lovelyConditionTool[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

lovelyConditionTool.exe
Size

18.3MB
MD5

8ce7fd3bb175018da08051616e62003c
SHA1

badf2770c73d62490c9a248a765c7e81e54893b5
SHA256

e4f480fc08e6694a9bafceb85242e3da745426417e10eac0626cc32ed4debe85
SHA512

e066c9f301f6d596e66a0f4057940d95f71d36ab1c0bb81b6ed45e325f177bdb87175175990be52247e7b025487517f1f4cb4356e098fb3aa0ab96f33934f231
SSDEEP

393216:0U6d9Akpug1WRUNNghGXek4Zu5gS/mhevyPUnzFkI6ZwXQWA:96dWK7gRU4web7wO20Upkdd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
lovelyConditionTool.exe

Files

lovelyConditionTool.exe
.exe windows x86

815c213a2d3450e3ed431b7a8b593dd7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

winmm

timeGetTime

comctl32

FlatSB_GetScrollInfo
ImageList_Read
ImageList_Destroy
FlatSB_SetScrollProp
ImageList_BeginDrag
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Create
ImageList_GetIcon
ImageList_GetBkColor
ImageList_Write
ImageList_Remove
ImageList_DrawIndirect
FlatSB_SetScrollPos
ImageList_Add
FlatSB_GetScrollPos
InitializeFlatSB
ImageList_GetIconSize
ImageList_GetDragImage
ImageList_SetBkColor
ImageList_DragMove
ImageList_Draw
ImageList_GetImageCount
FlatSB_SetScrollInfo
ImageList_DragEnter
_TrackMouseEvent
ImageList_EndDrag
ImageList_DragLeave
ImageList_SetImageCount
ImageList_SetIconSize

shell32

ShellExecuteExW
Shell_NotifyIconW
ShellExecuteW
SHGetFolderPathW

user32

IsZoomed
RegisterWindowMessageW
DestroyMenu
SetFocus
GetCapture
SetPropW
MessageBoxW
GetActiveWindow
GetMenuItemCount
EndPaint
AdjustWindowRectEx
DefFrameProcW
LoadCursorW
GetPropW
DrawTextW
GetDlgCtrlID
SwitchToThisWindow
InsertMenuW
GetKeyboardLayoutList
MapVirtualKeyW
GetSystemMenu
WaitMessage
ClientToScreen
MsgWaitForMultipleObjects
ActivateKeyboardLayout
EnumClipboardFormats
SetParent
SetMenu
ReleaseCapture
DeleteMenu
ShowCaret
GetWindowTextW
RemoveMenu
EnumThreadWindows
GetMenuState
GetScrollInfo
GetTopWindow
FindWindowW
UnhookWindowsHookEx
CharLowerW
EnableWindow
TranslateMessage
ScreenToClient
IsClipboardFormatAvailable
FindWindowExW
EnableScrollBar
GetSystemMetrics
GetKeyboardState
PeekMessageA
GetWindow
CallWindowProcW
GetDCEx
IsChild
DrawFrameControl
CallNextHookEx
GetWindowPlacement
SetScrollRange
GetMonitorInfoW
DrawFocusRect
FillRect
CopyImage
GetMessageExtraInfo
CharUpperBuffW
LoadIconW
GetKeyNameTextW
SetScrollInfo
CharLowerBuffW
EnumWindows
CharNextW
CharUpperW
IsWindowUnicode
GetMenu
SendMessageW
ShowScrollBar
IsWindowEnabled
MsgWaitForMultipleObjectsEx
InsertMenuItemW
DrawIconEx
IsWindow
GetSysColor
SetRect
GetKeyState
GetDC
GetKeyboardLayout
PostQuitMessage
SetWindowTextW
TrackPopupMenu
SetMenuItemInfoW
DestroyCursor
CreateIconIndirect
SendMessageA
GetLastActivePopup
DispatchMessageA
SetClassLongW
DispatchMessageW
CreatePopupMenu
ShowOwnedPopups
GetClassNameW
GetIconInfo
WindowFromPoint
TranslateMDISysAccel
GetFocus
IsDialogMessageA
GetMessagePos
LoadBitmapW
DefMDIChildProcW
ScrollWindow
PeekMessageW
SetScrollPos
GetWindowThreadProcessId
EnumDisplayMonitors
DefWindowProcW
IsIconic
GetMenuStringW
SetTimer
DestroyWindow
GetMenuItemID
GetSubMenu
LoadStringW
RegisterClassW
GetWindowLongW
PostMessageW
CheckMenuItem
SetWindowPos
GetClassLongW
UpdateWindow
HideCaret
GetCursorPos
EnableMenuItem
MapWindowPoints
DestroyIcon
SetWindowRgn
EndMenu
LoadKeyboardLayoutW
SetForegroundWindow
RedrawWindow
CreateWindowExW
SetWindowLongW
GetMenuItemInfoW
EnumChildWindows
BeginPaint
SetWindowPlacement
RemovePropW
GetForegroundWindow
GetSysColorBrush
KillTimer
SetCursorPos
GetKeyboardLayoutNameW
InvalidateRect
SetWindowsHookExW
ReleaseDC
UnregisterClassW
CreateIcon
GetDesktopWindow
IsDialogMessageW
SetCapture
MonitorFromPoint
SystemParametersInfoW
GetWindowRect
GetClientRect
DrawMenuBar
GetClipboardData
IsWindowVisible
CreateMenu
GetParent
DrawIcon
GetScrollRange
GetClassInfoW
DrawEdge
ShowWindow
GetScrollPos
SetCursor
DrawTextExW
MessageBeep
GetCursor
SetActiveWindow
FrameRect
GetWindowDC
RegisterClipboardFormatW
MonitorFromWindow

