0d8c94a1edd82fexeexeexeex[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

0d8c94a1edd82fexeexeexeex.exe
Size

1.6MB
MD5

0d8c94a1edd82fd297d67047fd4cc819
SHA1

b9ff71ad7d6fac68c38bdda93141cda1a601ad60
SHA256

b37a9e968bb4b70ad7534b919b35afef2953482fe13ba2005ebb2e2c15ebdc7f
SHA512

5258c423ddaa086ff539ece9eaa80cc5249ffa87704ad4aa0c37d17274206ddb9103512691f1148f1d61150fe49840bcd6cda30fdac1629f0f1b507c9c69aaee
SSDEEP

24576:Zn4vzqbalLJxy1KjXbVkN9jtyrNSgtWgfhjwCOmqeqDvMoePV/B5V2dc:Zn47he4Y9jtCBObvBd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d8c94a1edd82fexeexeexeex.exe

Files

0d8c94a1edd82fexeexeexeex.exe
.exe windows x86

63b5774d1d8cc61b0e963a693cd67da3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SetEnvironmentVariableA
CompareStringW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
QueryPerformanceCounter
LCMapStringW
LCMapStringA
GetTimeZoneInformation
GetExitCodeProcess
CreatePipe
InitializeCriticalSectionAndSpinCount
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetACP
HeapCreate
HeapDestroy
HeapReAlloc
HeapSize
LoadLibraryW
SetHandleCount
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
GetFileType
SetStdHandle
GetStartupInfoA
GetCommandLineA
CreateProcessA
ExitProcess
IsBadReadPtr
HeapValidate
VirtualQuery
GetSystemInfo
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
FileTimeToSystemTime
GetModuleHandleW
GetOEMCP
GetCPInfo
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSizeEx
VirtualProtect
GetAtomNameA
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
SetErrorMode
InterlockedIncrement
GetCurrentDirectoryA
InterlockedDecrement
GetModuleFileNameW
MulDiv
LocalFree
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
lstrcmpW
GlobalGetAtomNameA
GlobalFindAtomA
GetVersionExA
GetTickCount
FreeResource
GlobalFree
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentProcessId
GlobalAddAtomA
SetEvent
WaitForSingleObject
CloseHandle
SetLastError
GlobalUnlock
WideCharToMultiByte
CompareStringA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetCurrentThreadId
GetLocaleInfoA
GetModuleHandleA
ConvertDefaultLocale
EnumResourceLanguagesA
GetModuleFileNameA
LoadResource
LockResource
SizeofResource
FindResourceA
MultiByteToWideChar
GetLastError
FormatMessageA
lstrlenA
HeapAlloc
GetProcessHeap
HeapFree
InterlockedExchange
EnterCriticalSection
LeaveCriticalSection
Sleep
FreeLibrary
VirtualFree
VirtualAlloc
GetProcAddress
GetLocalTime
LoadLibraryA
OpenEventA

