Malicious_116ce89fe8af1c1d93dc437b71fb620650eb5bdf582ff0cc2d22d58e8e836e06[.]dontrunthis

Sharing

Copy URL Twitter E-mail

General

Target

Malicious_116ce89fe8af1c1d93dc437b71fb620650eb5bdf582ff0cc2d22d58e8e836e06.dontrunthis
Size

4.2MB
MD5

720084cb7151f048055d6a1691963518
SHA1

ad0f7ba207cac019f9ab396dc0ed23f2aaea2a45
SHA256

73041a840d79ed65f76bce1f7fb657bde02c8a4834464e1aa973eabde2a0b0fc
SHA512

6f1d96115f050e3e3b9c2b6eca07b120d4ec9e9614f5c237b6ac164315c6de2f9898e9753f399637e2333b91635ceb9c0d14c4e512e105ca50c3f00898b26ba8
SSDEEP

98304:NC+FIm+TccpnHVLaDMbOeVZ4/oB0vSym3zAo9:xWTc/MbOH/XfS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Malicious_116ce89fe8af1c1d93dc437b71fb620650eb5bdf582ff0cc2d22d58e8e836e06.dontrunthis

Files

Malicious_116ce89fe8af1c1d93dc437b71fb620650eb5bdf582ff0cc2d22d58e8e836e06.dontrunthis
.exe windows x86

a1c381cdac0204e5d4acf32412213f13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime
mixerClose
mixerGetDevCapsA
mciSendStringA
mciGetErrorStringA
mciSendCommandA
mixerGetNumDevs
mixerOpen
mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
mixerSetControlDetails

wsock32

WSAStartup
inet_addr
closesocket
setsockopt
getsockopt
WSAGetLastError
inet_ntoa
listen
shutdown
ntohs
ntohl
accept
select
bind
getsockname
getpeername
WSASetLastError
WSAAsyncSelect
getprotobyname
recvfrom
sendto
gethostname
recv
send
socket
gethostbyname
ioctlsocket
connect
htonl
htons
WSACleanup

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

GetComputerNameA
SetComputerNameA
RaiseException
WriteFile
SetFilePointer
GlobalSize
FreeResource
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
InterlockedDecrement
SetEvent
SuspendThread
CreateEventA
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
FileTimeToLocalFileTime
EnumResourceLanguagesA
ConvertDefaultLocale
InterlockedIncrement
GetProfileIntA
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
GetCurrentThread
GetCPInfo
GetOEMCP
SetErrorMode
GetCurrentDirectoryA
RtlUnwind
HeapAlloc
HeapFree
ExitProcess
TerminateProcess
HeapReAlloc
GetStartupInfoA
HeapSize
ExitThread
CreateThread
VirtualAlloc
GetSystemInfo
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
GetFileType
SetHandleCount
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsBadCodePtr
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
QueryPerformanceCounter
GetLocaleInfoW
OpenFileMappingA
WideCharToMultiByte
InterlockedExchange
GetACP
GetLocaleInfoA
GetPriorityClass
GetThreadPriority
SetPriorityClass
SetThreadPriority
GetEnvironmentStrings
FreeEnvironmentStringsA
SetEnvironmentVariableA
ExpandEnvironmentStringsA
GetPrivateProfileIntA
GetPrivateProfileSectionA
WritePrivateProfileSectionA
lstrcmpA
SetFileAttributesA
SetFileTime
GetFileTime
MoveFileA
GetDiskFreeSpaceA
GetFileSize
GetFullPathNameA
GetDriveTypeA
GetVolumeInformationA
SetVolumeLabelA
GetLogicalDrives
GetTimeZoneInformation
GetPrivateProfileSectionNamesA
FileTimeToSystemTime
GetCommandLineA
GetUserDefaultLCID
GetTempFileNameA
GetSystemDefaultLangID
GetLastError
FormatMessageA
GetPrivateProfileStringA
GetShortPathNameA
WritePrivateProfileStringA
GetCurrentProcess
DuplicateHandle
GetExitCodeThread
lstrcpynA
GlobalMemoryStatus
FindNextFileA
WaitForSingleObject
lstrcatA
GetTickCount
Sleep
GetSystemDirectoryA
IsBadWritePtr
VirtualQuery
VirtualProtect
SetLastError
IsBadReadPtr
GetThreadLocale
GlobalAlloc
GlobalFlags
GlobalFree
LocalAlloc
LocalHandle
LocalFree
CreateFileMappingA
MapViewOfFile
GetProcessHeaps
HeapWalk
GetVersionExA
HeapLock
HeapUnlock
UnmapViewOfFile
CopyFileA
GetSystemTime
GetModuleHandleA
GetModuleFileNameA
GetCurrentProcessId
GetCurrentThreadId
ResumeThread
CreatePipe
CreateProcessA
ReadFile
GetWindowsDirectoryA
DeviceIoControl
SystemTimeToFileTime
GetSystemTimeAsFileTime
DeleteFileA
RemoveDirectoryA
CreateFileA
CloseHandle
FreeLibrary
LoadLibraryA
GetProcAddress
CreateDirectoryA
FindFirstFileA
FindClose
GetFileAttributesA
MulDiv
lstrcpyA
GlobalLock
GlobalUnlock
FindResourceA
LoadResource
LockResource
SizeofResource
GetStringTypeExA
GetEnvironmentVariableA
GetProcessVersion
lstrlenA
lstrcmpiA
CompareStringW
lstrlenW
CompareStringA
GetVersion
MultiByteToWideChar
TlsFree

