11d8b57f896706exeexeexeex[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

11d8b57f896706exeexeexeex.exe
Size

3.5MB
MD5

11d8b57f8967061bf21172082f7da770
SHA1

b1dc191332c476ca4e8c3228e33305b62ce5ad19
SHA256

94a8fbf5604aa233a46eb7e68212d2fe960f4c4ee7be6d2b1ae85c1912574f96
SHA512

54b17186b4c921752247105a8acac6845ceafde4a4a284a4040505e9efa7a4d0873740cf221638022369e9951dad6dd4b001cb409e8ccb5e165a5546b491a2c9
SSDEEP

98304:Yi2LJSqV7DtJlMiviVp0Zkrd/BN9FB/Kblbn97WlC0cWPr:YfLJSiv5ktH9XKblbx6zcWP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11d8b57f896706exeexeexeex.exe

Files

11d8b57f896706exeexeexeex.exe
.exe windows x86

d5111ce294d7ffbe5c52c655d0e53f9a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA
timeGetTime

kernel32

GetProcessHeap
GetTimeZoneInformation
GetEnvironmentStringsW
FreeEnvironmentStringsW
LCMapStringW
GetStringTypeW
IsProcessorFeaturePresent
CompareStringW
GetCurrentDirectoryA
FindFirstFileA
CopyFileA
FindClose
GetSystemInfo
GetFileTime
CreateToolhelp32Snapshot
Process32First
Process32Next
SetEvent
EnterCriticalSection
LeaveCriticalSection
WaitForSingleObject
DeleteCriticalSection
IsValidCodePage
InitializeCriticalSection
CreateEventA
lstrlenA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
Sleep
GetModuleFileNameA
DeleteFileA
MultiByteToWideChar
QueryPerformanceCounter
CreateFileA
DosDateTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
CloseHandle
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
SizeofResource
SetEnvironmentVariableA
MulDiv
lstrlenW
LocalFree
FormatMessageA
GlobalSize
SetLastError
GetLastError
FileTimeToSystemTime
FileTimeToLocalFileTime
DeactivateActCtx
LoadLibraryW
ActivateActCtx
InitializeCriticalSectionAndSpinCount
FreeLibrary
LocalAlloc
GetCurrentProcessId
GetThreadLocale
lstrcmpiA
GetProcAddress
GetModuleHandleA
LoadLibraryA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetVolumeInformationA
GetFullPathNameA
lstrcmpW
CompareStringA
GetVersionExA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
FreeResource
FindResourceA
CreateActCtxW
ReleaseActCtx
GetModuleFileNameW
InterlockedDecrement
GetModuleHandleW
lstrcmpA
InterlockedExchange
GetLocaleInfoA
GetSystemDefaultUILanguage
ConvertDefaultLocale
GetUserDefaultUILanguage
GetCurrentThread
SetThreadPriority
ResumeThread
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
InterlockedIncrement
TlsGetValue
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetFileAttributesExA
GetFileAttributesA
GetFileSizeEx
SetErrorMode
GlobalFlags
GetCPInfo
GetOEMCP
GetACP
GetTempFileNameA
lstrcpyA
GetWindowsDirectoryA
GetNumberFormatA
GetTickCount
GetTempPathA
GetProfileIntA
SearchPathA
VirtualProtect
FindResourceExW
RtlUnwind
HeapAlloc
HeapFree
GetConsoleCP
GetConsoleMode
ExitProcess
DecodePointer
EncodePointer
GetSystemTimeAsFileTime
ExitThread
CreateThread
HeapReAlloc
RaiseException
GetCommandLineA
HeapSetInformation
GetStartupInfoW
VirtualAlloc
VirtualQuery
SetStdHandle
GetFileType
HeapQueryInformation
HeapSize
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetStdHandle
HeapCreate
CreateFileW
SetHandleCount
WriteConsoleW
CreateDirectoryA

