7b58fbd200c21900bbb9d235a008f758b653f2117c698c9f4270d37cdaf8c881

Sharing

Copy URL

Twitter E-mail

General

Target

7b58fbd200c21900bbb9d235a008f758b653f2117c698c9f4270d37cdaf8c881
Size

1.2MB
MD5

78962e2597101d526797c0b6a5a5b8ae
SHA1

bc803e565f7918d6bfa4709c475913971a1b05bb
SHA256

7b58fbd200c21900bbb9d235a008f758b653f2117c698c9f4270d37cdaf8c881
SHA512

ab1c1b4b827843bb5b539ef11cb0981297b087cdf26b228015d014ea7a7c805279bcc83d8e9e17d9d4ea37189fc37cbe867227d746c00f1b91796205fc2108bf
SSDEEP

24576:KgjKg7fyLq/H26e47Qsrqone/IEz/o8Akv7qa:jX4OGce/D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b58fbd200c21900bbb9d235a008f758b653f2117c698c9f4270d37cdaf8c881

Files

7b58fbd200c21900bbb9d235a008f758b653f2117c698c9f4270d37cdaf8c881
.exe windows x86

ecced1234ea55de85cf1671aa5781e3e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeW
GetFileVersionInfoW

kernel32

GetFileTime
GetStartupInfoW
ExitProcess
RtlUnwind
HeapFree
GetSystemTimeAsFileTime
HeapAlloc
HeapReAlloc
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapSize
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetFileAttributesW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
IsBadWritePtr
GetTimeZoneInformation
SetUnhandledExceptionFilter
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
LCMapStringA
LCMapStringW
GetDriveTypeA
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetErrorMode
FindResourceExW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
GlobalFlags
ReleaseMutex
CreateMutexW
CreateFileW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiW
GlobalGetAtomNameW
FindFirstFileW
FileTimeToLocalFileTime
FindNextFileW
FindClose
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
InterlockedIncrement
VirtualProtect
InterlockedDecrement
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
lstrlenA
GetModuleHandleA
LoadLibraryA
lstrcatW
lstrcmpW
GetModuleHandleW
GetProcAddress
GetVersionExA
GetLastError
SetLastError
lstrcpyW
GlobalAlloc
FormatMessageW
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
lstrcpynW
GetWindowsDirectoryW
FreeLibrary
lstrlenW
WinExec
WideCharToMultiByte
MoveFileExW
DeleteCriticalSection
InitializeCriticalSection
RaiseException
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
OpenFileMappingW
DeleteFileW
GetTickCount
GetPrivateProfileIntW
MoveFileW
WritePrivateProfileSectionW
WritePrivateProfileStringW
MulDiv
TerminateProcess
GetPrivateProfileStringW
GetPrivateProfileSectionNamesW
GetModuleFileNameW
GetSystemDirectoryW
CreateProcessW
LoadLibraryW
IsValidLanguageGroup
GetUserDefaultUILanguage
GetVersion
GetCurrentDirectoryW
MultiByteToWideChar
LocalAlloc
LocalFree
GetLocaleInfoW
CreateProcessA
CreateDirectoryW
CreateEventW
CloseHandle
FileTimeToSystemTime
GetLocalTime
SetEvent
WaitForSingleObject
FindResourceW
LoadResource
LockResource
SizeofResource
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetStartupInfoA

