aec38ad02d0ecf2f26ee1b3c4d0783c7f801a8ba5a8d4124f28df18b16c07061

Sharing

Copy URL Twitter E-mail

General

Target

aec38ad02d0ecf2f26ee1b3c4d0783c7f801a8ba5a8d4124f28df18b16c07061
Size

2.0MB
MD5

a45babd0e3da27c9f6e8fa7469f58d88
SHA1

8a942b7326505babeb29d3e152295ab6311ac682
SHA256

aec38ad02d0ecf2f26ee1b3c4d0783c7f801a8ba5a8d4124f28df18b16c07061
SHA512

390d8f9027fd9fb265edef0e7e16733f646837c1693268e5a092b6d3f630e74f7a00de88bb92bc1c2cd1b7fb78fd9c1f4bfddac9bcb0fa9bebeb2b6f8fff31ff
SSDEEP

49152:KoO+xwiSQgAjKXEOgy9kuFIhPZR3QWjdXdFR:KoO+xwRQ9jKX3gy9T4PZR3QWj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aec38ad02d0ecf2f26ee1b3c4d0783c7f801a8ba5a8d4124f28df18b16c07061

Files

aec38ad02d0ecf2f26ee1b3c4d0783c7f801a8ba5a8d4124f28df18b16c07061
.exe windows x86

f72f429f153c0a03157ad83609a22cb2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidCodePage
EnumSystemLocalesW
IsValidLocale
ExitProcess
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
GetCommandLineW
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
GetTimeZoneInformation
RtlUnwind
GetCPInfo
GetStringTypeW
LCMapStringW
SwitchToThread
OutputDebugStringW
GetOEMCP
GetConsoleMode
ReadConsoleW
GetConsoleCP
FindFirstFileExW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
WaitForSingleObjectEx
ResetEvent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetUserDefaultLCID
SearchPathW
GetProfileIntW
VerifyVersionInfoW
VerSetConditionMask
GetWindowsDirectoryW
FindResourceExW
lstrcpyW
SystemTimeToTzSpecificLocalTime
SetFilePointerEx
GetFileSizeEx
GetFileAttributesExW
VirtualProtect
GlobalFlags
GetUserDefaultUILanguage
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GlobalGetAtomNameW
lstrcmpA
SuspendThread
SetThreadPriority
lstrcmpiW
DuplicateHandle
UnlockFile
LockFile
GetVolumeInformationW
GetFullPathNameW
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryA
LoadLibraryExW
GetModuleHandleA
FreeResource
GetSystemDirectoryW
EncodePointer
CopyFileW
MulDiv
GlobalSize
GetProcessHeap
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
HeapFree
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
OpenFileMappingW
OpenEventW
ReleaseMutex
OpenMutexW
SetEvent
InterlockedExchange
ResumeThread
InitializeCriticalSectionAndSpinCount
TerminateThread
ReadFile
FindResourceW
LoadResource
LockResource
SizeofResource
FindClose
FindNextFileW
FindFirstFileW
GetCurrentDirectoryW
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetModuleFileNameW
FormatMessageW
GetVersionExW
GetCurrentProcessId
GetTempFileNameW
GetTempPathW
GetFileTime
GetFileAttributesW
MultiByteToWideChar
GetACP
WideCharToMultiByte
GetLocaleInfoW
OutputDebugStringA
GetTickCount
FlushFileBuffers
CreateEventW
SetLastError
Sleep
WaitForSingleObject
GetCurrentProcess
GetModuleHandleW
GetLastError
OpenProcess
FreeLibrary
GetProcAddress
LoadLibraryW
GetCurrentThreadId
LocalFree
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CreateFileW
FileTimeToSystemTime
FileTimeToLocalFileTime
CloseHandle
SetEndOfFile
WriteFile
GetFileSize
SetFilePointer
GetCommandLineA