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

oleaut32

VariantInit
SysAllocStringLen
SysReAllocStringLen
GetErrorInfo
SafeArrayGetUBound
SafeArrayGetLBound
VariantClear
SafeArrayCreate
SafeArrayPtrOfIndex
SysFreeString
VariantChangeType
VariantCopy

advapi32

OpenSCManagerW
RegEnumKeyExW
AdjustTokenPrivileges
RegQueryInfoKeyW
OpenServiceW
RegFlushKey
RegOpenKeyExW
RegQueryValueExW
OpenProcessToken
GetUserNameW
RegEnumValueW
LookupPrivilegeValueW
RegCloseKey
QueryServiceStatus

netapi32

NetWkstaGetInfo
NetApiBufferFree

msvcrt

memcpy

winhttp

WinHttpConnect
WinHttpReceiveResponse
WinHttpGetIEProxyConfigForCurrentUser
WinHttpSendRequest
WinHttpReadData
WinHttpSetTimeouts
WinHttpQueryHeaders
WinHttpQueryAuthSchemes
WinHttpSetStatusCallback
WinHttpSetCredentials
WinHttpWriteData
WinHttpCloseHandle
WinHttpQueryDataAvailable
WinHttpOpenRequest
WinHttpSetOption
WinHttpAddRequestHeaders
WinHttpGetProxyForUrl
WinHttpOpen
WinHttpQueryOption

kernel32

GetDriveTypeW
ExitThread
LoadLibraryExW
VirtualQueryEx
RtlUnwind
EnumResourceNamesW
GetFullPathNameW
SetEndOfFile
GetEnvironmentVariableW
SizeofResource
GetCPInfoExW
GetModuleHandleW
FindResourceW
DeviceIoControl
EnterCriticalSection
LockResource
GetDiskFreeSpaceW
VirtualQuery
ExitProcess
GetProcAddress
GetComputerNameW
GetCommandLineW
LeaveCriticalSection
SetEvent
GetCurrentProcess
GetCurrentProcessId
Sleep
LocalAlloc
GetACP
GetExitCodeThread
GetLocaleInfoW
GlobalDeleteAtom
GetDateFormatW
TerminateThread
SetThreadLocale
LocalFree
GetStdHandle
FileTimeToSystemTime
CompareStringW
CreateMutexW
GetThreadPriority
EnumCalendarInfoW
HeapDestroy
SetThreadPriority
UnhandledExceptionFilter
LoadLibraryW
VirtualProtect
GlobalUnlock
LoadResource
GetLastError
SetLastError
GetThreadLocale
GetCurrentThreadId
TlsGetValue
MoveFileW
IsValidLocale
GlobalSize
GetCPInfo
GetStartupInfoW
RaiseException
QueryPerformanceFrequency
GetFileSize
CreateThread
GlobalHandle
SetErrorMode
SuspendThread
lstrlenW
GlobalFree
CreateEventW
GetTimeZoneInformation
VirtualAlloc
FreeResource
QueryPerformanceCounter
IsDebuggerPresent
GetTempPathW
CloseHandle
MulDiv
HeapFree
VirtualFree
GlobalLock
VerifyVersionInfoW
GlobalFindAtomW
GetVersion
FreeLibrary
CreateDirectoryW
FindFirstFileW
GlobalAddAtomW
GetModuleFileNameW
MultiByteToWideChar
FindClose
FindNextFileW
LCMapStringW
FormatMessageW
DeleteCriticalSection
InitializeCriticalSection
TlsSetValue
ReadFile
GetSystemInfo
GetTickCount
WideCharToMultiByte
GetCurrentThread
CreateFileW
HeapCreate
LoadLibraryA
ResumeThread
WaitForSingleObject
WriteFile
GetSystemDefaultUILanguage
HeapAlloc
SetFilePointer
GetVersionExW
WaitForMultipleObjectsEx
GlobalAlloc
GetFileAttributesW
ResetEvent
GetUserDefaultUILanguage
VerSetConditionMask
SwitchToThread
GetLocalTime

