32e53c3f678f0e9f8b410e5d66ff2a98839f97b47991adedcfee8af305e49da5

Sharing

Copy URL Twitter E-mail

General

Target

32e53c3f678f0e9f8b410e5d66ff2a98839f97b47991adedcfee8af305e49da5
Size

563KB
MD5

ddda3f7488e581250638aa3886525e92
SHA1

34a468605e23a6f79bc10815d1678e77e5cea2bb
SHA256

32e53c3f678f0e9f8b410e5d66ff2a98839f97b47991adedcfee8af305e49da5
SHA512

64fd61c1648457bfb9df4ee85e07ffe1eec6cf547d4d31b518cae3ccc57a1f0c2a04d8cc90917666e094a11cddbc673b4af83d88078e7a44133249baf17db4c3
SSDEEP

12288:9PeLGo9EOk1QT8y+qrAMPZS8cLvxCJxPH4zMtF:VeL13oyBBZS8cLGPuU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
32e53c3f678f0e9f8b410e5d66ff2a98839f97b47991adedcfee8af305e49da5

Files

32e53c3f678f0e9f8b410e5d66ff2a98839f97b47991adedcfee8af305e49da5
.exe windows x86

87eb45351ae4c1fbaf6dbbd7755f0e7d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyWindow
OffsetRect
ReleaseDC
LoadCursorW
RegisterClassW
GetClassInfoExW
PostQuitMessage
SetWindowLongW
IsWindow
GetWindowLongW
GetWindow
EnableWindow
CallMsgFilterW
SetFocus
ShowWindow
GetWindowRect
GetMonitorInfoW
MonitorFromWindow
IsIconic
SetWindowPos
GetSystemMetrics
SendMessageW
CallWindowProcW
SetPropW
GetPropW
GetDC
SetWindowTextW
InvalidateRect
ScreenToClient
GetKeyState
GetCursorPos
GetFocus
SetTimer
ReleaseCapture
BeginPaint
EndPaint
MoveWindow
GetUpdateRect
GetClientRect
IsRectEmpty
IntersectRect
UpdateLayeredWindow
PtInRect
UnionRect
SetCursor
CharNextW
MonitorFromPoint
IsZoomed
SetWindowRgn
MessageBoxW
IsWindowVisible
SetForegroundWindow
UnregisterClassW
ClientToScreen
GetSysColor
GetAsyncKeyState
OpenClipboard
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
EmptyClipboard
SetClipboardData
FindWindowW
GetDesktopWindow
MapWindowPoints
GetParent
PostMessageW
KillTimer
WaitMessage
GetQueueStatus
TranslateMessage
PeekMessageW
RegisterClassExW
SetCapture
DispatchMessageW
DefWindowProcW
CreateWindowExW
MsgWaitForMultipleObjectsEx

winmm

timeGetTime
timeSetEvent
timeKillEvent

comctl32

ord17
_TrackMouseEvent

shlwapi

PathFileExistsW
PathIsRelativeW

gdiplus

GdipDrawEllipseI
GdipDrawString
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipSetStringFormatFlags
GdipSetStringFormatTrimming
GdipDeleteStringFormat
GdipStringFormatGetGenericTypographic
GdipCloneStringFormat
GdipDeleteFont
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipDrawPath
GdipDrawRectangleI
GdipDrawBezierI
GdipDrawLineI
GdipFillRectangle
GdipDeletePath
GdipTransformPath
GdipIsOutlineVisiblePathPointI
GdipIsVisiblePathPointI
GdipGetPathWorldBoundsI
GdipAddPathPolygonI
GdipAddPathPieI
GdipAddPathArcI
GdipAddPathEllipseI
GdipAddPathRectangleI
GdipAddPathCurveI
GdipAddPathBezierI
GdipAddPathLine2I
GdipAddPathLineI
GdipClosePathFigure
GdipStartPathFigure
GdipGetPathFillMode
GdipSetPathFillMode
GdipResetPath
GdipClonePath
GdipFillEllipseI
GdipCreateTexture
GdipCreateBitmapFromHBITMAP
GdipCreateSolidFill
GdipGetPenDashStyle
GdipSetPenDashStyle
GdipGetPenLineJoin
GdipSetPenLineJoin
GdipGetPenDashCap197819
GdipGetPenEndCap
GdipGetPenStartCap
GdipSetPenDashCap197819
GdipSetPenEndCap
GdipSetPenStartCap
GdipSetPenColor
GdipGetPenWidth
GdipSetPenWidth
GdipClonePen
GdipLoadImageFromFile
GdipImageRotateFlip
GdipDrawImageRect
GdipSetWorldTransform
GdipRotateMatrix
GdipTranslateMatrix
GdipCreatePen2
GdipSetLineBlend
GdipCloneBrush
GdipDeleteBrush
GdipCreateLineBrushFromRect
GdipDrawArc
GdipDeletePen
GdipCreatePen1
GdipSetSmoothingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipFillPath
GdipDeleteMatrix
GdipCreateMatrix
GdipMeasureString
GdipCreatePath
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCreateHBITMAPFromBitmap
GdipImageSelectActiveFrame
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipCreateBitmapFromStream
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdipFree
GdipCreateBitmapFromFile
GdiplusShutdown
GdiplusStartup
GdipScaleMatrix

