TickWGS122R05[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

TickWGS122R05.exe
Size

1000KB
MD5

231a0f23a6623a451b7f538f6cb310a3
SHA1

45346741c9a69a6768ac6ff024006aef0933b36b
SHA256

b8157af142172c95f869e4b31d4bdc1d84f6b4a4452948137825d046c6acdd6b
SHA512

35e2f8d360bcdbe0fa992911120c1d62c622cfb566d875dcb736394efe90f39508b8de2a5f24da4a2488a3bfc0c9fff5b5ddce6683c963465a614a4f3c118d3d
SSDEEP

12288:Gu+j5KYGy85B19xIE1FQ6Wcvq5ReVIFs2/kWb3upHpEgRY8MCYPvyKQKxTZDw:G7jV85B19xIH6e+l2/luOPKrKK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
TickWGS122R05.exe

Files

TickWGS122R05.exe
.exe windows x86

2267ad49f923ad65c58e229b1f53f5c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsSetValue
LocalReAlloc
TlsGetValue
lstrcpynA
GlobalFlags
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetLastError
GetProcessVersion
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
MoveFileA
DeleteFileA
GetVolumeInformationA
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
GetFileAttributesA
GetFileSize
LocalFileTimeToFileTime
SystemTimeToFileTime
GetCPInfo
GetOEMCP
RtlUnwind
ExitProcess
RaiseException
HeapFree
HeapAlloc
ExitThread
GetSystemTime
GetFileType
SetEnvironmentVariableA
SetCurrentDirectoryA
GlobalReAlloc
GetCommandLineA
GetACP
HeapReAlloc
HeapSize
FatalAppExitA
SetUnhandledExceptionFilter
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
SetHandleCount
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
CompareStringA
CompareStringW
GetLocaleInfoW
TlsFree
GlobalHandle
TlsAlloc
LocalFree
LocalAlloc
MulDiv
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
LoadLibraryA
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
GetModuleHandleA
GetDriveTypeA
GetFileInformationByHandle
PeekNamedPipe
GetProcAddress
SetLastError
FreeLibrary
GlobalUnlock
GlobalFree
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
WaitForSingleObject
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
CreateThread
GetLocalTime
GetCurrentProcessId
RemoveDirectoryA
SetFileAttributesA
GetCurrentThreadId
GetTempPathA
GetTickCount
GetTimeZoneInformation
FileTimeToLocalFileTime
SetErrorMode
GetExitCodeProcess
TerminateProcess
CreateProcessA
WriteFile
ReadFile
GetStdHandle
CreatePipe
SetStdHandle
GetCurrentProcess
DuplicateHandle
FileTimeToSystemTime
CompareFileTime
FileTimeToDosDateTime
DosDateTimeToFileTime
GetFileTime
CreateFileA
SetFileTime
CloseHandle
LoadResource
LockResource
SizeofResource
FindResourceA
CreateDirectoryA
FindFirstFileA
CopyFileA
FindNextFileA
FindClose
GetCurrentDirectoryA
Sleep
DeleteCriticalSection
EnterCriticalSection
InterlockedExchange
LeaveCriticalSection
InitializeCriticalSection
InterlockedDecrement
GetStartupInfoA
InterlockedIncrement

user32

SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
GetScrollInfo
ScrollWindow
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SendDlgItemMessageA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
SetWindowTextA
MoveWindow
ShowWindow
wvsprintfA
CharToOemA
OemToCharA
LoadStringA
DestroyMenu
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
SetCapture
ReleaseCapture
WindowFromPoint
GetClassNameA
PtInRect
InsertMenuA
DeleteMenu
GetMenuStringA
GetSysColorBrush
GetDialogBaseUnits
CharUpperA
SetRectEmpty
LoadAcceleratorsA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
WaitMessage
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SetCursor
ShowOwnedPopups
PostQuitMessage
PostMessageA
MessageBoxA
TranslateAcceleratorA
IsDialogMessageA
PeekMessageA
TranslateMessage
DispatchMessageA
ExitWindowsEx
FindWindowExA
GetDesktopWindow
GetWindow
GetParent
GetWindowThreadProcessId
GetWindowTextLengthA
GetWindowRect
GetFocus
KillTimer
UpdateWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
SetTimer
LoadIconA
EnableWindow
SendMessageA
SetMenuItemBitmaps
UnregisterClassA

gdi32

OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
DeleteObject
SetViewportOrgEx
SetStretchBltMode
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextExtentPoint32A
GetTextMetricsA
CreateFontIndirectA
GetClipRgn
SetMapMode
SetBkColor
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
GetStockObject
SelectObject
RestoreDC
SaveDC
StartDocA
GetObjectA
CreateBitmap
SetTextColor
GetClipBox
GetDCOrgEx
DeleteDC

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegSetValueExA
RegFlushKey
RegCloseKey
RegQueryInfoKeyA
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegOpenKeyA

shell32

DragAcceptFiles
SHGetFileInfoA
DragFinish
DragQueryFileA

comctl32

ord17

wsock32

WSACleanup
WSAStartup
gethostbyname
gethostname
getsockopt
setsockopt
closesocket
WSAGetLastError
inet_ntoa
recv
send
ntohs
htons
ioctlsocket
inet_addr
connect
htonl
sendto
recvfrom
listen
bind
accept
WSASetLastError
getpeername
getsockname
WSAAsyncSelect
ntohl
socket

Sections

.text
Size: 800KB - Virtual size: 799KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2267ad49f923ad65c58e229b1f53f5c1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wsock32

Sections

.text Size: 800KB - Virtual size: 799KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 44KB - Virtual size: 65KB

.rsrc Size: 76KB - Virtual size: 75KB

.text
Size: 800KB - Virtual size: 799KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 44KB - Virtual size: 65KB

.rsrc
Size: 76KB - Virtual size: 75KB