user32

GetAsyncKeyState
IsZoomed
EndPaint
BeginPaint
GetWindowDC
GetMenuItemInfoW
GetMessageW
TranslateMessage
ValidateRect
SetMenuItemBitmaps
ModifyMenuW
EnableMenuItem
GetMenuCheckMarkDimensions
ShowWindow
MoveWindow
IsDialogMessageW
WinHelpW
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
GetClassInfoExW
SetPropW
GetPropW
RemovePropW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
DispatchMessageW
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
ScrollWindow
GetScrollRange
SetScrollPos
GetScrollPos
AdjustWindowRectEx
EqualRect
DeferWindowPos
SetScrollInfo
GetClassInfoW
RegisterClassW
SetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowPos
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetMenuState
GetMenuItemCount
GetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetWindowLongW
GetDlgItem
RegisterClipboardFormatW
GetNextDlgTabItem
SetWindowLongW
CopyIcon
DestroyCursor
MessageBeep
CheckMenuItem
GetDesktopWindow
LockWindowUpdate
MapWindowPoints
RegisterWindowMessageW
DrawAnimatedRects
FindWindowW
EnumChildWindows
GetClassNameW
TrackPopupMenu
SetMenuDefaultItem
SetActiveWindow
LoadMenuW
GetSubMenu
GetMenuItemID
UnregisterClassW
KillTimer
ScreenToClient
GetSysColorBrush
BeginDeferWindowPos
EndDeferWindowPos
GetClassLongW
wsprintfW
SetParent
GetWindow
GetDCEx
ClientToScreen
GetSystemMenu
DeleteMenu
IsRectEmpty
SetForegroundWindow
GetLastActivePopup
GetCursorPos
GetKeyState
IsChild
PeekMessageW
FillRect
DestroyIcon
SetTimer
IsWindowVisible
IsIconic
SetMenu
DestroyMenu
CreateIconIndirect
GetFocus
SetWindowTextW
LoadImageW
MessageBoxW
SetCursor
GetScrollInfo
GrayStringW
CharUpperW
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsW
InsertMenuItemW
BringWindowToTop
DrawTextExW
TabbedTextOutW
ReleaseDC
GetDC
LoadBitmapW
SetRectEmpty
MapDialogRect
DrawTextW
LoadIconW
GetMessagePos
ReleaseCapture
SystemParametersInfoW
SetCapture
GetCapture
PtInRect
GetSystemMetrics
GetSysColor
FrameRect
IsWindow
GetWindowRect
DrawFocusRect
DrawFrameControl
TranslateAcceleratorW
ShowOwnedPopups
PostQuitMessage
IsWindowEnabled
WindowFromPoint
DrawEdge
OffsetRect
InflateRect
CopyRect
GetWindowLongA
SetWindowLongA
TrackMouseEvent
LoadCursorW
GetParent
RedrawWindow
InvalidateRect
UpdateWindow
GetClientRect
GetMenu
AppendMenuW
CreatePopupMenu
SetRect
PostMessageW
SendMessageW
EnableWindow
EndDialog

gdi32

ScaleViewportExtEx
SetWindowOrgEx
GetTextAlign
SetWindowExtEx
ScaleWindowExtEx
CreatePatternBrush
SelectPalette
CreateRectRgnIndirect
SetViewportExtEx
GetCharWidthW
SetRectRgn
CombineRgn
EnumFontFamiliesExW
EndDoc
AbortDoc
SetAbortProc
EndPage
StartPage
StartDocW
DPtoLP
CreateSolidBrush
PatBlt
DeleteDC
SetTextAlign
SetBkMode
CreateFontW
Escape
ExtTextOutW
OffsetViewportOrgEx
SetViewportOrgEx
GetPixel
SelectClipRgn
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetPolyFillMode
CreateBitmap
SetBkColor
GetClipBox
CreateRectRgn
GetCurrentObject
EnumFontFamiliesW
CreatePalette
CreateFontIndirectW
CreatePen
GetStockObject
StretchDIBits
Polygon
TextOutW
RectVisible
PtVisible
FloodFill
BitBlt
GetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
GetCurrentPositionEx
SaveDC
RestoreDC
DeleteObject
SelectObject
GetObjectW
GetTextColor
SetTextColor
GetTextExtentPoint32W
Rectangle
RealizePalette
GetDeviceCaps
GetTextMetricsW

comdlg32

CommDlgExtendedError
GetFileTitleW
ChooseColorW
GetOpenFileNameW
PrintDlgW
GetSaveFileNameW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExW
RegOpenKeyW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegQueryValueW

shell32

DragQueryFileW
SHGetSpecialFolderPathW
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetSpecialFolderLocation
Shell_NotifyIconW
SHAppBarMessage
SHFileOperationW
DragFinish
ShellExecuteW

comctl32

ord17
ImageList_SetBkColor
ImageList_Draw
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetBkColor
ImageList_Destroy
ImageList_Create
ImageList_LoadImageW
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW
ImageList_GetImageInfo
ImageList_DrawIndirect

shlwapi

PathCompactPathW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathAppendW
PathIsUNCW

ole32

CoCreateInstance
CoInitialize
CoInitializeEx
CoGetMalloc
CoUninitialize

oleaut32

VariantInit
VariantChangeType
VariantClear
SystemTimeToVariantTime
SysAllocStringLen

Sections

.text
Size: 824KB - Virtual size: 822KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ecced1234ea55de85cf1671aa5781e3e

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

Sections

.text Size: 824KB - Virtual size: 822KB

.rdata Size: 192KB - Virtual size: 190KB

.data Size: 20KB - Virtual size: 96KB

.rsrc Size: 152KB - Virtual size: 152KB

.text
Size: 824KB - Virtual size: 822KB

.rdata
Size: 192KB - Virtual size: 190KB

.data
Size: 20KB - Virtual size: 96KB

.rsrc
Size: 152KB - Virtual size: 152KB