a9c324242576b0exeexeexeex[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

a9c324242576b0exeexeexeex.exe
Size

392KB
MD5

a9c324242576b03fbda67bb32cedd470
SHA1

6482609c44bf0f6ce288d922f07c1e9f1140a7a7
SHA256

fa1063c4b5e2270cdc7f5ccb6a02bfe8a5cd48edc43a647e44da754b2f97d172
SHA512

7e5a101a3b2081ddbf03034b7f5c875ea69096a01bf16832c5c10e68201c35c34dedc768add4835f0916e98df48fa8d5c0fcba127c2adf25288db5592eb8c0aa
SSDEEP

6144:eFrG1YBrwV9jY8oq1eMrJqSz5J5AnoS+mpLRGYLNX4dE1ojFSj0XEPupN:7YBwV9jYpMdDz5gncmpJxD1ojHEPu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9c324242576b0exeexeexeex.exe

Files

a9c324242576b0exeexeexeex.exe
.exe windows x86

7e60743f76be601a12d108dc573d1aa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
ExitProcess
RtlUnwind
TerminateProcess
HeapReAlloc
HeapSize
UnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
VirtualProtect
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
SetStdHandle
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
CreateThread
ExitThread
GetTickCount
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
SetErrorMode
FileTimeToSystemTime
GetOEMCP
GetCPInfo
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GlobalFlags
RaiseException
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FormatMessageA
LocalFree
InterlockedDecrement
WritePrivateProfileStringA
GetCurrentThread
GlobalAlloc
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GlobalFree
GlobalLock
GlobalUnlock
MulDiv
GetModuleHandleA
SetLastError
GetCurrentThreadId
FlushFileBuffers
SetFilePointer
WriteFile
HeapFree
GetProcessHeap
HeapAlloc
ReadFile
GetFileSize
CreateFileA
GetPrivateProfileIntA
GetPrivateProfileStringA
lstrcpynA
FreeResource
lstrcpyA
GetCurrentDirectoryA
LockResource
lstrcatA
CreateProcessA
SizeofResource
LoadResource
FindResourceA
GetVersion
GetVersionExA
OutputDebugStringA
DeleteCriticalSection
CompareStringA
GetModuleFileNameA
LoadLibraryA
EnterCriticalSection
GetProcAddress
GetThreadLocale
lstrcmpiA
InterlockedExchange
MultiByteToWideChar
GetACP
CompareStringW
LeaveCriticalSection
CreateEventA
WideCharToMultiByte
InitializeCriticalSection
FreeLibrary
GetLocaleInfoA
lstrlenA
WaitForSingleObject
GetEnvironmentVariableA
GetLastError
CreateMutexA
ResumeThread
GetEnvironmentStringsW
CloseHandle

user32

SetPropA
GetPropA
RemovePropA
IsChild
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
GetKeyState
GetScrollRange
SetForegroundWindow
IsWindowVisible
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
AdjustWindowRectEx
EqualRect
GetScrollInfo
GetClassInfoA
RegisterClassA
UnregisterClassA
DefWindowProcA
CallWindowProcA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetFocus
SetWindowPos
ShowWindow
MoveWindow
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetWindowTextLengthA
GetWindowTextA
GetScrollPos
GetWindow
SetFocus
GetDesktopWindow
GetActiveWindow
GetClassNameA
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
EndPaint
BeginPaint
GetWindowDC
ScreenToClient
GetNextDlgGroupItem
ClientToScreen
LoadBitmapA
DrawFocusRect
OffsetRect
DrawEdge
WindowFromPoint
GetCursorPos
GetCapture
GetWindowLongA
GetSysColor
GetWindowRect
FillRect
SendMessageA
GetClientRect
PtInRect
GetMenuCheckMarkDimensions
MessageBeep
InvalidateRgn
CopyAcceleratorTableA
SetRect
IsRectEmpty
GetParent
UpdateWindow
CopyRect
ReleaseCapture
SetCapture
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
SetWindowLongA
wsprintfA
FindWindowA
CharUpperA
GetClassInfoExA
GetClassLongA
KillTimer
SetWindowRgn
ReleaseDC
GetDC
SetTimer
DrawIcon
GetSystemMetrics
IsIconic
LoadIconA
PostMessageA
MessageBoxA
EnableWindow
SetCursor
LoadCursorA
InvalidateRect
PostThreadMessageA
RegisterClipboardFormatA
SetActiveWindow
CharNextA
DestroyMenu
GetSysColorBrush
GetMessageA
TranslateMessage
ValidateRect
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
CallNextHookEx
RegisterWindowMessageA
WinHelpA
CreateWindowExA
SetWindowsHookExA

gdi32

GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreateBitmap
GetDeviceCaps
CreateSolidBrush
CreateRectRgnIndirect
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
GetClipBox
SetMapMode
SetTextColor
SetBkMode
SetBkColor
RestoreDC
SaveDC
SelectClipRgn
DeleteDC
SelectObject
GetObjectA
DeleteObject
GetStockObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateFontIndirectA
StretchBlt
CreateCompatibleBitmap
CombineRgn
CreateCompatibleDC
CreateRectRgn
CreateDIBitmap
BitBlt
GetPixel

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueA
RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyA
RegOpenKeyExA

shell32

ShellExecuteA

comctl32

ord17
InitializeFlatSB
FlatSB_EnableScrollBar
ImageList_AddMasked
ImageList_Draw
_TrackMouseEvent
ImageList_Destroy
ImageList_Create

shlwapi

PathFileExistsA
PathAppendA
PathRemoveFileSpecA
PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
CoRegisterMessageFilter
OleFlushClipboard
CoTaskMemFree
OleIsCurrentClipboard

oleaut32

VariantClear
VariantInit
SysAllocStringLen
SysFreeString
SysStringLen
SysAllocStringByteLen
OleCreateFontIndirect
VariantTimeToSystemTime
SystemTimeToVariantTime
SafeArrayDestroy
SysAllocString
VariantCopy
VariantChangeType

wininet

InternetCloseHandle
InternetReadFile
HttpEndRequestA
InternetWriteFile
HttpSendRequestExA
HttpSendRequestA
InternetSetCookieA
HttpAddRequestHeadersA
HttpOpenRequestA
InternetConnectA
InternetAttemptConnect
InternetOpenA

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 232KB - Virtual size: 230KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e60743f76be601a12d108dc573d1aa8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

wininet

oleacc

Sections

.text Size: 232KB - Virtual size: 230KB

.rdata Size: 56KB - Virtual size: 55KB

.data Size: 12KB - Virtual size: 29KB

.rsrc Size: 88KB - Virtual size: 85KB

.text
Size: 232KB - Virtual size: 230KB

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 12KB - Virtual size: 29KB

.rsrc
Size: 88KB - Virtual size: 85KB