228a38748fda2aexeexeexeex[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

228a38748fda2aexeexeexeex.exe
Size

3.2MB
MD5

228a38748fda2af65cdd60d4a8c7ab40
SHA1

ee92941fc5890e3896045660f4a482fdfcff17d5
SHA256

67e61bb1508d839a9987bf2aeaeb5b72f7981040fa81b130d532424fbbf14903
SHA512

aac095f3fe39df2c68ef023057818e7f552485b599f9e6b6a6175ba0de846e3b497de943945fedacb67fb0d7732b6c11a0a08043e2d426b287163b58b3d70db4
SSDEEP

98304:JiEZQNoYxS4GMmXBlYx69dKQghp27DlF9C0nBZr6Pz+X:JiEZj8Y+27DlFZr6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
228a38748fda2aexeexeexeex.exe

Files

228a38748fda2aexeexeexeex.exe
.exe windows x86

a144aed0749929e888e65cf162fe4960

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetConsoleCP
IsValidLocale
EnumSystemLocalesA
LoadLibraryA
GetLocaleInfoA
SetEnvironmentVariableA
WriteConsoleW
GetStringTypeW
GetTimeZoneInformation
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
SetUnhandledExceptionFilter
GetFileType
SetStdHandle
HeapSize
HeapQueryInformation
VirtualQuery
GetSystemInfo
VirtualAlloc
RtlUnwind
RaiseException
ExitProcess
HeapReAlloc
GetSystemTimeAsFileTime
ExitThread
DecodePointer
EncodePointer
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
VirtualProtect
SearchPathW
GetProfileIntW
GetNumberFormatW
GetWindowsDirectoryW
GetCurrentDirectoryW
GetFileSizeEx
GetFileAttributesExW
GetTickCount
GetFileTime
GetFileAttributesW
GetUserDefaultLCID
SetErrorMode
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
LoadLibraryExW
InterlockedExchange
SetThreadPriority
FileTimeToLocalFileTime
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
lstrcmpiW
FileTimeToSystemTime
GetThreadLocale
InterlockedIncrement
GlobalGetAtomNameW
ReleaseActCtx
CreateActCtxW
GlobalSize
FormatMessageW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
InitializeCriticalSectionAndSpinCount
lstrcmpW
MulDiv
lstrlenA
lstrcmpA
WriteFile
GetTempFileNameW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetCurrentProcessId
GetCurrentThreadId
TerminateThread
CreateThread
LocalFree
LocalAlloc
GetCurrentProcess
GetCurrentThread
Sleep
InterlockedCompareExchange
FindNextFileW
CopyFileW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
FreeLibrary
GetSystemDirectoryW
CreateFileW
FindClose
FindFirstFileW
GetTempPathW
ActivateActCtx
GetProcAddress
GetModuleHandleW
LoadLibraryW
DeactivateActCtx
SetLastError
GetVersionExW
HeapFree
HeapAlloc
OutputDebugStringW
GetDateFormatW
GetTimeFormatW
GetLocaleInfoW
GetDriveTypeW
DeleteFileW
CreateDirectoryW
lstrcpynW
lstrcpyW
FreeResource
ResumeThread
GlobalFree
GlobalUnlock
GetModuleFileNameW
lstrlenW
FindResourceW
LoadResource
LockResource
SizeofResource
GlobalAlloc
GlobalLock
UnmapViewOfFile
MapViewOfFile
GetLastError
CreateFileMappingW
CreateEventW
CloseHandle
MultiByteToWideChar
CreateMutexW
ResetEvent
SetEvent
WaitForMultipleObjects
ReleaseMutex
WaitForSingleObject
WideCharToMultiByte

user32

LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
OffsetRect
BringWindowToTop
GetDesktopWindow
TranslateAcceleratorW
IntersectRect
InflateRect
GetMenuStringW
InsertMenuW
RemoveMenu
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetLastActivePopup
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
PeekMessageW
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
RedrawWindow
ReleaseCapture
GetActiveWindow
LoadImageW
IsWindowVisible
ValidateRect
GetMenuItemID
IsClipboardFormatAvailable
GetUpdateRect
SendMessageW
GetWindowRect
CreateWindowExW
GetClassInfoExW
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
GetWindowLongW
SetWindowLongW
CopyRect
GetWindow
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
TabbedTextOutW
GetKeyState
GetCursorPos
WindowFromPoint
IsWindowEnabled
DestroyMenu
AppendMenuW
GetMenuItemCount
DeleteMenu
ReuseDDElParam
UnpackDDElParam
CopyAcceleratorTableW
SetRect
InvalidateRgn
SetCapture
SetWindowRgn
CharUpperW
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamW
GetKeyNameTextW
MapVirtualKeyW
SetCursorPos
GetSubMenu
LoadMenuW
IsRectEmpty
UpdateWindow
SetActiveWindow
SetForegroundWindow
SetWindowPos
AttachThreadInput
GetWindowThreadProcessId
GetForegroundWindow
KillTimer
IsIconic
DestroyCursor
TranslateMessage
GetMessageW
PostQuitMessage
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
DrawStateW
GetMenuItemInfoW
RealChildWindowFromPoint
PtInRect
ClientToScreen
ScreenToClient
EnableWindow
GetParent
LoadStringW
wsprintfW
SetMenuItemInfoW
GetSystemMetrics
GetDC
ReleaseDC
GetClientRect
IsWindow
AdjustWindowRectEx
PostMessageW
SystemParametersInfoW
InvalidateRect
FillRect
GetSysColor
SetCursor
LoadCursorW
EqualRect
LoadIconW
DestroyIcon
DrawIcon
SetRectEmpty
DrawTextW
SetDlgItemTextW
UnhookWindowsHookEx
SetWindowsHookExW
MessageBoxW
FindWindowW
GetClassInfoW
RegisterClassW
SetTimer
IsCharLowerW
MapVirtualKeyExW
SubtractRect
EnumChildWindows
GetWindowRgn
CreateMenu
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
CharUpperBuffW
FrameRect
GetDoubleClickTime
CopyIcon
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
PostThreadMessageW
GetIconInfo
HideCaret
InvertRect
LockWindowUpdate
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
SetClassLongW
DestroyAcceleratorTable
GetMenuDefaultItem
SetMenuDefaultItem
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
IsZoomed
GetAsyncKeyState
NotifyWinEvent
MessageBeep
GetSysColorBrush
CopyImage
EnumDisplayMonitors
SetLayeredWindowAttributes
UnregisterClassW
GetSystemMenu
SetParent
UnionRect
CharNextW
RegisterClipboardFormatW
DrawEdge
DrawFrameControl
DrawFocusRect
DrawIconEx
WaitMessage
GetNextDlgGroupItem

