460e413022e6fbc53f68e9af56a4a43f1fcc35ae6996a2664aee4e0157c719de

Sharing

Copy URL Twitter E-mail

General

Target

460e413022e6fbc53f68e9af56a4a43f1fcc35ae6996a2664aee4e0157c719de
Size

4.6MB
MD5

8f83ddaca7201352143546db6d85f511
SHA1

175af31fb433a56ac2b190faf87331a9006054a5
SHA256

460e413022e6fbc53f68e9af56a4a43f1fcc35ae6996a2664aee4e0157c719de
SHA512

e6a35d0c44eaf0e721bcfac428319a3501d89cad2c0db61aaded7b7a3ed5b0ace95ca3c6ca2bce0bb15edf5963a790db73bc2de4949805f7d9271af6a79ce422
SSDEEP

98304:VAEkTFBgZcf/Z6Q+2UtHrB48C75Kvgd9fk8jORobc:9QCZYhyLad9fku/b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
460e413022e6fbc53f68e9af56a4a43f1fcc35ae6996a2664aee4e0157c719de

Files

460e413022e6fbc53f68e9af56a4a43f1fcc35ae6996a2664aee4e0157c719de
.exe windows x86

e051d2f274865486d3d398520c0e03f0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiGetDevicePropertyW
SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList

hid

HidD_GetHidGuid
HidD_GetAttributes
HidD_GetPreparsedData
HidP_GetCaps
HidD_GetSerialNumberString

d3d11

D3D11CreateDevice

kernel32

SearchPathA
GetTickCount64
GetProfileIntA
GetTempFileNameA
GetUserDefaultLCID
WaitForSingleObjectEx
IsProcessorFeaturePresent
UnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
GetCurrentDirectoryW
GetFileAttributesExW
SetFilePointerEx
EnumSystemLocalesW
IsValidLocale
LCMapStringW
CompareStringW
GetConsoleOutputCP
ReadConsoleW
GetFullPathNameW
SetStdHandle
HeapQueryInformation
MoveFileExW
DeleteFileW
GetTimeZoneInformation
FreeLibraryAndExitThread
ExitThread
GetModuleHandleExW
ExitProcess
PeekNamedPipe
GetFileType
GetFileInformationByHandle
GetSystemDefaultUILanguage
CreateFileW
GetTempPathA
GetCommandLineA
VirtualQuery
VirtualAlloc
GetSystemInfo
RtlUnwind
GetStringTypeW
LCMapStringEx
QueryPerformanceFrequency
SleepConditionVariableSRW
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
TryAcquireSRWLockExclusive
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
RaiseException
OutputDebugStringW
GetWindowsDirectoryA
FindResourceExW
GetCurrentDirectoryA
GetCommandLineW
GetLocaleInfoW
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExA
FileTimeToLocalFileTime
GlobalFlags
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
VerifyVersionInfoA
GetVersionExA
CompareStringA
GlobalGetAtomNameA
lstrcpyA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
GetSystemDirectoryW
EncodePointer
lstrcmpiA
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindClose
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
LocalAlloc
LoadLibraryExW
GetModuleFileNameW
lstrcmpA
SetLastError
GlobalSize
GetThreadPriority
SetThreadPriority
GetCurrentThread
FreeLibrary
GetProcessAffinityMask
GetModuleHandleW
CreateSemaphoreW
CreateEventW
ReleaseSemaphore
WriteConsoleW
GetConsoleMode
CopyFileA
GetVolumeInformationA
GetDriveTypeA
GetLogicalDriveStringsA
TerminateProcess
SetEnvironmentVariableA
GetModuleFileNameA
CreateProcessA
GetStartupInfoA
SetConsoleTitleA
SetCurrentConsoleFontEx
GetCurrentConsoleFont
GetStdHandle
AllocConsole
GetSystemTime
DeviceIoControl
SetFileAttributesA
GetFileAttributesA
DeleteFileA
GetModuleHandleA
GetSystemDefaultLangID
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
LoadLibraryW
MulDiv
GlobalFree
GlobalLock
GlobalAlloc
WriteProcessMemory
VirtualProtect
GetCurrentProcess
SetUnhandledExceptionFilter
CreateThread
GetProcAddress
LoadLibraryA
FormatMessageA
GetCurrentProcessId
LocalFree
GetLocalTime
GetCurrentThreadId
ReadFile
WriteFile
CreateFileA
CloseHandle
GetOverlappedResult
GetProcessHeap
DecodePointer
FreeEnvironmentStringsW
HeapAlloc
HeapReAlloc
HeapSize
OutputDebugStringA
HeapFree
FindNextFileA
FindFirstFileA
GlobalUnlock
FindResourceA
CreateDirectoryA
SuspendThread
ResumeThread
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
InitializeCriticalSectionEx
EnterCriticalSection
LeaveCriticalSection
GetLastError
CreateEventA
CreateMutexA
ResetEvent
ReleaseMutex
SetEvent
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
Sleep
WaitForSingleObject
GetExitCodeProcess
CreateProcessW
GetACP
VerSetConditionMask
GetCPInfo
GetOEMCP
GlobalFindAtomA
GetUserDefaultUILanguage
SetEnvironmentVariableW
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
GetDriveTypeW

