Snipaste[.]exe[.]bin

Sharing

Copy URL

Twitter E-mail

General

Target

Snipaste.exe.bin
Size

1.8MB
MD5

ec0f1366d44454b46eea99ef920024de
SHA1

b96788b5900c590ff4fe2ee3998085a75770345b
SHA256

c89316e87c5761e0fc50db1214beb32a08c73d2cad9df8c678c8e44ed66c1dab
SHA512

17088408bd56ed5405d7665301667306f5cbf5bb1fa2f52aef71dd7184142c5b035c38ee7de66941f7ffc6a14c8204ebb3d0d66e988d621c395330a2c26b6cf4
SSDEEP

49152:ZjmiCelNTetk4h/pVKRvGrWjmWChqP7u3o:Zjmje2tRhXKRvR7CcG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Snipaste.exe.bin

Files

Snipaste.exe.bin
.exe windows x86

3efdf86410d92b9189436bdba19fe114

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetConsoleMode
GetConsoleCP
SetFilePointer
IsValidCodePage
GetOEMCP
GetCPInfo
InitializeCriticalSectionAndSpinCount
HeapSize
HeapReAlloc
IsDebuggerPresent
UnhandledExceptionFilter
QueryPerformanceCounter
HeapCreate
RaiseException
TlsFree
TlsSetValue
TlsAlloc
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
SetUnhandledExceptionFilter
MoveFileA
RtlUnwind
GetStartupInfoW
CreateEventW
LocalAlloc
LocalFree
GetEnvironmentVariableW
GetACP
lstrlenA
lstrcatA
lstrcpyA
WideCharToMultiByte
TerminateProcess
WaitForDebugEvent
ContinueDebugEvent
CloseHandle
GetSystemTimeAsFileTime
GetTickCount
WaitForSingleObject
Sleep
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
GetCurrentProcessId
GetCurrentThreadId
DeleteCriticalSection
lstrcmpiW
LockResource
EnterCriticalSection
GetProcAddress
FlushInstructionCache
lstrlenW
MultiByteToWideChar
VirtualQuery
lstrcmpW
GetModuleFileNameW
LeaveCriticalSection
GetVersionExW
SizeofResource
SetLastError
TlsGetValue
GetLastError
LoadLibraryW
InitializeCriticalSection
GetModuleHandleW
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
LoadLibraryExW
LoadResource
FreeLibrary
FindResourceW
GetModuleHandleA

user32

InvalidateRect
DispatchMessageW
UnregisterClassA
EndPaint
DestroyWindow
TranslateAcceleratorW
ScreenToClient
GetWindowRect
IsMenu
GetMessageW
MonitorFromPoint
PostQuitMessage
CharNextW
GetWindowDC
RegisterWindowMessageW
FillRect
GetMenuItemID
LoadImageW
PostMessageW
DrawTextW
GetKeyState
GetSubMenu
LoadStringA
GetFocus
DialogBoxParamW
GetParent
LoadCursorW
CallNextHookEx
MessageBeep
IsWindowEnabled
WindowFromPoint
GetClientRect
SetFocus
DrawEdge
GetMenuItemInfoW
SetRectEmpty
ModifyMenuW
BeginPaint
PtInRect
GetClassInfoExW
CharLowerW
GetDC
TranslateMessage
LoadAcceleratorsW
GetWindow
GetMenu
RegisterClassExW
OffsetRect
TrackPopupMenuEx
CheckMenuRadioItem
InflateRect
LoadMenuW
GetWindowLongW
AppendMenuW
SystemParametersInfoW
PeekMessageW
GetClassNameW
ReleaseDC
MonitorFromWindow
SetWindowLongW
EndDialog
GetSysColor
SetWindowPos
LoadStringW
ShowWindow
SetMenu
CreatePopupMenu
GetSysColorBrush
FrameRect
LoadBitmapW
GetActiveWindow
GetMenuItemCount
IsWindow
RemoveMenu
CreateWindowExW
SetMenuDefaultItem
SetWindowsHookExW
UnhookWindowsHookEx
GetSystemMetrics
IsWindowVisible
SendMessageW
MapWindowPoints
UpdateWindow
DestroyMenu
DrawFrameControl
SetMenuItemInfoW
GetMonitorInfoW
CallWindowProcW
DefWindowProcW
GetMessagePos
GetWindowThreadProcessId

advapi32

RegDeleteValueW
RegQueryInfoKeyW
RegDeleteKeyW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegSetValueExW
RegCreateKeyExW

ole32

CoCreateInstance
CoTaskMemRealloc
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize

oleaut32

SysFreeString
VarUI4FromStr
VariantClear
SysAllocString

comctl32

ImageList_GetImageCount
ImageList_Create
ImageList_LoadImageW
InitCommonControlsEx
ImageList_AddMasked
ImageList_Draw
ImageList_Destroy
ImageList_DrawIndirect
CreateStatusWindowW

uxtheme

IsThemeActive
IsAppThemed

gdi32

GetStockObject
GetObjectW
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
DeleteObject
SetBkMode
CreateBitmap
SetBkColor
GetCurrentObject
SetBrushOrgEx
CreateFontIndirectW
CreateDIBSection
DeleteDC
SetTextColor
PatBlt
BitBlt
CreatePatternBrush

Sections

.text
Size: 556KB - Virtual size: 555KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.1MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3efdf86410d92b9189436bdba19fe114

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

comctl32

uxtheme

gdi32

Sections

.text Size: 556KB - Virtual size: 555KB

.rdata Size: 89KB - Virtual size: 88KB

.data Size: 1.1MB - Virtual size: 1.2MB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 556KB - Virtual size: 555KB

.rdata
Size: 89KB - Virtual size: 88KB

.data
Size: 1.1MB - Virtual size: 1.2MB

.rsrc
Size: 40KB - Virtual size: 39KB