cf881816250fea39e449dae5ac69a9b20dac19ce33f49a28c2f2420e4e385868

Sharing

Copy URL

Twitter E-mail

General

Target

cf881816250fea39e449dae5ac69a9b20dac19ce33f49a28c2f2420e4e385868
Size

588KB
MD5

d88970a9852cbe90c4feab81b72ea4f3
SHA1

37ed67d3b34054792d4b4cb76759b974ba01a549
SHA256

cf881816250fea39e449dae5ac69a9b20dac19ce33f49a28c2f2420e4e385868
SHA512

13c79211e14f068d3dc92836bd1141a96356c4c5e755e60923c3ce8dcb010090990b79ddd64edb0c0406cc363a8aa7c8bfe85186f136f9bc362d81b9cae3ce85
SSDEEP

6144:EsvNe++UKgdCBixi57Htz5mL5ZrcWcO3LM7DFHzTg7/dAjAt7pRCt49b9L9Bn/SV:Pk+V8cZjcO3LMnxzT6/6Ut2gh9gC8D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf881816250fea39e449dae5ac69a9b20dac19ce33f49a28c2f2420e4e385868

Files

cf881816250fea39e449dae5ac69a9b20dac19ce33f49a28c2f2420e4e385868
.exe windows x86

2a6a14e380a1165de1b5bf88a6303954

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

kernel32

HeapSize
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
HeapReAlloc
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
InterlockedDecrement
InterlockedIncrement
LocalAlloc
FormatMessageA
GetLastError
MultiByteToWideChar
TerminateProcess
GetACP
GetLocalTime
GetSystemTime
GetTimeZoneInformation
ExitThread
CreateThread
GetFileType
SetStdHandle
ExitProcess
GetCommandLineA
GetStartupInfoA
RaiseException
HeapAlloc
HeapFree
RtlUnwind
GetTickCount
SetErrorMode
WritePrivateProfileStringA
GetFileTime
GetFileSize
GetFileAttributesA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentProcess
DuplicateHandle
GetOEMCP
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
SizeofResource
GlobalFlags
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalAlloc
GetCurrentThread
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcmpA
MulDiv
SetLastError
lstrcpynA
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
WaitForSingleObject
GetThreadLocale
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LocalFree
WideCharToMultiByte
CreateProcessA
lstrcpyA
ClearCommError
Sleep
LoadLibraryA
GetProcAddress
FreeLibrary
GetModuleFileNameA
CreateMutexA
CreateFileA
WriteFile
CloseHandle
lstrcmpiA
FindResourceA
LoadResource
LockResource
GetCPInfo
lstrlenW
GetVersion
GetVersionExA
lstrlenA
GetStdHandle

user32

MessageBeep
RegisterClipboardFormatA
SetParent
PostThreadMessageA
ReleaseCapture
CopyAcceleratorTableA
CharUpperA
LoadCursorA
GetClassNameA
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
LoadStringA
PtInRect
DestroyMenu
EndPaint
BeginPaint
GetWindowDC
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
CharNextA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetNextDlgGroupItem
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
wsprintfA
EnableWindow
GetWindowPlacement
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetLastActivePopup
IsWindowEnabled
MessageBoxA
FindWindowA
IsIconic
SetCapture
LockWindowUpdate
GetDCEx
IsWindowVisible
DrawIcon
GetSystemMenu
LoadIconA
GetMessagePos
ScreenToClient
FrameRect
LoadImageA
GetIconInfo
CreateIconIndirect
DrawStateA
OffsetRect
DrawFocusRect
GetWindowRect
PostMessageA
ClientToScreen
WindowFromPoint
GetActiveWindow
SendMessageA
KillTimer
SetTimer
InvalidateRect
GetSysColor
InflateRect
UnionRect
SetRectEmpty
GetClientRect
CopyRect
GetMenuItemInfoA
SetRect
DrawEdge
FillRect
SystemParametersInfoA
DestroyIcon
DrawIconEx
ReleaseDC
DrawTextA
GetDC
GetDesktopWindow
GetSystemMetrics
AppendMenuA
GetMenuItemCount
ModifyMenuA
GetMenuState
GetMenuItemID
CreatePopupMenu
CreateMenu
GetMenuStringA
GetSysColorBrush
LoadBitmapA
TabbedTextOutA
SetCursor
GetParent
GetNextDlgTabItem
IsMenu
GetWindowLongA
DestroyCursor
GetSubMenu
GrayStringA

gdi32

CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
StretchDIBits
GetCharWidthA
CreateFontA
GetTextMetricsA
LPtoDP
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
GetTextExtentPointA
CreateDIBitmap
BitBlt
CreateCompatibleDC
CreateFontIndirectA
CreateSolidBrush
CreatePen
GetBkMode
GetDeviceCaps
ExtTextOutA
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetBkColor
GetTextColor
GetClipBox
CreateRectRgnIndirect
CreateBitmap
SetBkColor
SetTextColor
GetStockObject
Escape
TextOutA
PatBlt
RectVisible
PtVisible
GetObjectA
GetPixel
SetPixel
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
Ellipse
GetTextExtentPoint32A
GetTextExtentPoint32W
CreateCompatibleBitmap
ScaleViewportExtEx

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA

shell32

SHFileOperationA
ShellExecuteExA

comctl32

ImageList_GetIcon
ImageList_Draw
ImageList_AddMasked
ImageList_ReplaceIcon
_TrackMouseEvent
ImageList_Destroy
ImageList_Create
ImageList_GetImageCount
ord17

oledlg

ord8

ole32

CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
CoGetClassObject
OleInitialize
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
OleRun
CoInitialize
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
CoRevokeClassObject
StgCreateDocfileOnILockBytes

olepro32

ord253

oleaut32

SysFreeString
VariantClear
VariantInit
SafeArrayDestroy
VariantCopy
GetErrorInfo
SafeArrayPutElement
SafeArrayCreate
SafeArrayUnaccessData
SafeArrayAccessData
SysAllocString
VariantChangeType
SysAllocStringLen
SysAllocStringByteLen
VariantTimeToSystemTime
SysStringLen

mycom

?ReadComm@MyCom@@QAEKPAEK@Z
?OpenConnection@MyCom@@QAEHIKEEH@Z
?CloseConnection@MyCom@@QAEXXZ
??0MyCom@@QAE@XZ
?WriteComm@MyCom@@QAEKPAEK@Z

winmm

PlaySoundA

Sections

.text
Size: 364KB - Virtual size: 361KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a6a14e380a1165de1b5bf88a6303954

Headers

File Characteristics

Imports

setupapi

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

mycom

winmm

Sections

.text Size: 364KB - Virtual size: 361KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 28KB - Virtual size: 44KB

.rsrc Size: 124KB - Virtual size: 122KB

.text
Size: 364KB - Virtual size: 361KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 28KB - Virtual size: 44KB

.rsrc
Size: 124KB - Virtual size: 122KB