user32

LoadCursorW
GetSysColorBrush
GetActiveWindow
CharUpperW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
LoadMenuW
FillRect
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
SetWindowsHookExW
GetLastActivePopup
GetTopWindow
GetClassLongW
PtInRect
EqualRect
GetSysColor
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
BeginPaint
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
IsMenu
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
GetMenuItemInfoW
InflateRect
CopyImage
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
GetWindowThreadProcessId
MessageBoxW
RegisterWindowMessageW
UnhookWindowsHookEx
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
KillTimer
DefWindowProcW
SetTimer
CreateWindowExW
RegisterClassExW
DispatchMessageW
TranslateMessage
GetMessageW
EnableWindow
InvalidateRect
DestroyWindow
PostMessageW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
MoveWindow
OffsetRect
IsZoomed
GetCursorPos
SystemParametersInfoW
SendDlgItemMessageA
SetRectEmpty
PostQuitMessage
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
GetAsyncKeyState
MapDialogRect
IntersectRect
DestroyIcon
TrackMouseEvent
ShowOwnedPopups
SetCursor
DeleteMenu
GetNextDlgGroupItem
SetCapture
ReleaseCapture
DrawFocusRect
IsRectEmpty
DrawIconEx
GetIconInfo
MessageBeep
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
CreatePopupMenu
DestroyMenu
GetParent
GetDlgCtrlID
SendMessageW
GetSystemMetrics
GetClientRect
GetWindowRect
GetWindowLongW
SetFocus
GetDesktopWindow
ClientToScreen
RealChildWindowFromPoint
ScreenToClient
WindowFromPoint
SetWindowLongW
LoadImageW
GetDC
ReleaseDC
GetFocus
IsIconic
IsWindow
IsWindowVisible
GetWindowTextW
GetClassNameW
GetForegroundWindow
GetWindow
ShowWindow
MapVirtualKeyExW
BringWindowToTop
SetForegroundWindow
MonitorFromPoint
MonitorFromWindow
GetMonitorInfoW
CopyRect
DestroyAcceleratorTable
CopyAcceleratorTableW
SetRect
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuW
RegisterClipboardFormatW
CharUpperBuffW
IsClipboardFormatAvailable
GetUpdateRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
IsCharLowerW
GetKeyboardLayout
WaitMessage
PostThreadMessageW
GetComboBoxInfo
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
UpdateLayeredWindow
UnionRect
DrawIcon
FrameRect
CopyIcon
SetCursorPos
GetSystemMenu
DrawFrameControl
DrawEdge
DrawStateW
GetMenuDefaultItem
MapVirtualKeyW
GetKeyNameTextW
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongW
SetWindowRgn
SetParent

gdi32

IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
GetTextExtentPoint32W
CreateRectRgnIndirect
PatBlt
SetRectRgn
DPtoLP
GetWindowExtEx
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
Rectangle
GetRgnBox
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
GetViewportExtEx
GetStockObject
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateSolidBrush
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateDCW
CopyMetaFileW
TextOutW
GetDeviceCaps
CombineRgn
CreateRectRgn
GetObjectW
DeleteObject
GetPixel
SetTextColor
SetBkColor
SelectObject
DeleteDC
CreateBitmap
CreateCompatibleDC
StretchBlt
GetTextMetricsW
CreateDIBSection
BitBlt

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
IsTextUnicode
GetSecurityDescriptorSacl
ConvertStringSecurityDescriptorToSecurityDescriptorW
SetSecurityInfo
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegCreateKeyExW

shell32

DragFinish
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
DragQueryFileW

shlwapi

StrFormatKBSizeW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW

uxtheme

GetThemePartSize
GetThemeSysColor
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetWindowTheme
IsAppThemed
IsThemeBackgroundPartiallyTransparent

ole32

OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoDisconnectObject
CoInitializeEx
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoUninitialize
CoInitialize
CoTaskMemFree
CoCreateInstance

oleaut32

SysFreeString
LoadTypeLi
VarBstrFromDate
VariantCopy
SystemTimeToVariantTime
SysStringLen
VariantChangeType
VariantInit
SysAllocStringLen
SysAllocString
VariantClear
VariantTimeToSystemTime

gdiplus

GdipSetInterpolationMode
GdipDrawImageRectI
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdiplusShutdown
GdipDeleteGraphics

psapi

GetProcessImageFileNameW

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 341KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f72f429f153c0a03157ad83609a22cb2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

psapi

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 341KB - Virtual size: 341KB

.data Size: 21KB - Virtual size: 39KB

.rsrc Size: 50KB - Virtual size: 49KB

.reloc Size: 134KB - Virtual size: 134KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 341KB - Virtual size: 341KB

.data
Size: 21KB - Virtual size: 39KB

.rsrc
Size: 50KB - Virtual size: 49KB

.reloc
Size: 134KB - Virtual size: 134KB