3d7ddc9ebd0355exeexeexeex[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

3d7ddc9ebd0355exeexeexeex.exe
Size

320KB
MD5

3d7ddc9ebd03551201c05536c5644c3b
SHA1

0f645617398d993c871927af98bc90671d9d5fa1
SHA256

0d4432bb1adb7677cd48f40a76b0afc5f187b69060af572e85a55f2084d29301
SHA512

ce7694590688f143a18cdb96acaa440521d76f3f5d872608fa65fe3691c9e353eb1794f4a37214bb8f46afa533b31aface173b2ed3370d0382f3f6dba2e444f5
SSDEEP

6144:4Gste2DYUhUVuixcyGgop0uDoPh5kqqDL6AF5y15Ci:rOpVixcyG9+Rhqn6AF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d7ddc9ebd0355exeexeexeex.exe

Files

3d7ddc9ebd0355exeexeexeex.exe
.exe windows x86

c396154eb68c6149d2133372c17b079f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
SetErrorMode
GetCPInfo
GetOEMCP
RtlUnwind
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
VirtualQuery
GetStartupInfoA
GetCommandLineA
GetSystemTimeAsFileTime
SetEnvironmentVariableA
HeapReAlloc
SetStdHandle
HeapSize
GlobalHandle
GetTickCount
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetLocaleInfoW
GlobalReAlloc
GlobalFlags
InterlockedIncrement
WritePrivateProfileStringA
InterlockedDecrement
LeaveCriticalSection
EnterCriticalSection
LocalAlloc
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
GetFullPathNameA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetLastError
GlobalFree
MulDiv
GlobalUnlock
GlobalAddAtomA
GetCurrentThread
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetModuleHandleA
GetProcAddress
GetProcessHeap
ConvertDefaultLocale
EnumResourceLanguagesA
GetDiskFreeSpaceExA
DuplicateHandle
GetFileType
GetFileSize
SetFilePointer
FileTimeToSystemTime
lstrcpyA
FormatMessageA
ExitProcess
LoadLibraryA
FreeLibrary
FreeResource
TerminateProcess
ReadFile
DeviceIoControl
DeleteCriticalSection
InitializeCriticalSection
RaiseException
ReleaseMutex
OutputDebugStringA
DeleteFileA
CreateMutexA
CopyFileA
CreateFileA
WriteFile
QueryDosDeviceA
WaitForSingleObject
GetDriveTypeA
CreateEventA
SetEvent
FindFirstFileA
FindClose
lstrcpynA
lstrcatA
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetSystemInfo
CreateProcessA
ResumeThread
GetVolumeInformationA
GetModuleFileNameA
CloseHandle
GetEnvironmentVariableA
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
GetLastError
MultiByteToWideChar
GetCommandLineW
LocalFree
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
QueryPerformanceCounter

user32

GetSysColorBrush
EndPaint
BeginPaint
ReleaseDC
GetDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
LoadCursorA
ClientToScreen
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
IsIconic
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
EndDialog
GetWindowTextLengthA
SetWindowPos
SetFocus
ShowWindow
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
DestroyMenu
SendDlgItemMessageA
GetDlgItem
GetWindow
wsprintfA
GetSystemMetrics
GetMenuItemID
GetMenuItemCount
GetSubMenu
SetMenuItemBitmaps
GetFocus
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetActiveWindow
GetKeyState
GetCursorPos
ValidateRect
GetParent
GetLastActivePopup
IsWindowEnabled
SetCursor
PostQuitMessage
UpdateWindow
PeekMessageA
TranslateMessage
DispatchMessageA
GetWindowLongA
PostMessageA
UnregisterClassA
EnableWindow
SystemParametersInfoA
GetWindowTextA
OpenInputDesktop
GetUserObjectInformationA
CloseDesktop
MessageBoxA
IsWindow
IsWindowVisible
SendMessageA
CharUpperA
GetNextDlgTabItem
GetSysColor

gdi32

GetStockObject
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
SaveDC
RestoreDC
ScaleViewportExtEx
SetMapMode
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateBitmap
GetDeviceCaps
GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteObject

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

AdjustTokenPrivileges
RegDeleteKeyA
CryptAcquireContextA
CryptCreateHash
CryptHashData
CryptReleaseContext
CryptDestroyHash
CryptGetHashParam
OpenProcessToken
RegEnumKeyA
RegCreateKeyA
RegQueryValueA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
LookupPrivilegeValueA

shell32

CommandLineToArgvW

comctl32

ord17

shlwapi

PathRemoveFileSpecA
PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA

oleaut32

VariantClear
VariantChangeType
VariantInit

wininet

InternetCloseHandle
InternetGetLastResponseInfoA
InternetOpenA
InternetSetStatusCallback
InternetSetFilePointer
InternetReadFile
HttpSendRequestA
InternetConnectA
HttpOpenRequestA
InternetQueryDataAvailable
InternetWriteFile

psapi

GetModuleBaseNameA

setupapi

SetupDiGetDeviceInstanceIdA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c396154eb68c6149d2133372c17b079f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

wininet

psapi

setupapi

Sections

.text Size: 192KB - Virtual size: 191KB

.rdata Size: 76KB - Virtual size: 73KB

.data Size: 20KB - Virtual size: 33KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 192KB - Virtual size: 191KB

.rdata
Size: 76KB - Virtual size: 73KB

.data
Size: 20KB - Virtual size: 33KB

.rsrc
Size: 28KB - Virtual size: 25KB