2010d4a50154890217b16f258dda9c3c6e0ff3b0a3b7efdc63485f6d4beb7f22

Sharing

Copy URL Twitter E-mail

General

Target

2010d4a50154890217b16f258dda9c3c6e0ff3b0a3b7efdc63485f6d4beb7f22
Size

1.9MB
MD5

efad934961f69a79ccabf2a459ebe6d3
SHA1

69e1b8f3362541d77393064a2b82782bc72edf69
SHA256

2010d4a50154890217b16f258dda9c3c6e0ff3b0a3b7efdc63485f6d4beb7f22
SHA512

f5ebb9f24f9f89b4668fa9acc5e9be580a002ebb881531d72d4b9c3d30135d129aa8a266b9018e45fa749eddb9171f27eb50d90225244f5a131e94a558bc84ec
SSDEEP

24576:Vrg/kpBzAw/zm+41CJcdB2tcX9RBoT8v5rLY/aed4kAttZ4QRwIX6bRsG:1gKzm+NcL2eRBoT8BPYfdPkX4sG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2010d4a50154890217b16f258dda9c3c6e0ff3b0a3b7efdc63485f6d4beb7f22

Files

2010d4a50154890217b16f258dda9c3c6e0ff3b0a3b7efdc63485f6d4beb7f22
.exe windows x86

15f4f60001ca52d7552b74f4eb9083ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetAtomNameW
VirtualAlloc
HeapCreate
HeapDestroy
lstrcmpiA
RtlZeroMemory
lstrcmpW
GlobalAlloc
GlobalLock
GlobalUnlock
GetModuleHandleA
ExitProcess
GetModuleFileNameW
IsBadReadPtr
WriteFile
GetUserDefaultLCID
GetLocalTime
GetTickCount
GetCommandLineA
GetModuleFileNameA
LCMapStringA
GetCurrentProcess
GetModuleHandleW
lstrcatW
lstrcmpiW
lstrcmpA
lstrlenA
LocalSize
GetCurrentThreadId
HeapFree
InterlockedDecrement
InterlockedIncrement
HeapAlloc
GetProcessHeap
SetWaitableTimer
CreateWaitableTimerA
FreeLibrary
GetProcAddress
LoadLibraryA
GetShortPathNameA
DeleteFileA
CreateFileA
FindClose
FindFirstFileW
MultiByteToWideChar
lstrcpyn
WideCharToMultiByte
RtlMoveMemory
lstrlenW
GetCommandLineW
CloseHandle
LocalFree
LocalAlloc
OpenProcess
HeapReAlloc

user32

UpdateLayeredWindow
CreateMenu
CreatePopupMenu
GetSystemMenu
LoadMenuW
GetMenuInfo
DestroyMenu
GetMenuItemCount
GetMenuItemInfoW
AppendMenuW
InsertMenuW
SetMenuInfo
GetSubMenu
GetMenuItemID
CheckMenuRadioItem
SetForegroundWindow
TrackPopupMenu
GetMenuStringW
GetMenuItemRect
GetMenuState
GetMenuDefaultItem
MenuItemFromPoint
RemoveMenu
CheckMenuItem
SetMenuItemInfoW
SetMenuDefaultItem
LoadStringW
CharUpperW
CharLowerW
MessageBoxA
wsprintfA
DispatchMessageA
GetMessageA
PeekMessageA
CallWindowProcA
MsgWaitForMultipleObjects
GetWindowInfo
EnumWindows
GetWindowThreadProcessId
GetWindowTextLengthW
GetWindowTextW
DefFrameProcW
SystemParametersInfoW
RegisterWindowMessageW
DrawMenuBar
SetMenu
GetMenu
GetSystemMetrics
IsZoomed
IsIconic
EnumPropsExW
RemovePropA
RemovePropW
GetPropA
GetPropW
SetPropA
SetPropW
KillTimer
SetTimer
MessageBoxW
SetWindowTextW
SetParent
MoveWindow
UpdateWindow
ValidateRect
InvalidateRect
ScreenToClient
CreateWindowExW
PostQuitMessage
GetNextDlgTabItem
DispatchMessageW
PostMessageW
ShowWindow
CallWindowProcW
CreateMDIWindowW
DialogBoxParamW
CreateDialogParamW
GetIconInfo
DestroyCursor
TranslateMessage
IsDialogMessageW
TranslateAcceleratorW
TranslateMDISysAccel
IsChild
GetMessageW
GetFocus
SetRect
ReleaseDC
DrawIconEx
GetDC
CopyIcon
LoadIconW
LoadImageW
CreateIconFromResourceEx
DefWindowProcW
GetWindowRect
SetWindowPos
EnableWindow
IsWindowEnabled
IsWindowVisible
GetSysColor
DestroyAcceleratorTable
LoadCursorW
ReleaseCapture
SetCapture
DestroyIcon
AttachThreadInput
SetFocus
SetWindowRgn
BeginPaint
EndPaint
TrackMouseEvent
GetDlgItem
GetAncestor
SetWindowLongW
GetAsyncKeyState
IsWindow
FindWindowExW
GetClassNameW
GetParent
GetWindowLongW
EndDialog
DialogBoxIndirectParamW
DestroyWindow
SetClassLongW
GetClassLongW
CreateDialogIndirectParamW
RegisterClassExW
GetClientRect
GetClassInfoExW
SendMessageW
SetCursor
GetClassNameA