user32

MapVirtualKeyA
SetActiveWindow
EnumThreadWindows
WaitForInputIdle
ExitWindowsEx
EnumDisplaySettingsA
ChangeDisplaySettingsA
PeekMessageA
TranslateMessage
GetWindowTextLengthA
EnumWindows
EnumChildWindows
SendNotifyMessageA
SetParent
CheckMenuItem
GetUpdateRect
wvsprintfA
GetDesktopWindow
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetWindowPlacement
UnregisterClassA
GetClassInfoA
SetScrollInfo
GetScrollInfo
DeferWindowPos
AdjustWindowRectEx
ShowScrollBar
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
GetLastActivePopup
IsChild
SendDlgItemMessageA
GetClassInfoExA
RegisterWindowMessageA
SetDlgItemTextA
IsDialogMessageA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetWindowDC
ValidateRect
BringWindowToTop
InsertMenuItemA
LoadAcceleratorsA
ReuseDDElParam
UnpackDDElParam
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
CharNextA
IsClipboardFormatAvailable
DrawIcon
MessageBeep
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
GetDCEx
LockWindowUpdate
RegisterClipboardFormatA
LoadStringA
GetKeyNameTextA
wsprintfA
RemoveMenu
TrackPopupMenu
SetMenu
CreateMenu
DestroyMenu
CreateAcceleratorTableA
GetMenuStringA
DestroyAcceleratorTable
TranslateAcceleratorA
InsertMenuA
RegisterClassA
GetWindow
GetClipboardData
LoadCursorFromFileA
DestroyCursor
GetFocus
SetFocus
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetClassLongA
SetClassLongA
IntersectRect
ShowWindow
RegisterClassExA
DefWindowProcA
SetCursor
BeginPaint
GetWindowTextA
EndPaint
SetWindowTextA
MoveWindow
PostQuitMessage
PostThreadMessageA
GetDlgItem
SetWindowRgn
GetKeyState
OpenIcon
SetForegroundWindow
IsIconic
LoadMenuA
GetSubMenu
SetMenuDefaultItem
DeleteMenu
DestroyIcon
AppendMenuA
CreatePopupMenu
ShowCursor
FindWindowA
IsWindowEnabled
CreateWindowExA
DestroyWindow
LoadIconA
UpdateWindow
WinHelpA
GetTabbedTextExtentA
SetWindowPos
RedrawWindow
IsMenu
SetMenuItemInfoA
SetWindowsHookExA
GetMenuItemRect
DrawIconEx
LoadBitmapA
GetWindowLongA
CallNextHookEx
CallWindowProcA
UnhookWindowsHookEx
SetWindowLongA
IsWindowVisible
GetPropA
SetPropA
RemovePropA
GetForegroundWindow
EqualRect
OffsetRect
InflateRect
SetRectEmpty
GetMenuItemInfoA
DrawStateA
IsWindow
GetActiveWindow
IsZoomed
GetSystemMenu
ModifyMenuA
GetMenuState
GetMenuItemCount
EnableMenuItem
SetLastErrorEx
GetClientRect
GetCursorPos
WindowFromPoint
ScreenToClient
PostMessageA
GetMessageA
DispatchMessageA
ReleaseCapture
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetWindowRect
SetCapture
GetCapture
KillTimer
SetTimer
InvalidateRect
ClientToScreen
DrawFrameControl
PtInRect
IsRectEmpty
GetDlgCtrlID
GetParent
SendMessageA
MessageBoxA
LoadImageA
FillRect
SetRect
CopyRect
EnableWindow
LoadCursorA
SystemParametersInfoA
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetSystemMetrics
CharUpperA
CharLowerW
GetClassNameA
GetMenu
GetMenuItemID

