB - Virtual size: 99KB

.data Size: 28KB - Virtual size: 52KB

.rsrc Size: 792KB - Virtual size: 792KB

.text
Size: 428KB - Virtual size: 425KB

.rdata
Size: 100KB - Virtual size: 99KB

.data
Size: 28KB - Virtual size: 52KB

.rsrc
Size: 792KB - Virtual size: 792KB