SMS-Activate接码器%@8[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SMS-Activate接码器%@8.exe
Size

1.2MB
MD5

6bd2dcd2225106bdd31c0d62162bddf7
SHA1

3416d3c904100f5bc08035318592c44fccdbb90c
SHA256

916cee3a37e0d1d3c0eb8230a591a3ef8721b7ea8186014d334bc7c8eb40c515
SHA512

863b10a370075c4680d7220616129f30abc08adf566631ae3725c536a95a56cbe8d09ce0a73d677ffba7dae1905e6654094fd7a5dd69c3931f5de63ac25b6937
SSDEEP

24576:5eUAjB9kEWAPifbyqVxwNLjYeKrQd9sayHKFcnnJsORqvgBF9k:5ZyELbxwNoeKeMHlPk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SMS-Activate接码器%@8.exe

Files

SMS-Activate接码器%@8.exe
.exe windows x86

4b8d9b10a87ce85e3422e8d8fdc1fb82

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

crypt32

CertCreateCertificateChainEngine
CertGetCertificateChain
CertFreeCertificateChainEngine
CertFreeCertificateChain
CertFindExtension
CryptDecodeObjectEx
CryptQueryObject
CertAddCertificateContextToStore
CertEnumCertificatesInStore
CertOpenStore
CryptStringToBinaryW
CertCloseStore
CertFindCertificateInStore
PFXImportCertStore
CertFreeCertificateContext

kernel32

LocalReAlloc
GetDriveTypeA
SetEnvironmentVariableA
CreateFileA
VirtualFree
VirtualProtect
VirtualAlloc
DeleteFileA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
OpenEventA
LCMapStringW
LCMapStringA
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSectionAndSpinCount
HeapReAlloc
HeapSize
GetTimeZoneInformation
GetCurrentDirectoryA
GetProcessHeap
HeapAlloc
SetStdHandle
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
GetConsoleMode
GetConsoleCP
HeapFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
DebugBreak
GetSystemInfo
GetTickCount
GetProcAddress
LoadLibraryA
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
MultiByteToWideChar
GetModuleFileNameA
FindClose
FindFirstFileW
CreateDirectoryA
lstrlenW
Sleep
GetLastError
CreateEventA
SetFilePointer
CreateFileW
CloseHandle
ReadFile
SystemTimeToFileTime
LocalFileTimeToFileTime
CreateDirectoryW
GetFileAttributesW
GetCurrentDirectoryW
SetFileTime
WriteFile
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
FreeLibrary
GetSystemDirectoryW
LoadLibraryW
GetModuleHandleW
QueryPerformanceFrequency
QueryPerformanceCounter
WaitForSingleObject
VerifyVersionInfoW
VerSetConditionMask
GetModuleHandleA
GetEnvironmentVariableA
GetCurrentProcessId
PeekNamedPipe
WaitForMultipleObjects
GetFileType
GetStdHandle
FormatMessageW
SetLastError
MoveFileExW
SleepEx
GetFileSizeEx
GetModuleFileNameW
EnumResourceLanguagesW
ConvertDefaultLocale
GetLocaleInfoW
GetCurrentThreadId
GetCurrentThread
lstrcmpA
GlobalDeleteAtom
GlobalAlloc
lstrcmpW
GlobalLock
InterlockedExchange
CompareStringA
SetEvent
GlobalAddAtomW
FreeResource
GlobalFree
GlobalUnlock
GetVersionExA
GlobalFindAtomW
GlobalGetAtomNameW
GetVersionExW
CompareStringW
GetFullPathNameW
MulDiv
InterlockedDecrement
WritePrivateProfileStringW
InterlockedIncrement
SetErrorMode
GlobalFlags
LocalFree
LocalAlloc
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
ExitProcess
TlsGetValue
GetAtomNameW
lstrlenA
GetCurrentProcess
FlushFileBuffers
SetEndOfFile
FileTimeToSystemTime
GetStartupInfoW
RtlUnwind
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
CreateThread
ExitThread
FileTimeToLocalFileTime
GetDriveTypeW
GetFileInformationByHandle
GetTimeFormatA
GetDateFormatA
HeapValidate
IsBadReadPtr

