e8a5b772e4dcd36a389a534cbfccb8ef8dbaf801dcf34f6b4f5e35bdbffd23d2

Sharing

Copy URL Twitter E-mail

General

Target

e8a5b772e4dcd36a389a534cbfccb8ef8dbaf801dcf34f6b4f5e35bdbffd23d2
Size

3.8MB
MD5

e2527f6a22a26b92f6d51fe682514193
SHA1

28f564a9f986f69b9d4e4c1249642a763b272c4a
SHA256

e8a5b772e4dcd36a389a534cbfccb8ef8dbaf801dcf34f6b4f5e35bdbffd23d2
SHA512

560a10a6e7519f24c5bada34f9074023702dc2bb9abd16c40f0d71f5014f0ad40061b80a07d52fc00decaa0bbca0a6912d6c73219b45ec3a089fe6a1185a89c0
SSDEEP

98304:I945RzsyfIDOW+I5ub++78UYZksUoVDyK0y:B4yO5ub+u2yK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e8a5b772e4dcd36a389a534cbfccb8ef8dbaf801dcf34f6b4f5e35bdbffd23d2

Files

e8a5b772e4dcd36a389a534cbfccb8ef8dbaf801dcf34f6b4f5e35bdbffd23d2
.exe windows x86

40923b83f21007ae11abea273cd3fbaa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathW
GetNamedPipeInfo
DisconnectNamedPipe
CreateFileW
CreateNamedPipeW
WriteFile
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
ResetEvent
CreateThread
SetEvent
CreateEventW
SetThreadPriority
VirtualQuery
WideCharToMultiByte
CopyFileW
CreateProcessW
WriteConsoleW
GetStringTypeW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
SetCurrentDirectoryW
GetCurrentDirectoryW
CloseHandle
DeleteFileW
GetFileAttributesExW
MultiByteToWideChar
GetSystemDirectoryW
GetVersionExW
GetCurrentThreadId
GetFileAttributesW
WaitForSingleObject
PeekNamedPipe
GetModuleFileNameW
TerminateProcess
GetCurrentProcess
FindNextFileW
OpenFileMappingW
GetCommandLineW
FindFirstFileExW
GetTimeZoneInformation
HeapFree
SetLastError
LCMapStringW
ReadFile
FreeLibrary
GetProcAddress
LoadLibraryW
ExitProcess
FindResourceW
LoadResource
LockResource
FreeResource
InitializeCriticalSection
SizeofResource
GlobalReAlloc
MulDiv
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
GlobalSize
IsDebuggerPresent
GetTickCount
Sleep
CreateDirectoryW
FindClose
FindFirstFileW
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
UnmapViewOfFile
GetCurrentProcessId
MapViewOfFile
CreateFileMappingW
EnterCriticalSection
OutputDebugStringA
GetCurrentThread
GetModuleHandleA
GetModuleHandleW
LoadLibraryExW
GlobalDeleteAtom
lstrcmpA
lstrcmpW
CompareStringA
ResumeThread
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GlobalAddAtomW
lstrcpyW
LocalFree
FormatMessageW
EncodePointer
LoadLibraryA
GlobalFindAtomW
CompareStringW
GlobalGetAtomNameW
VerSetConditionMask
VerifyVersionInfoW
GetFileSize
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalHandle
LocalAlloc
LocalReAlloc
GetThreadLocale
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GlobalFlags
FlushFileBuffers
GetFullPathNameW
GetVolumeInformationW
LockFile
SetEndOfFile
SetFilePointer
UnlockFile
DuplicateHandle
lstrcmpiW
VirtualProtect
SearchPathW
GetProfileIntW
SystemTimeToTzSpecificLocalTime
GetFileSizeEx
GetFileTime
SetErrorMode
FindResourceExW
GetTempFileNameW
GetWindowsDirectoryW
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
InitializeSListHead
GetStartupInfoW
OutputDebugStringW
RtlUnwind
GetCommandLineA
GetModuleHandleExW
ExitThread
FreeLibraryAndExitThread
GetSystemInfo
VirtualAlloc
QueryPerformanceFrequency
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
SetFilePointerEx

