3d7bf6d44f3a77ac913c55fee6948e7fa221da7aca54bdda014e3b2967c0c40a

Sharing

Copy URL Twitter E-mail

General

Target

3d7bf6d44f3a77ac913c55fee6948e7fa221da7aca54bdda014e3b2967c0c40a
Size

1.1MB
MD5

1c744bd33bd023ccc56e3f281a415380
SHA1

26dc7e709f2ba101447e477af9a15d12cbe88b99
SHA256

3d7bf6d44f3a77ac913c55fee6948e7fa221da7aca54bdda014e3b2967c0c40a
SHA512

0473d32e5ecc57c974c39ba4828925ff517004b5cbd1929b52c7ee8da49733db2509be3d1c1815812a627a150f2b99a18c816fe9cf8e2816b1c3880ca3b84d12
SSDEEP

12288:hdu512YgAGXlTv4LzkNdwP9TRidY6gjioYi/LB:zu51DJGSLzkP29gY6loYS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d7bf6d44f3a77ac913c55fee6948e7fa221da7aca54bdda014e3b2967c0c40a

Files

3d7bf6d44f3a77ac913c55fee6948e7fa221da7aca54bdda014e3b2967c0c40a
.exe windows x64

6a63d37b9cf4ffdd4456013acf881f1e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

efasres

r

user32

OemToCharBuffW
PostQuitMessage
EndDialog
GetDesktopWindow
SetWindowPos
GetWindowLongPtrW
RegisterClassExW
UnregisterClassW
GetClassInfoExW
CreateWindowExW
SetWindowTextW
SetWindowTextA
GetWindowTextW
GetWindowTextLengthW
SetWindowLongPtrW
GetClassLongPtrW
SetClassLongPtrW
PostMessageW
InvalidateRect
DrawTextW
IsWindow
IsWindowVisible
SetFocus
MessageBeep
MessageBoxW
DialogBoxParamW
TrackPopupMenuEx
GetSystemMetrics
SystemParametersInfoW
GetMenuItemInfoW
PeekMessageW
GetMenuItemCount
InsertMenuItemW
SetMenuItemInfoW
ReleaseDC
GetDC
CharLowerW
CharUpperW
CharUpperA
LoadCursorW
GetSysColorBrush
GetSysColor
UpdateWindow
LoadBitmapW
SetClipboardData
EmptyClipboard
FindWindowW
DestroyWindow
ShowWindow
EnableWindow
OemToCharBuffA
LoadImageW
DrawStateW
DrawIconEx
GetWindow
GetTopWindow
DrawFocusRect
DrawFrameControl
GetForegroundWindow
FrameRect
GetFocus
ExitWindowsEx
BringWindowToTop
SetActiveWindow
IsIconic
GetActiveWindow
GetMessageW
TranslateMessage
DispatchMessageW
WinHelpW
SetTimer
DeleteMenu
MoveWindow
SetForegroundWindow
GetCursorPos
EnableMenuItem
SetCursor
GetWindowRect
ScreenToClient
GetWindowLongW
DestroyIcon
SetWindowLongW
GetDlgItem
OpenClipboard
GetClipboardData
CloseClipboard
WindowFromPoint
IsWindowEnabled
DefWindowProcW
VkKeyScanW
GetMenu
DestroyMenu
SendMessageW
GetDlgItemInt
SetDlgItemInt
CallWindowProcW
BeginPaint
GetClientRect
FillRect
GetParent
EndPaint
GetWindowThreadProcessId
CreatePopupMenu

gdi32

DeleteDC
Rectangle
GetTextMetricsW
SetBkColor
MoveToEx
LineTo
CreatePen
GetStockObject
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
CreateSolidBrush
DeleteObject
SelectObject
SetTextColor
SetBkMode
GetDeviceCaps
CreateFontIndirectW
GetObjectW

shell32

SHGetPathFromIDListW
SHFileOperationW
Shell_NotifyIconW
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetMalloc
ord727
SHGetFileInfoW
CommandLineToArgvW
ShellExecuteExW
SHGetDataFromIDListW