user32

GetMessageW
ValidateRect
SetWindowsHookExW
GetCursorPos
PeekMessageW
CallNextHookEx
GetKeyState
SetCursor
GetWindowThreadProcessId
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetParent
GetWindowLongW
MessageBoxW
GetDlgItem
DestroyWindow
CreateDialogIndirectParamW
SetActiveWindow
GetActiveWindow
GetDesktopWindow
EndDialog
GetSystemMetrics
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
IntersectRect
OffsetRect
SetWindowPos
SetWindowLongW
GetMessagePos
GetMessageTime
RegisterClipboardFormatW
UnregisterClassW
PtInRect
SystemParametersInfoW
GetClipboardFormatNameW
GetClipboardFormatNameA
ModifyMenuW
InsertMenuItemW
GetMenuItemInfoW
GetMenuState
GetMenuItemID
EnableMenuItem
CheckMenuItem
IsMenu
CreatePopupMenu
GrayStringW
DrawTextExW
DrawTextW
TranslateMessage
SetRectEmpty
FillRect
GetMenuItemCount
GetSubMenu
UnpackDDElParam
ReuseDDElParam
LoadMenuW
DestroyMenu
ReleaseCapture
TranslateAcceleratorW
LoadAcceleratorsW
ShowWindow
SetWindowTextW
IsDialogMessageW
LoadCursorW
GetForegroundWindow
SetForegroundWindow
GetNextDlgTabItem
SetMenu
DefWindowProcW
RemovePropW
CallWindowProcW
GetPropW
ShowOwnedPopups
IsWindowVisible
InvalidateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
EndPaint
BeginPaint
DispatchMessageW
GetMenuCheckMarkDimensions
LoadBitmapW
SetMenuItemBitmaps
GetFocus
TabbedTextOutW
ClientToScreen
BringWindowToTop
PostMessageW
SendMessageW
IsWindow
PostQuitMessage
GetSysColorBrush
wsprintfW
UnhookWindowsHookEx
GetMenu
SetPropW
InflateRect
GetClassNameW
GetClassLongW
GetDlgCtrlID
GetWindowTextW
TrackPopupMenu
WinHelpW
GetCapture
GetWindow
GetTopWindow
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
GetClientRect
SendDlgItemMessageA
SendDlgItemMessageW
LoadIconW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
RegisterWindowMessageW

gdi32

ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
RestoreDC
SaveDC
Escape
GetTextExtentPoint32W
TextOutW
GetPixel
BitBlt
RectVisible
PtVisible
GetDeviceCaps
CreateFontIndirectW
CreatePatternBrush
CreateSolidBrush
GetObjectType
DeleteObject
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
GetStockObject
DeleteDC
GetObjectW
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
ExtTextOutW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegOpenKeyW
CryptReleaseContext
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptAcquireContextW
CryptGenRandom
CryptDestroyKey
CryptEncrypt
CryptImportKey
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegQueryValueW
OpenThreadToken
RevertToSelf
SetThreadToken
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegEnumKeyW

shell32

DragFinish
DragQueryFileW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathFindExtensionW

ole32

StringFromCLSID
CoTaskMemFree

oleaut32

VariantClear
VariantChangeType
VariantInit

ws2_32

gethostname
ioctlsocket
getpeername
__WSAFDIsSet
select
WSAIoctl
recvfrom
sendto
socket
htonl
setsockopt
bind
getsockname
listen
connect
accept
recv
htons
getaddrinfo
freeaddrinfo
WSASetLastError
ntohs
WSACloseEvent
WSAEventSelect
WSAWaitForMultipleEvents
WSAResetEvent
getsockopt
WSACreateEvent
WSAStartup
WSACleanup
WSAGetLastError
send
closesocket
WSAEnumNetworkEvents

wldap32

ord117
ord14
ord219
ord145
ord208
ord26
ord133
ord147
ord127
ord142
ord79
ord167
ord301
ord27
ord41
ord46
ord216
ord73

Sections

.text
Size: 896KB - Virtual size: 896KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 210KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b8d9b10a87ce85e3422e8d8fdc1fb82

Headers

DLL Characteristics

File Characteristics

Imports

crypt32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

ws2_32

wldap32

Sections

.text Size: 896KB - Virtual size: 896KB

.rdata Size: 210KB - Virtual size: 209KB

.data Size: 11KB - Virtual size: 29KB

.rsrc Size: 7KB - Virtual size: 8KB

.reloc Size: 103KB - Virtual size: 102KB

.text
Size: 896KB - Virtual size: 896KB

.rdata
Size: 210KB - Virtual size: 209KB

.data
Size: 11KB - Virtual size: 29KB

.rsrc
Size: 7KB - Virtual size: 8KB

.reloc
Size: 103KB - Virtual size: 102KB