user32

DispatchMessageA
SetActiveWindow
GetForegroundWindow
GetWindowTextA
GetWindowTextLengthA
SetFocus
GetFocus
RemovePropA
GetPropA
SetPropA
GetClassNameA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
IsChild
WinHelpA
SendDlgItemMessageA
LoadIconA
RegisterWindowMessageA
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetActiveWindow
CheckMenuItem
EnableMenuItem
ModifyMenuA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckDlgButton
IsDialogMessageA
MoveWindow
ShowWindow
FillRect
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
GetWindowDC
BeginPaint
EndPaint
IsRectEmpty
SystemParametersInfoA
SetCapture
LoadCursorW
SetCursor
PostQuitMessage
ValidateRect
TranslateMessage
GetMessageA
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
WaitMessage
InflateRect
GetMenuItemInfoA
DestroyMenu
GetKeyNameTextA
MapVirtualKeyA
IntersectRect
GetSysColorBrush
LoadCursorA
RealChildWindowFromPoint
UnregisterClassA
SetRectEmpty
CopyAcceleratorTableA
InvalidateRgn
TranslateAcceleratorA
BringWindowToTop
CreatePopupMenu
InsertMenuItemA
LoadAcceleratorsA
DestroyIcon
LoadImageA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
PeekMessageA
DeleteMenu
EnumDisplayMonitors
MonitorFromWindow
MessageBeep
GetMenuDefaultItem
BeginDeferWindowPos
InvertRect
HideCaret
EnableScrollBar
NotifyWinEvent
GetIconInfo
CopyImage
DrawIconEx
LoadAcceleratorsW
LoadMenuW
RegisterClipboardFormatA
SetParent
UnionRect
IsZoomed
DestroyAcceleratorTable
SetClassLongA
DrawStateA
DrawFrameControl
ToAsciiEx
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableA
SetCursorPos
LockWindowUpdate
OpenClipboard
SetClipboardData
CloseClipboard
EmptyClipboard
LoadImageW
IsCharLowerA
MapVirtualKeyExA
UpdateLayeredWindow
MonitorFromPoint
IsMenu
PostThreadMessageA
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
CreateMenu
SetMenuDefaultItem
IsClipboardFormatAvailable
FrameRect
GetUpdateRect
CopyIcon
CharUpperBuffA
GetDoubleClickTime
SubtractRect
DestroyCursor
GetWindowRgn
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
IsWindowVisible
UpdateWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
PtInRect
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
SetWindowLongA
SetWindowPos
GetWindow
CharUpperA
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetAsyncKeyState
GetMessagePos
GetWindowThreadProcessId
IsWindowEnabled
MessageBoxA
GetDesktopWindow
GetMenuState
GetMenuStringA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
IsWindow
RedrawWindow
LoadBitmapA
GetCursorPos
OffsetRect
DrawFocusRect
GetSysColor
ClientToScreen
WindowFromPoint
GetNextDlgGroupItem
GetCapture
ReleaseCapture
GetWindowLongA
GetParent
DrawEdge
SetWindowTextA
PostMessageA
SetRect
GetSystemMetrics
LoadIconW
KillTimer
SetTimer
InvalidateRect
ReleaseDC
GetDC
SetWindowRgn
GetSystemMenu
AppendMenuA
DrawIcon
SetForegroundWindow
GetLastActivePopup
FindWindowA
IsIconic
GetClientRect
LoadBitmapW
wsprintfA
EnableWindow
GetWindowRect
SendMessageA
SetLayeredWindowAttributes
CharNextA

gdi32

GetTextFaceA
Polygon
Polyline
CreatePolygonRgn
CreateRoundRectRgn
GetSystemPaletteEntries
RealizePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
GetTextColor
GetBkColor
GetTextMetricsA
GetMapMode
SetRectRgn
PatBlt
CreateRectRgnIndirect
GetTextExtentPoint32A
CreateFontIndirectA
Ellipse
LPtoDP
DPtoLP
CreateEllipticRgn
CreateHatchBrush
CreateSolidBrush
CreatePen
GetObjectType
SelectPalette
CreatePatternBrush
GetObjectA
CreateCompatibleDC
BitBlt
GetStockObject
DeleteDC
DeleteObject
CombineRgn
SelectObject
CreateDIBSection
CreateRectRgn
CreateCompatibleBitmap
StretchBlt
GetPixel
SelectClipRgn
SetPixelV
SetPaletteEntries
ExtFloodFill
GetBoundsRect
FrameRgn
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
EnumFontFamiliesExA
OffsetRgn
Rectangle
SetDIBColorTable
GetRgnBox
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
CreateDCA
CopyMetaFileA
GetDeviceCaps
SetPixel

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegEnumValueA
RegEnumKeyExA

shell32

DragFinish
SHGetFileInfoA
SHFileOperationA
ShellExecuteA
SHAppBarMessage
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetDesktopFolder
DragQueryFileA

ole32

OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
DoDragDrop
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
CreateStreamOnHGlobal
OleDraw
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CoCreateInstance
CoInitializeEx
CoUninitialize
CoInitialize
OleInitialize

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_GetIconSize

shlwapi

UrlUnescapeA
PathIsUNCA
PathFindExtensionA
PathFindFileNameA
PathRemoveFileSpecW
PathStripToRootA

oledlg

ord8

ws2_32

WSAStartup
WSACleanup
WSASetLastError
send
recv
closesocket
setsockopt
WSAGetLastError
connect
gethostbyname
inet_addr
htons
ioctlsocket
socket

wininet

InternetCloseHandle
HttpQueryInfoA
InternetOpenUrlA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetQueryDataAvailable
InternetGetLastResponseInfoA
InternetOpenA
InternetSetStatusCallback
InternetSetFilePointer
InternetWriteFile
InternetReadFile

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdiplusShutdown
GdipGetImagePixelFormat
GdipDrawImageI
GdipGetImageGraphicsContext
GdipGetImagePaletteSize
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comdlg32

GetFileTitleA

oleaut32

VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SysAllocString
SysStringLen
SysFreeString
SysAllocStringByteLen
SafeArrayUnaccessData
OleCreateFontIndirect
VarBstrFromDate
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SafeArrayGetDim
SafeArrayGetElemsize

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 289KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5111ce294d7ffbe5c52c655d0e53f9a

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

user32

gdi32

advapi32

shell32

ole32

msimg32

comctl32

shlwapi

oledlg

ws2_32

wininet

oleacc

gdiplus

imm32

winspool.drv

comdlg32

oleaut32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 289KB - Virtual size: 289KB

.data Size: 30KB - Virtual size: 74KB

.rsrc Size: 1.8MB - Virtual size: 1.8MB

.reloc Size: 180KB - Virtual size: 180KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 289KB - Virtual size: 289KB

.data
Size: 30KB - Virtual size: 74KB

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

.reloc
Size: 180KB - Virtual size: 180KB