user32

SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
NotifyWinEvent
SetWindowRgn
DestroyAcceleratorTable
MapVirtualKeyA
GetKeyNameTextA
SetRectEmpty
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
DrawStateA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
IsZoomed
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
IsIconic
EndDeferWindowPos
DeferWindowPos
SetMenuDefaultItem
IsRectEmpty
UpdateLayeredWindow
EnableScrollBar
UnionRect
LoadImageW
WaitMessage
BringWindowToTop
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
ReleaseCapture
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
CreatePopupMenu
InsertMenuItemA
SetCursor
DestroyIcon
LoadImageA
UnpackDDElParam
ReuseDDElParam
SetCapture
GetSystemMenu
DeleteMenu
MonitorFromPoint
PostQuitMessage
MessageBeep
GetSystemMetrics
CharUpperA
GetDesktopWindow
ShowOwnedPopups
GetSysColorBrush
RealChildWindowFromPoint
CopyImage
MapDialogRect
SetLayeredWindowAttributes
LoadCursorW
EnumDisplayMonitors
TrackMouseEvent
SetPropA
GetMenuDefaultItem
CopyAcceleratorTableA
GetDC
ReleaseDC
GetCursorInfo
GetIconInfo
DestroyCursor
UnregisterClassA
EnableWindow
SetRect
GetClientRect
InvalidateRect
InflateRect
PtInRect
OffsetRect
GetWindowRect
GetParent
ScreenToClient
GetAsyncKeyState
SetTimer
KillTimer
SendMessageA
IntersectRect
RedrawWindow
FillRect
PostMessageA
GetWindow
LoadCursorA
ClientToScreen
WindowFromPoint
GetSysColor
IsWindowVisible
EnumDisplayDevicesA
EnumDisplaySettingsExA
ChangeDisplaySettingsExA
SetDisplayConfig
DisplayConfigGetDeviceInfo
DisplayConfigSetDeviceInfo
QueryDisplayConfig
GetMenuItemID
ModifyMenuA
GetSubMenu
LoadMenuW
LoadBitmapW
SetMenuItemBitmaps
RemoveMenu
CheckMenuItem
LoadIconA
SetForegroundWindow
GetCursorPos
RegisterHotKey
GetClassInfoA
FindWindowA
EnableMenuItem
UpdateWindow
GetMenuStringA
GetMenuState
GetMenuItemCount
InsertMenuA
AppendMenuA
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetWindowDC
BeginPaint
EndPaint
IsWindowEnabled
MessageBoxA
GetWindowLongA
GetWindowThreadProcessId
GetLastActivePopup
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
GetActiveWindow
GetKeyState
ValidateRect
SetWindowsHookExA
CallNextHookEx
UnhookWindowsHookEx
LockWindowUpdate
SetParent
DrawEdge
DrawFrameControl
DrawFocusRect
DrawIconEx
IsClipboardFormatAvailable
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
CharUpperBuffA
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SetClassLongA
SetCursorPos
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
PostThreadMessageA
EnumChildWindows
RegisterClipboardFormatA
CopyIcon
FrameRect
GetNextDlgGroupItem
HideCaret
InvertRect
DrawIcon
CreateMenu
GetWindowRgn
GetUpdateRect
SubtractRect
GetDoubleClickTime
MapVirtualKeyExA
IsCharLowerA
GetComboBoxInfo
IsWindow