gdi32

ExtSelectClipRgn
CreatePatternBrush
CreateBitmap
SelectPalette
GetObjectType
CreatePen
CreateHatchBrush
CopyMetaFileW
CreateDCW
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
GetRgnBox
CreateEllipticRgn
LPtoDP
Ellipse
CreateDIBSection
CreateDIBitmap
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
GetBkColor
GetTextColor
CreatePolygonRgn
ScaleWindowExtEx
Polygon
CreateRoundRectRgn
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
Rectangle
SetPixel
SetDIBColorTable
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
SetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetTextFaceW
SetPixelV
SetWindowExtEx
GetWindowExtEx
OffsetWindowOrgEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
GetStockObject
GetObjectW
GetTextExtentPoint32W
CreateSolidBrush
DeleteDC
SelectObject
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetWindowOrgEx
GetPixel
CreateCompatibleDC
CreateFontIndirectW
StretchBlt
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
Polyline
DeleteObject

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueW
RegEnumKeyW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegEnumKeyExW
RegEnumValueW
RegDeleteKeyW
RegCloseKey
RegDeleteValueW
RegOpenKeyExW
CredFree
CredGetTargetInfoW

shell32

SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
SHGetSpecialFolderPathW
SHGetFileInfoW
ShellExecuteW
DragFinish
DragQueryFileW
SHAppBarMessage
SHGetDesktopFolder

comctl32

ImageList_GetIconSize
InitCommonControlsEx
_TrackMouseEvent

shlwapi

PathFindFileNameW
PathFileExistsW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW
StrCmpW

ole32

RevokeDragDrop
CoLockObjectExternal
OleGetClipboard
RegisterDragDrop
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CoInitialize
CLSIDFromProgID
CoCreateGuid
CoInitializeEx
CoUninitialize
OleDraw
CLSIDFromString
CoCreateInstance
CoDisconnectObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CreateStreamOnHGlobal

oleaut32

SysAllocStringByteLen
SysStringByteLen
VariantInit
VariantClear
SysFreeString
SysAllocString
OleCreateFontIndirect
LoadTypeLi
VarBstrFromDate
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
OleLoadPicture
VariantChangeType
SysAllocStringLen
VariantCopy

oledlg

OleUIBusyW

gdiplus

GdiplusShutdown
GdipDrawImageI
GdipGetImageGraphicsContext
GdipAlloc
GdipFree
GdipLoadImageFromStream
GdipCloneImage
GdipDisposeImage
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageRectI
GdipReleaseDC
GdipGetImageWidth
GdipGetImageHeight
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipSetInterpolationMode
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits

mpr

WNetCancelConnection2W
WNetAddConnection2W

winhttp

WinHttpQueryHeaders
WinHttpCrackUrl
WinHttpQueryAuthSchemes
WinHttpQueryOption
WinHttpWriteData
WinHttpSendRequest
WinHttpSetOption
WinHttpSetCredentials
WinHttpAddRequestHeaders
WinHttpOpenRequest
WinHttpConnect
WinHttpOpen
WinHttpGetIEProxyConfigForCurrentUser
WinHttpReceiveResponse
WinHttpReadData
WinHttpCloseHandle

wininet

InternetGetConnectedState

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 670KB - Virtual size: 670KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 201KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 772KB - Virtual size: 776KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a144aed0749929e888e65cf162fe4960

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

mpr

winhttp

wininet

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 670KB - Virtual size: 670KB

.data Size: 31KB - Virtual size: 63KB

.rsrc Size: 201KB - Virtual size: 201KB

.reloc Size: 772KB - Virtual size: 776KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 670KB - Virtual size: 670KB

.data
Size: 31KB - Virtual size: 63KB

.rsrc
Size: 201KB - Virtual size: 201KB

.reloc
Size: 772KB - Virtual size: 776KB