user32

GetMenuStringA
AppendMenuA
InsertMenuA
GetMenuItemID
CharUpperA
RegisterWindowMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
WinHelpA
TrackPopupMenu
GetClassLongA
GetClassNameA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
SetMenu
GetMenu
GetMessageTime
GetMessagePos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetSystemMetrics
EndDialog
CreateDialogIndirectParamA
DestroyWindow
RegisterClipboardFormatA
SetFocus
ShowWindow
SetWindowPos
MoveWindow
SetWindowLongA
GetDlgCtrlID
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
GetDlgItem
LoadIconA
LoadCursorA
PostThreadMessageA
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetWindowContextHelpId
GetForegroundWindow
SetForegroundWindow
GetMenuState
IsChild
GetWindow
GetTopWindow
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
GetDesktopWindow
SetCapture
GetCapture
SetActiveWindow
GetActiveWindow
KillTimer
SetTimer
ShowOwnedPopups
IsWindowVisible
InvalidateRgn
InvalidateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
EndPaint
BeginPaint
ScreenToClient
ClientToScreen
MapWindowPoints
GetClientRect
GetWindowRect
BringWindowToTop
SetWindowRgn
IsZoomed
IsIconic
MessageBoxA
GetWindowLongA
DrawTextA
DrawTextExA
ReleaseCapture
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
GetWindowThreadProcessId
SetCursor
GetKeyState
CallNextHookEx
PeekMessageA
GetCursorPos
SetWindowsHookExA
ValidateRect
GetMessageA
TranslateMessage
DispatchMessageA
GetSubMenu
GetMenuItemCount
IsMenu
RemoveMenu
PtInRect
DestroyCursor
FillRect
GetMenuCheckMarkDimensions
LoadBitmapA
GetSysColorBrush
DrawIcon
PostQuitMessage
MapDialogRect
UnionRect
InflateRect
SetRect
IsWindow
SendMessageA
PostMessageA
TabbedTextOutA
GetFocus
SetMenuItemBitmaps
GetTabbedTextExtentA
GrayStringA
CreateMenu
CreatePopupMenu
DeleteMenu
CheckMenuItem
EnableMenuItem
GetMenuItemInfoA
InsertMenuItemA
ModifyMenuA
LoadMenuA
LoadAcceleratorsA
TranslateAcceleratorA
DestroyMenu
ReuseDDElParam
UnpackDDElParam
SetRectEmpty
GetClipboardFormatNameA
DestroyIcon
CharNextA
CopyAcceleratorTableA
MessageBeep
IsRectEmpty
UnregisterClassA
WindowFromPoint

gdi32

GetObjectType
CreatePen
CreateSolidBrush
CreatePatternBrush
CreateFontIndirectA
CreateFontA
CreateCompatibleBitmap
CreateRectRgnIndirect
CreateEllipticRgn
GetRgnBox
GetNearestColor
GetBkColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextColor
GetMapMode
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
PtVisible
RectVisible
GetCurrentPositionEx
Ellipse
GetStockObject
PatBlt
BitBlt
TextOutA
GetTextExtentPoint32A
GetTextAlign
GetTextFaceA
GetTextMetricsA
GetCharWidthA
Escape
StartDocA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
GetDeviceCaps
CreateDCA
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
ExtTextOutA
StretchBlt
GetPixel
GetObjectA
DeleteDC
CreateCompatibleDC
SetDIBColorTable
CreateDIBSection
Rectangle
SelectObject
GetTextExtentPointA
StretchDIBits
ExtSelectClipRgn
SetTextAlign
LineTo
MoveToEx
DeleteObject

comdlg32

GetFileTitleA

winspool.drv

GetJobA
OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
OpenThreadToken
SetFileSecurityA
GetFileSecurityA
RegSetValueA
RegCreateKeyA
RevertToSelf
SetThreadToken

shell32

SHGetFileInfoA
DragFinish
DragQueryFileA
ExtractIconA
SHGetSpecialFolderPathA

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionW
PathFindFileNameA
PathIsUNCA
PathStripToRootA
PathFindExtensionA
PathRemoveFileSpecW

oledlg

ord8

ole32

OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
StringFromGUID2
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoUninitialize
CoInitializeEx
CoCreateInstance
CoTaskMemAlloc
StringFromCLSID
CoRegisterMessageFilter
CoTaskMemFree
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CLSIDFromString
CLSIDFromProgID
CoGetClassObject

oleaut32

SystemTimeToVariantTime
SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
SysStringLen
SysAllocStringByteLen
OleCreateFontIndirect
SafeArrayDestroy
SysAllocString
VariantCopy
VariantTimeToSystemTime
SysFreeString

gdiplus

GdipGetImageEncodersSize
GdipCreateBitmapFromHBITMAP
GdipSaveImageToFile
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageI
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipFree
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdiplusShutdown
GdipGetImageEncoders

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 245KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 306KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63b5774d1d8cc61b0e963a693cd67da3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 245KB - Virtual size: 245KB

.data Size: 306KB - Virtual size: 344KB

.rsrc Size: 23KB - Virtual size: 24KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 245KB - Virtual size: 245KB

.data
Size: 306KB - Virtual size: 344KB

.rsrc
Size: 23KB - Virtual size: 24KB