ole32

CoCreateInstance
CoTaskMemAlloc
CoInitialize
OleUninitialize
CoUninitialize
OleInitialize
IsEqualGUID
CoTaskMemFree

gdi32

RestoreDC
GetEnhMetaFilePaletteEntries
Chord
CopyEnhMetaFileW
ExcludeClipRect
Arc
GetEnhMetaFileBits
MaskBlt
CreatePalette
GetEnhMetaFileDescriptionW
StretchBlt
SetWinMetaFileBits
CreatePenIndirect
PatBlt
SetDIBits
FrameRgn
GetPixel
GetClipBox
CreateBrushIndirect
DeleteObject
Pie
SetEnhMetaFileBits
BitBlt
CreateSolidBrush
RectVisible
GetEnhMetaFileHeader
SetViewportOrgEx
SetDIBColorTable
GdiFlush
GetWindowOrgEx
GetBrushOrgEx
Ellipse
RoundRect
DeleteEnhMetaFile
SetBkColor
MoveToEx
CreateHalftonePalette
CreateCompatibleBitmap
CreateRectRgn
ExtTextOutW
IntersectClipRect
CreateCompatibleDC
Rectangle
GetNearestPaletteIndex
CreateFontIndirectW
GetWinMetaFileBits
EnumFontFamiliesExW
UnrealizeObject
GetPaletteEntries
CreateDIBitmap
RealizePalette
GetCurrentPositionEx
PlayEnhMetaFile
SetRectRgn
SetPixel
ExtFloodFill
GetTextExtentPoint32W
SetBkMode
Polyline
GetDIBColorTable
GetBitmapBits
GetDeviceCaps
SetROP2
SelectObject
PolyBezier
PolyBezierTo
SetBrushOrgEx
LineTo
GetStretchBltMode
GetTextExtentPointW
GetDIBits
GetStockObject
AngleArc
CreateBitmap
SetStretchBltMode
SetTextColor
GetSystemPaletteEntries
GetTextMetricsW
SetWindowOrgEx
Polygon
SaveDC
CreateDIBSection
SelectPalette
GetObjectW
ArcTo
DeleteDC
GetRgnBox

Exports

Exports

TMethodImplementationIntercept
__dbk_fcall_wrapper
dbkFCallWrapperAddr

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 27KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 149B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 88B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

815c213a2d3450e3ed431b7a8b593dd7

Headers

File Characteristics

Imports

winmm

comctl32

shell32

user32

version

oleaut32

advapi32

netapi32

msvcrt

winhttp

kernel32

ole32

gdi32

Exports

Exports

Sections

.text Size: 2.6MB - Virtual size: 2.6MB

.itext Size: 10KB - Virtual size: 9KB

.data Size: 100KB - Virtual size: 99KB

.bss Size: - Virtual size: 27KB

.idata Size: 13KB - Virtual size: 12KB

.didata Size: 3KB - Virtual size: 3KB

.edata Size: 512B - Virtual size: 149B

.tls Size: - Virtual size: 88B

.rdata Size: 512B - Virtual size: 93B

.reloc Size: 272KB - Virtual size: 272KB

.rsrc Size: 132KB - Virtual size: 132KB

.text
Size: 2.6MB - Virtual size: 2.6MB

.itext
Size: 10KB - Virtual size: 9KB

.data
Size: 100KB - Virtual size: 99KB

.bss
Size: - Virtual size: 27KB

.idata
Size: 13KB - Virtual size: 12KB

.didata
Size: 3KB - Virtual size: 3KB

.edata
Size: 512B - Virtual size: 149B

.tls
Size: - Virtual size: 88B

.rdata
Size: 512B - Virtual size: 93B

.reloc
Size: 272KB - Virtual size: 272KB

.rsrc
Size: 132KB - Virtual size: 132KB