user32

DeferWindowPos
EndDeferWindowPos
IsIconic
GetDlgItem
GetDlgCtrlID
SetFocus
GetCapture
GetMenu
SetMenu
TrackPopupMenu
UpdateWindow
GetForegroundWindow
BeginPaint
EndPaint
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetPropW
RemovePropW
GetWindowTextW
GetWindowTextLengthW
AdjustWindowRectEx
MapWindowPoints
EqualRect
PtInRect
SetWindowLongW
GetClassLongW
GetClassNameW
GetTopWindow
SetScrollInfo
GetScrollInfo
WinHelpW
ShowWindow
BringWindowToTop
ReleaseCapture
LoadAcceleratorsW
TranslateAcceleratorW
LoadMenuW
CreatePopupMenu
DestroyMenu
InsertMenuItemW
InvalidateRect
SetRectEmpty
IntersectRect
DestroyIcon
UnpackDDElParam
ReuseDDElParam
SetParent
SetLayeredWindowAttributes
GetSysColorBrush
EnumDisplayMonitors
DrawStateW
IsRectEmpty
TrackMouseEvent
CharUpperW
GetAsyncKeyState
SetCapture
SetTimer
KillTimer
GetSystemMenu
DeleteMenu
SetWindowRgn
WindowFromPoint
NotifyWinEvent
ModifyMenuW
ClientToScreen
PostThreadMessageW
WaitMessage
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
MapVirtualKeyW
CreateAcceleratorTableW
DestroyAcceleratorTable
CopyAcceleratorTableW
EnumChildWindows
LockWindowUpdate
SetClassLongW
CheckDlgButton
SetWindowTextW
IsDialogMessageW
CharNextW
InvalidateRgn
SetRect
GetNextDlgGroupItem
GetNextDlgTabItem
RealChildWindowFromPoint
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
DrawEdge
DrawFrameControl
DrawFocusRect
DrawIconEx
UnionRect
GetIconInfo
GetMenuItemInfoW
SendDlgItemMessageA
CreateDialogIndirectParamW
EndDialog
GetKeyNameTextW
SetCursorPos
CharUpperBuffW
UpdateLayeredWindow
EnableScrollBar
GetMenuDefaultItem
SetMenuDefaultItem
CopyIcon
FrameRect
IsClipboardFormatAvailable
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsCharLowerW
MapVirtualKeyExW
SubtractRect
GetUpdateRect
GetDoubleClickTime
CreateMenu
DestroyCursor
GetComboBoxInfo
DrawIcon
GetWindowRgn
HideCaret
InvertRect
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
IsMenu
GetClassInfoExW
CallWindowProcW
GetMessageTime
GetMessagePos
UnhookWindowsHookEx
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
MonitorFromPoint
InflateRect
CopyRect
FillRect
GetSysColor
ScreenToClient
IsWindow
RegisterWindowMessageW
GetLastActivePopup
GetWindowLongW
IsWindowEnabled
EnableWindow
SetCursor
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
IsWindowVisible
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
PostQuitMessage
PostMessageW
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
RegisterClipboardFormatW
SystemParametersInfoW
OffsetRect
MessageBeep
RedrawWindow
IsZoomed
UnregisterClassW
GetPropW
MessageBoxW
ReleaseDC
GetClientRect
GetWindowDC
GetSystemMetrics
GetDC
GetWindowRect
LoadImageW
GetDesktopWindow
LoadCursorW
LoadIconW
RegisterClassW
GetClassInfoW
GetActiveWindow
LoadStringW
SendMessageW
CreateWindowExW
DefWindowProcW
CopyImage
SetForegroundWindow
GetParent
SetClipboardData
MoveWindow
EmptyClipboard
CloseClipboard
GetMonitorInfoW
OpenClipboard
SetActiveWindow
MonitorFromWindow
GetWindowThreadProcessId
GetKeyState
wsprintfW
BeginDeferWindowPos
ShowOwnedPopups