ole32

CLSIDFromProgID
CoCreateInstance
OleRun
GetHGlobalFromStream
StringFromGUID2
CreateStreamOnHGlobal
CLSIDFromString
CoUninitialize
CoInitialize

oleaut32

SysAllocString
VariantClear
SafeArrayCreate
VariantCopy
RegisterTypeLi
LHashValOfNameSys
LoadTypeLi
VariantChangeType
VarR8FromBool
VarR8FromCy
SysFreeString
VariantInit
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElemsize
SafeArrayDestroy

atl

ord47
ord42
ord39

shell32

DragQueryFileW
DragFinish
Shell_NotifyIconW
DragAcceptFiles
CommandLineToArgvW

wininet

InternetTimeToSystemTime

advapi32

CryptReleaseContext
CryptGetHashParam
CryptDestroyHash
CryptAcquireContextA
CryptCreateHash
CryptHashData

gdi32

GetStockObject
CreateFontIndirectW
CreateDIBSection
BitBlt
GetObjectW
DeleteDC
SelectObject
DeleteObject
SetStretchBltMode
GetStretchBltMode
CreateCompatibleDC
StretchBlt
GetDIBits
CreatePatternBrush
CreateSolidBrush
CreateRoundRectRgn
CreateEllipticRgn

gdiplus

GdipFlush
GdipGetDC
GdipReleaseDC
GdipSetTextRenderingHint
GdipGetTextRenderingHint
GdipSetInterpolationMode
GdipGetInterpolationMode
GdipSetSmoothingMode
GdipGetSmoothingMode
GdipSetPixelOffsetMode
GdipGetPixelOffsetMode
GdipSetWorldTransform
GdipGetWorldTransform
GdipDeleteMatrix
GdipResetWorldTransform
GdipTranslateWorldTransform
GdipScaleWorldTransform
GdipRotateWorldTransform
GdipSetPageUnit
GdipGetPageUnit
GdipSetPageScale
GdipGetPageScale
GdipGetDpiX
GdipGetDpiY
GdipTransformPoints
GdipTransformPointsI
GdipGetNearestColor
GdipDrawLine
GdipDrawArc
GdipDrawBezier
GdipDrawRectangle
GdipDrawEllipse
GdipDrawPie
GdipDrawPolygon
GdipDrawPath
GdipDrawCurve
GdipDrawCurve2
GdipDrawClosedCurve
GdipDrawClosedCurve2
GdipGraphicsClear
GdipFillPolygon
GdipFillEllipse
GdipFillPie
GdipFillPath
GdipFillClosedCurve
GdipFillClosedCurve2
GdipSetImageAttributesColorMatrix
GdipDrawString
GdipMeasureString
GdipCreateRegion
GdipMeasureCharacterRanges
GdipDrawDriverString
GdipDrawImage
GdipDrawImageRectRect
GdipDrawImageRect
GdipDrawImagePoints
GdipDrawImagePointRect
GdipDrawImagePointsRect
GdipSetClipGraphics
GdipSetClipPath
GdipSetClipRect
GdipSetClipRegion
GdipSetClipHrgn
GdipResetClip
GdipTranslateClip
GdipGetClip
GdipGetClipBounds
GdipGetVisibleClipBounds
GdipIsClipEmpty
GdipIsVisibleClipEmpty
GdipIsVisiblePoint
GdipIsVisibleRect
GdipSaveGraphics
GdipRestoreGraphics
GdipBeginContainer
GdipBeginContainer2
GdipEndContainer
GdipLoadImageFromFile
GdipLoadImageFromStream
GdipCloneImage
GdipGetImageRawFormat
GdipGetImagePixelFormat
GdipSaveImageToStream
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipGetImageDimension
GdipGetImageBounds
GdipGetImageWidth
GdipGetImageHeight
GdipGetImageHorizontalResolution
GdipGetImageVerticalResolution
GdipGetImageThumbnail
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipCreateHICONFromBitmap
GdipCreateStringFormat
GdipStringFormatGetGenericDefault
GdipStringFormatGetGenericTypographic
GdipCloneStringFormat
GdipSetStringFormatFlags
GdipGetStringFormatFlags
GdipSetStringFormatAlign
GdipGetStringFormatAlign
GdipSetStringFormatLineAlign
GdipGetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipGetStringFormatTrimming
GdipSetStringFormatHotkeyPrefix
GdipGetStringFormatHotkeyPrefix
GdipSetStringFormatTabStops
GdipGetStringFormatTabStopCount
GdipGetStringFormatTabStops
GdipSetStringFormatDigitSubstitution
GdipGetStringFormatDigitSubstitution