imm32

ImmReleaseContext
ImmSetCompositionWindow
ImmGetContext

msimg32

AlphaBlend

kernel32

OutputDebugStringW
SetStdHandle
FlushFileBuffers
WriteConsoleW
SetEndOfFile
SetFilePointerEx
GetConsoleCP
LCMapStringW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
ReadConsoleW
GetConsoleMode
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetStartupInfoW
GetFileType
GetProcessHeap
SetLastError
HeapSize
GetModuleHandleExW
ExitProcess
GetStringTypeW
RtlUnwind
HeapReAlloc
HeapAlloc
IsProcessorFeaturePresent
IsDebuggerPresent
HeapFree
LoadLibraryExW
GetCommandLineW
DecodePointer
EncodePointer
GetEnvironmentVariableW
GetFileSize
SetFilePointer
GetCurrentProcessId
GetModuleHandleA
MulDiv
GlobalAlloc
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
WideCharToMultiByte
MultiByteToWideChar
GetTickCount
VerSetConditionMask
CreateFileW
ReadFile
WriteFile
GetModuleHandleW
CreateIoCompletionPort
PostQueuedCompletionStatus
InterlockedExchange
GetQueuedCompletionStatus
VerifyVersionInfoW
GetLastError
SystemTimeToFileTime
QueryPerformanceCounter
GetSystemTimeAsFileTime
QueryPerformanceFrequency
LocalFileTimeToFileTime
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InterlockedCompareExchange
LoadLibraryW
GetFileAttributesW
GetModuleFileNameW
GetProcAddress
TlsGetValue
TlsSetValue
TlsAlloc
TlsFree
WaitForSingleObject
SetEvent
CreateEventW
CloseHandle
TerminateThread
Sleep
RaiseException
GetCurrentThreadId
VirtualQuery
GetCurrentProcess
GetStdHandle

gdi32

DeleteObject
BitBlt
CreateFontIndirectW
GetStockObject
SelectObject
RestoreDC
ExtSelectClipRgn
CreateRectRgnIndirect
GetObjectA
SetStretchBltMode
SetWindowOrgEx
GetWindowOrgEx
GetObjectW
SaveDC
DeleteDC
CreateCompatibleDC
StretchBlt
CreateDIBSection
CreateRoundRectRgn
GetDeviceCaps

shell32

ShellExecuteW

ole32

CreateStreamOnHGlobal
CoCreateInstance

Sections

.text
Size: 412KB - Virtual size: 412KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87eb45351ae4c1fbaf6dbbd7755f0e7d

Headers

DLL Characteristics

File Characteristics

Imports

user32

winmm

comctl32

shlwapi

gdiplus

imm32

msimg32

kernel32

gdi32

shell32

ole32

Sections

.text Size: 412KB - Virtual size: 412KB

.rdata Size: 95KB - Virtual size: 94KB

.data Size: 19KB - Virtual size: 28KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 27KB - Virtual size: 26KB

.text
Size: 412KB - Virtual size: 412KB

.rdata
Size: 95KB - Virtual size: 94KB

.data
Size: 19KB - Virtual size: 28KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 27KB - Virtual size: 26KB