gdi32

Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
RoundRect
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
FillRgn
DPtoLP
GetBoundsRect
PtInRegion
GetNearestPaletteIndex
GetTextFaceW
CreateEllipticRgn
SetRectRgn
GetMapMode
ScaleWindowExtEx
FrameRgn
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetPixelV
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetBkMode
ExtSelectClipRgn
ScaleViewportExtEx
ExtTextOutW
TextOutW
MoveToEx
CopyMetaFileW
CreateDCW
SetBkColor
SetTextColor
CreateDIBitmap
CreatePen
CreatePatternBrush
CreateRectRgnIndirect
CreateSolidBrush
EnumFontFamiliesW
GetTextCharsetInfo
GetTextMetricsW
CombineRgn
CreateRectRgn
GetPixel
PatBlt
SetPixel
CreateRoundRectRgn
GetRgnBox
OffsetRgn
GetTextColor
GetBkColor
CreateHatchBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
DeleteDC
DeleteObject
GetObjectW
CreatePalette
SelectPalette
GetSystemPaletteEntries
GetDeviceCaps
GetDIBits
GetStockObject
RealizePalette
StretchBlt
CreateCompatibleDC
SetDIBColorTable
CreateDIBSection
SelectObject
CreateCompatibleBitmap
BitBlt
CreateFontIndirectW
GetTextExtentPoint32W
CreateBitmap

advapi32

RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegQueryValueW
RegCloseKey
RegEnumValueW
RegEnumKeyExW
RegEnumKeyW
RegDeleteValueW
RegCreateKeyExW

shell32

SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetFileInfoW
SHGetMalloc
SHAppBarMessage
DragFinish
DragQueryFileW
ShellExecuteW
SHGetPathFromIDListW

ole32

CoGetClassObject
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoDisconnectObject
DoDragDrop
ReleaseStgMedium
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateGuid
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
CoUninitialize
CoInitializeEx
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
OleGetClipboard
StgOpenStorageOnILockBytes

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime
VariantInit
LoadTypeLi
SysFreeString
OleCreateFontIndirect
SysAllocString
VariantCopy
VariantChangeType
VariantClear
VarBstrFromDate
SysAllocStringLen
SysStringLen
SafeArrayDestroy

comctl32

ImageList_AddMasked
ImageList_Create
ImageList_Destroy
InitCommonControlsEx

bass

BASS_ChannelGetAttribute
BASS_Init
BASS_Free
BASS_SetVolume
BASS_ChannelSetPosition
BASS_SetConfig
BASS_ChannelBytes2Seconds
BASS_ChannelGetPosition
BASS_ChannelIsActive
BASS_ChannelGetLength
BASS_StreamFree
BASS_ChannelStop
BASS_ChannelPause
BASS_StreamCreateFile
BASS_ChannelPlay

shlwapi

StrFormatKBSizeW
PathFileExistsW
PathFindExtensionW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
PathFindFileNameW
PathIsDirectoryW

msimg32

TransparentBlt
AlphaBlend

uxtheme

GetWindowTheme
OpenThemeData
DrawThemeText
GetThemeSysColor
IsAppThemed
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
GetThemePartSize

oledlg

OleUIBusyW

gdiplus

GdipCloneImage
GdipGetImagePaletteSize
GdipGetImageHeight
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipCreateBitmapFromStream
GdipAlloc
GdipDisposeImage
GdipGetImagePixelFormat
GdipFree
GdipBitmapLockBits
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipGetImagePalette
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipDrawImageI
GdiplusShutdown
GdipDrawImageRectI
GdipBitmapUnlockBits

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40923b83f21007ae11abea273cd3fbaa

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

bass

shlwapi

msimg32

uxtheme

oledlg

gdiplus

oleacc

imm32

winmm

winspool.drv

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 1.9MB - Virtual size: 1.9MB

.data Size: 25KB - Virtual size: 43KB

.rsrc Size: 139KB - Virtual size: 138KB

.reloc Size: 151KB - Virtual size: 150KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 1.9MB - Virtual size: 1.9MB

.data
Size: 25KB - Virtual size: 43KB

.rsrc
Size: 139KB - Virtual size: 138KB

.reloc
Size: 151KB - Virtual size: 150KB