gdi32

DPtoLP
LPtoDP
Rectangle
GetTextMetricsA
DeleteObject
SelectObject
GetStockObject
StretchDIBits
ResetDCA
GetMapMode
GetTextColor
CreatePen
CreateFontIndirectA
DeleteDC
SetTextColor
BitBlt
SetBkColor
GetPixel
StretchBlt
CreateCompatibleBitmap
CreateBitmap
GetObjectA
CreateCompatibleDC
GetCurrentObject
CreateSolidBrush
SetPixel
GetClipBox
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextExtentPoint32A
SetBkMode
PtInRegion
ExtCreateRegion
CreateDIBSection
IntersectClipRect
SelectClipRgn
GetDIBits
CreateRectRgn
EnumFontFamiliesExA
Ellipse
RoundRect
StartDocA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
CreatePenIndirect
CreateBrushIndirect
GetCharWidthA
SetROP2
SetWinMetaFileBits
DeleteEnhMetaFile
GetEnhMetaFileHeader
SetEnhMetaFileBits
PlayEnhMetaFile
RealizePalette
SelectPalette
CreatePalette
GetEnhMetaFilePaletteEntries
CreateDCA
CopyMetaFileA
CreateRectRgnIndirect
PatBlt
SaveDC
RestoreDC
SetPolyFillMode
SetStretchBltMode
SetMapMode
ExcludeClipRect
LineTo
MoveToEx
SetTextAlign
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ExtSelectClipRgn
CreatePatternBrush
SetRectRgn
CombineRgn
GetBkColor
GetViewportOrgEx
CreateEllipticRgn
GetRgnBox
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceA
GetWindowOrgEx
GetDeviceCaps

comdlg32

ChooseColorA
GetSaveFileNameA
CommDlgExtendedError
GetOpenFileNameA
GetFileTitleA
PrintDlgA
ChooseFontA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
EnumPrintersA

advapi32

RegQueryValueA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegEnumValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegDeleteKeyA
AdjustTokenPrivileges
RegCreateKeyA
RegSetValueA
RegEnumKeyA
GetUserNameA
OpenProcessToken
LookupPrivilegeValueA

shell32

SHGetMalloc
ExtractIconA
DragFinish
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
ShellExecuteA
Shell_NotifyIconA
DragQueryFileA
FindExecutableA
SHBrowseForFolderA
SHAddToRecentDocs

comctl32

ImageList_Destroy
ord17
PropertySheetA
ImageList_Draw
ImageList_GetImageInfo

shlwapi

PathFindFileNameA
PathFindExtensionA
PathStripToRootA
PathIsUNCA

oledlg

ord8

ole32

CoCreateGuid
CLSIDFromString
StringFromGUID2
OleUninitialize
OleInitialize
CoCreateInstance
CLSIDFromProgID
MkParseDisplayName
CreateBindCtx
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
ReleaseStgMedium
OleDuplicateData
CoDisconnectObject
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CoFreeUnusedLibraries
CoRevokeClassObject
CoRegisterMessageFilter

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 312KB - Virtual size: 309KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a1c381cdac0204e5d4acf32412213f13

Headers

File Characteristics

Imports

winmm

wsock32

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 312KB - Virtual size: 309KB

.data Size: 28KB - Virtual size: 55KB

.rsrc Size: 200KB - Virtual size: 200KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 312KB - Virtual size: 309KB

.data
Size: 28KB - Virtual size: 55KB

.rsrc
Size: 200KB - Virtual size: 200KB