2e4ac3993766e0exeexeexeex[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2e4ac3993766e0exeexeexeex.exe
Size

3.1MB
MD5

2e4ac3993766e0d24f25acdcd5adf752
SHA1

db8ae83aa510ad5ed8f4bd6f879c5ce3b1c5b186
SHA256

91bf2ba925006049d80f4c2852c22a44d16a70fc52617404fd284c2546a6849a
SHA512

e46be84434220016ae3b4f5a10fd912ed30db89189af4a880d74ca9ab5c4c0465790887bc3a2ceab7619472fb65c5d6ecb6afbc1886eb0688c67ec4571ded4a5
SSDEEP

49152:nf3PJpbgElQXfpVDrQdJyjET8XcwWrSOQBKdTK/+0:vjEKQ7ETwdOB0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e4ac3993766e0exeexeexeex.exe

Files

2e4ac3993766e0exeexeexeex.exe
.exe windows x86

2f41f24a14202a481c57ab317f7d9d7f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

kernel32

HeapCreate
VirtualFree
IsValidCodePage
GetStdHandle
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetDriveTypeA
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
GetProcessHeap
GetLastError
HeapSize
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceA
ExitProcess
GetModuleFileNameA
MultiByteToWideChar
GetACP
MulDiv
GlobalSize
GlobalLock
GlobalUnlock
GlobalAlloc
ExpandEnvironmentStringsA
GetProcAddress
LoadLibraryA
GlobalFree
GetTickCount
CloseHandle
WaitForSingleObject
ResumeThread
lstrlenA
LocalFree
FormatMessageA
SetLastError
DeleteFileA
GetThreadLocale
ReadFile
WriteFile
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
Sleep
HeapReAlloc
GetStartupInfoA
GetCommandLineA
RtlUnwind
HeapAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
TerminateProcess
HeapFree
GetOEMCP
GetCPInfo
GetCurrentDirectoryA
GlobalFlags
SetErrorMode
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GetModuleHandleW
FindNextFileA
GetFileTime
GetFileSizeEx
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
RaiseException
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetVersionExA
GlobalAddAtomA
GlobalDeleteAtom
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
CompareStringA
InterlockedExchange
GetPrivateProfileStringA
WritePrivateProfileStringA
SetEndOfFile
GetPrivateProfileIntA
GetCurrentThreadId
GetCurrentProcessId
lstrcmpA
FreeResource
FreeLibrary
InterlockedDecrement
GetModuleFileNameW
GetModuleHandleA
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize

user32

PostThreadMessageA
GetNextDlgGroupItem
InvalidateRgn
InvalidateRect
SetRect
CopyAcceleratorTableA
CharNextA
UnregisterClassA
GetSysColorBrush
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
RegisterWindowMessageA
LoadIconA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
ScrollWindow
SetMenu
SetScrollPos
GetScrollPos
SetForegroundWindow
UpdateWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
SetScrollInfo
DefWindowProcA
CallWindowProcA
GetMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
SetFocus
ShowWindow
MoveWindow
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
SendDlgItemMessageA
GetDlgItemInt
CheckDlgButton
GetWindow
SetWindowContextHelpId
SetWindowPos
PostQuitMessage
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
IsWindowVisible
GetKeyState
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetWindowThreadProcessId
GetLastActivePopup
MessageBoxA
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
UnhookWindowsHookEx
CharUpperA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
PeekMessageA
SetClipboardData
EmptyClipboard
GetClipboardData
CloseClipboard
EnumClipboardFormats
RegisterClipboardFormatA
OpenClipboard
GetAsyncKeyState
EqualRect
DestroyMenu
MessageBeep
PtInRect
InvertRect
GetCursor
SetCursor
GetFocus
DrawEdge
ScreenToClient
ReleaseDC
GetDC
MapDialogRect
UnionRect
IntersectRect
SendMessageA
ClientToScreen
SetRectEmpty
FrameRect
FillRect
GetSysColor
CopyRect
OffsetRect
GetWindowRect
MapWindowPoints
IsWindow
ReleaseCapture
KillTimer
SetTimer
SetCapture
IsRectEmpty
GetCursorPos
GetParent
GetClientRect
RedrawWindow
EnableWindow
LoadImageA
GetSystemMetrics
PostMessageA
LoadCursorA

gdi32

SetWinMetaFileBits
DeleteEnhMetaFile
GetEnhMetaFileHeader
SetEnhMetaFileBits
PlayEnhMetaFile
RealizePalette
SelectPalette
CreatePalette
GetEnhMetaFilePaletteEntries
ExtTextOutA
SetBkColor
SelectObject
CreateBitmap
GetClipBox
SetTextColor
GetObjectA
SaveDC
RestoreDC
SetBkMode
SetMapMode
LineTo
MoveToEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
GetStockObject
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateRectRgnIndirect
GetMapMode
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
DeleteObject
CreateBitmapIndirect
EndDoc
GetDIBits
EndPage
SetDIBitsToDevice
StartPage
StartDocA
GetDeviceCaps
DeleteDC
EnumFontFamiliesExA
Rectangle
BitBlt
SetDIBits
CreateCompatibleBitmap
CreateCompatibleDC
GetFontData
GetViewportExtEx
GetTextExtentPoint32A
CreateFontIndirectA

comdlg32

CommDlgExtendedError
PrintDlgA
GetFileTitleA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegSetValueExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA

shell32

ShellExecuteA

comctl32

_TrackMouseEvent

shlwapi

PathIsUNCA
PathFindExtensionA
PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathRemoveFileSpecW

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitializeEx
CoCreateInstance
CoUninitialize
CLSIDFromString
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CLSIDFromProgID

oleaut32

SysAllocStringByteLen
SysFreeString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysAllocString
VariantCopy
VariantInit
VariantChangeType
SysAllocStringLen
VariantClear
SysStringLen

ws2_32

htons
ntohl
ntohs
htonl

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 445KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f41f24a14202a481c57ab317f7d9d7f

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

.rdata Size: 445KB - Virtual size: 444KB

.data Size: 27KB - Virtual size: 115KB

.rsrc Size: 53KB - Virtual size: 52KB

.text
Size: 2.5MB - Virtual size: 2.5MB

.rdata
Size: 445KB - Virtual size: 444KB

.data
Size: 27KB - Virtual size: 115KB

.rsrc
Size: 53KB - Virtual size: 52KB