GdipSetStringFormatMeasurableCharacterRanges
GdipGetStringFormatMeasurableCharacterRangeCount
GdipCreateFont
GdipCreateFontFromLogfontW
GdipDeletePrivateFontCollection
GdipDeleteFontFamily
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCloneFont
GdipGetLogFontW
GdipGetLogFontA
GdipGetFamily
GdipGetFontStyle
GdipGetFontSize
GdipGetFontUnit
GdipGetFontHeight
GdipGetFontHeightGivenDPI
GdipCloneBrush
GdipGetBrushType
GdipCreateSolidFill
GdipCreateFromHDC
GdipGetSolidFillColor
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipCreateBitmapFromGraphics
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromHICON
GdipCreateBitmapFromResource
GdipCloneBitmapArea
GdipBitmapSetResolution
GdipGetImageGraphicsContext
GdipCreateMatrix
GdipTranslateMatrix
GdipRotateMatrix
GdipCreateFromHWND
GdipCreatePath
GdipCreatePath2
GdipClonePath
GdipResetPath
GdipGetPathFillMode
GdipSetPathFillMode
GdipGetPointCount
GdipGetPathData
GdipStartPathFigure
GdipClosePathFigure
GdipClosePathFigures
GdipSetPathMarker
GdipClearPathMarkers
GdipReversePath
GdipGetPathLastPoint
GdipAddPathLine
GdipAddPathArc
GdipAddPathBezier
GdipAddPathCurve
GdipAddPathCurve2
GdipAddPathClosedCurve
GdipAddPathClosedCurve2
GdipAddPathRectangle
GdipAddPathLineI
GdipAddPathArcI
GdipAddPathEllipse
GdipAddPathPie
GdipAddPathPolygon
GdipAddPathPath
GdipAddPathString
GdipTransformPath
GdipGetPathWorldBounds
GdipFlattenPath
GdipWidenPath
GdipWindingModeOutline
GdipWarpPath
GdipIsVisiblePathPoint
GdipIsOutlineVisiblePathPoint
GdipCreateRegionRect
GdipCreateRegionHrgn
GdipCreateRegionPath
GdipCreateRegionRgnData
GdipCloneRegion
GdipSetInfinite
GdipSetEmpty
GdipCombineRegionRect
GdipCombineRegionRegion
GdipCombineRegionPath
GdipTranslateRegion
GdipTransformRegion
GdipGetRegionBounds
GdipGetRegionDataSize
GdipGetRegionData
GdipGetRegionHRgn
GdipIsEmptyRegion
GdipIsInfiniteRegion
GdipIsEqualRegion
GdipIsVisibleRegionPoint
GdipIsVisibleRegionRect
GdipGetRegionScansCount
GdipGetRegionScans
GdipCreateMatrix2
GdipCreateMatrix3
GdipCloneMatrix
GdipSetMatrixElements
GdipGetMatrixElements
GdipMultiplyMatrix
GdipInvertMatrix
GdipScaleMatrix
GdipShearMatrix
GdipTransformMatrixPoints
GdipVectorTransformMatrixPoints
GdipIsMatrixInvertible
GdipIsMatrixIdentity
GdipIsMatrixEqual
GdipNewInstalledFontCollection
GdipNewPrivateFontCollection
GdipPrivateAddFontFile
GdipPrivateAddMemoryFont
GdipGetFontCollectionFamilyCount
GdipGetFontCollectionFamilyList
GdipCloneFontFamily
GdipCreateFontFamilyFromName
GdipGetGenericFontFamilySansSerif
GdipGetGenericFontFamilySerif
GdipGetGenericFontFamilyMonospace
GdipGetFamilyName
GdipIsStyleAvailable
GdipGetEmHeight
GdipGetCellAscent
GdipGetCellDescent
GdipGetLineSpacing
GdipGetImageAttributesAdjustedPalette
GdipSetImageAttributesWrapMode
GdipSetImageAttributesRemapTable
GdipSetImageAttributesOutputChannel
GdipSetImageAttributesColorKeys
GdipSetImageAttributesGamma
GdipSetImageAttributesNoOp
GdipSetImageAttributesThreshold
GdipResetImageAttributes
GdipSetImageAttributesToIdentity
GdipCloneImageAttributes
GdipCreateImageAttributes
GdipDeleteRegion
GdipDeletePath
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipDeleteFont
GdipDeleteStringFormat
GdipDisposeImage
GdipDeleteGraphics
GdipDisposeImageAttributes
GdipDeleteBrush
GdipFillRectangle
GdipCreateTexture
GdipSetSolidFillColor
GdipCreateHBITMAPFromBitmap
GdipFillRegion
GdipSetImageAttributesOutputChannelColorProfile