gdi32

GetStockObject
SelectPalette
RealizePalette
GetDIBits
Rectangle
CreateFontA
SetDIBColorTable
GetDIBColorTable
GetPixel
GetTextMetricsA
GetTextColor
GetBkColor
CreateRectRgnIndirect
FillRgn
FrameRgn
CreateRoundRectRgn
GetTextExtentPoint32A
CopyMetaFileA
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
GetDeviceCaps
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectA
PatBlt
SetRectRgn
DPtoLP
GetCharWidthA
StretchDIBits
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
GetRgnBox
OffsetRgn
SetPixel
EnumFontFamiliesExA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
LPtoDP
GetWindowOrgEx
GetBoundsRect
PtInRegion
GetViewportOrgEx
ExtFloodFill
SetPaletteEntries
RoundRect
GetTextFaceA
SetPixelV
CreateDCA
CreateCompatibleBitmap
GetCurrentObject
CreateBitmap
GetBitmapBits
ModifyWorldTransform
SetWorldTransform
SetGraphicsMode
SetBrushOrgEx
StretchBlt
DeleteDC
BitBlt
SetStretchBltMode
SelectObject
CreateCompatibleDC
CreateDIBSection
GetObjectA
MoveToEx
DeleteObject

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA
RegEnumValueA
RegEnumKeyExA
RegQueryValueA
RegEnumKeyA
RegCloseKey
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA

shell32

SHGetSpecialFolderPathA
SHCreateDirectoryExA
Shell_NotifyIconA
Shell_NotifyIconGetRect
SHGetFileInfoA
DragQueryFileA
DragFinish
SHAppBarMessage
SHGetMalloc
SHGetPathFromIDListA
ShellExecuteA
SHGetDesktopFolder
SHBrowseForFolderA
SHGetSpecialFolderLocation

comctl32

InitCommonControlsEx
_TrackMouseEvent

shlwapi

PathFindExtensionA
ord12
PathFileExistsA
UrlUnescapeA
PathIsUNCA
PathStripToRootA
PathFindFileNameA
StrFormatKBSizeA
PathRemoveFileSpecW

uxtheme

IsAppThemed
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemeSysColor

ole32

RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
OleLockRunning
CoDisconnectObject
CoInitialize
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CreateStreamOnHGlobal
CoUninitialize
CoTaskMemFree
CoCreateInstance
CoInitializeEx
RevokeDragDrop

oleaut32

SystemTimeToVariantTime
SysStringLen
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysFreeString
VarBstrFromDate
SysAllocString
VariantCopy
VariantTimeToSystemTime

gdiplus

GdipCreateBitmapFromStream
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipDrawImageI
GdipReleaseDC
GdipDrawImageRectI
GdipCreateStringFormat
GdipDeleteGraphics
GdipCreateFromHDC
GdipGetImageHeight
GdipGetImageWidth
GdipLoadImageFromStream
GdiplusStartup
GdipSetInterpolationMode
GdipDeleteStringFormat
GdiplusShutdown
GdipDisposeImage
GdipFree
GdipAlloc
GdipCloneImage
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0

urlmon

URLDownloadToFileA

dbghelp

MiniDumpWriteDump
MakeSureDirectoryPathExists

wtsapi32

WTSUnRegisterSessionNotification
WTSRegisterSessionNotification

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

ws2_32

listen
accept
closesocket
connect
bind
send
WSAStartup
recv
setsockopt
socket
htons
inet_addr

wininet

HttpEndRequestA
HttpSendRequestExA
HttpSendRequestA
HttpAddRequestHeadersA
InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetConnectA
InternetCloseHandle
InternetOpenA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetGetConnectedState
HttpQueryInfoA
HttpOpenRequestA

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 627KB - Virtual size: 626KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 600KB - Virtual size: 600KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e051d2f274865486d3d398520c0e03f0

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

hid

d3d11

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

urlmon

dbghelp

wtsapi32

version

ws2_32

wininet

oleacc

imm32

winmm

Sections

.text Size: 3.2MB - Virtual size: 3.2MB

.rdata Size: 627KB - Virtual size: 626KB

.data Size: 31KB - Virtual size: 1.1MB

.rsrc Size: 600KB - Virtual size: 600KB

.reloc Size: 181KB - Virtual size: 181KB

.text
Size: 3.2MB - Virtual size: 3.2MB

.rdata
Size: 627KB - Virtual size: 626KB

.data
Size: 31KB - Virtual size: 1.1MB

.rsrc
Size: 600KB - Virtual size: 600KB

.reloc
Size: 181KB - Virtual size: 181KB