ole32

CoUninitialize
CoTaskMemFree
OleInitialize
OleUninitialize
CoInitialize
CoCreateInstance

advapi32

InitiateSystemShutdownW
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
GetUserNameW
AdjustTokenPrivileges
OpenProcessToken
LookupPrivilegeValueW

comdlg32

GetSaveFileNameW
GetOpenFileNameW

comctl32

InitCommonControlsEx
ord17
ImageList_Destroy
ImageList_GetIcon
ImageList_Create
ImageList_GetIconSize
ImageList_AddMasked
ImageList_Draw
ImageList_SetBkColor
ImageList_ReplaceIcon

kernel32

GetCurrentThreadId
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
DeviceIoControl
GetVersionExW
GetDiskFreeSpaceW
SetLastError
CreateDirectoryW
DeleteFileW
FreeLibrary
EnumResourceNamesW
SetErrorMode
GetCurrentProcessId
Sleep
GetModuleFileNameW
GetDateFormatW
GetLocalTime
SystemTimeToFileTime
FileTimeToSystemTime
GetSystemTime
GlobalUnlock
GlobalLock
GetDriveTypeW
GetTickCount
SetCurrentDirectoryW
RemoveDirectoryW
GetModuleHandleW
GetVolumeInformationW
CopyFileW
SetFileTime
MoveFileW
MoveFileExW
SetThreadPriority
GetCurrentThread
CreateMutexW
GetProcAddress
LoadLibraryA
ExpandEnvironmentStringsA
WaitForSingleObject
ReleaseMutex
LoadLibraryW
GetCommandLineW
GlobalFree
LeaveCriticalSection
EnterCriticalSection
CloseHandle
UnmapViewOfFile
SetFilePointer
SetEndOfFile
FileTimeToLocalFileTime
MultiByteToWideChar
WideCharToMultiByte
CompareStringW
CompareStringA
VirtualProtect
QueryPerformanceCounter
GetTimeFormatW
LocalFileTimeToFileTime
MulDiv
CreateThread
GlobalAlloc
GetLastError
LocalFree
FormatMessageW
OpenProcess
TerminateProcess
GetSystemDefaultLangID
DeleteCriticalSection
GetFullPathNameW
ReadFile
WriteFile
GetFileSize
FreeEnvironmentStringsW
GetEnvironmentStringsW
MapViewOfFile
CreateFileMappingW
GetWindowsDirectoryW
GetCurrentProcess
GetTempPathW
GetFileAttributesW
SetFileAttributesW
CreateFileW
FindNextFileW
FindClose
FindFirstFileW
FindFirstFileExW
GetFileInformationByHandle
GetLogicalDrives
ExpandEnvironmentStringsW
RtlLookupFunctionEntry
RtlUnwindEx
ExitProcess
GetCommandLineA
LCMapStringW
HeapFree
HeapReAlloc
HeapAlloc
HeapSize
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
GetStartupInfoA
FlsAlloc
RaiseException
RtlPcToFileHeader
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetStdHandle
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
SetHandleCount
GetFileType
HeapSetInformation
HeapCreate
GetSystemTimeAsFileTime
LCMapStringA

Sections

.text
Size: 327KB - Virtual size: 326KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 666KB - Virtual size: 665KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a63d37b9cf4ffdd4456013acf881f1e

Headers

DLL Characteristics

File Characteristics

Imports

efasres

user32

gdi32

shell32

ole32

advapi32

comdlg32

comctl32

kernel32

Sections

.text Size: 327KB - Virtual size: 326KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 16KB - Virtual size: 34KB

.pdata Size: 22KB - Virtual size: 21KB

.rsrc Size: 666KB - Virtual size: 665KB

.text
Size: 327KB - Virtual size: 326KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 16KB - Virtual size: 34KB

.pdata
Size: 22KB - Virtual size: 21KB

.rsrc
Size: 666KB - Virtual size: 665KB