comctl32

InitCommonControlsEx

shlwapi

StrToIntExW
wvnsprintfW
StrToIntW
StrTrimW
PathRemoveFileSpecW
PathFindFileNameW
PathFileExistsA

crypt32

CryptStringToBinaryW

msimg32

AlphaBlend

msvcrt

atoi
_ftol
??2@YAPAXI@Z
??3@YAXPAX@Z
strchr
sprintf
strncpy
strncmp
modf
free
malloc
_CIfmod
srand
rand
atof
strtod
strrchr
memmove
realloc
__CxxFrameHandler
_stricmp

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 932KB - Virtual size: 932KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 920KB - Virtual size: 920KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

15f4f60001ca52d7552b74f4eb9083ee

Headers

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

atl

shell32

wininet

advapi32

gdi32

gdiplus

comctl32

shlwapi

crypt32

msimg32

msvcrt

iphlpapi

psapi

Sections

.text Size: 932KB - Virtual size: 932KB

.sedata Size: 920KB - Virtual size: 920KB

.idata Size: 13KB - Virtual size: 16KB

.rsrc Size: 101KB - Virtual size: 104KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 932KB - Virtual size: 932KB

.sedata
Size: 920KB - Virtual size: 920KB

.idata
Size: 13KB - Virtual size: 16KB

.rsrc
Size: 101KB - Virtual size: 104KB

.sedata
Size: 4KB - Virtual size: 4KB