8ad72f187d2cde8b713d9e0be045fd3cec622bae6828c8e20a90102a0df9cd28

Sharing

Copy URL

Twitter E-mail

General

Target

8ad72f187d2cde8b713d9e0be045fd3cec622bae6828c8e20a90102a0df9cd28
Size

3.5MB
MD5

b2f83cd2b0728f2ae10ad913c43d0b37
SHA1

3040beb2d97806d39bc8f9ea6ace183dfdf4fa0a
SHA256

8ad72f187d2cde8b713d9e0be045fd3cec622bae6828c8e20a90102a0df9cd28
SHA512

8c82e12c0038390efc9471ea6e62643506f6e3926e7c53b73082ee3f3926ac060b87773f55123cbb6f18796e5a71ffb125680c931daeb21fa0eeff3d3b366235
SSDEEP

98304:wY7yzDH6SblQG5Vqldwjo6MbKiykqxTcfUWo2EZM2aLh7z/43860bk29ApDTVcdl:wNzDHpblb/6F6MbKiykqxYsWo2E22aLL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ad72f187d2cde8b713d9e0be045fd3cec622bae6828c8e20a90102a0df9cd28

Files

8ad72f187d2cde8b713d9e0be045fd3cec622bae6828c8e20a90102a0df9cd28
.exe windows x86

11e29c490f68cef2977f2c711337d7ad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrFormatKBSizeW
PathRemoveFileSpecW
PathFindFileNameW
PathFileExistsW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathIsDirectoryW

kernel32

GetConsoleMode
GetConsoleCP
GetStringTypeW
GetTimeZoneInformation
LCMapStringW
GetTimeFormatW
GetDateFormatW
GetACP
GetStdHandle
VirtualQuery
VirtualAlloc
ReadConsoleW
HeapQueryInformation
GetCommandLineA
SetStdHandle
FreeLibraryAndExitThread
ExitThread
GetFileType
GetModuleHandleExW
ExitProcess
MoveFileExW
RtlUnwind
OutputDebugStringW
SetFilePointerEx
GetSystemInfo
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
WaitForSingleObjectEx
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SearchPathW
GetTempFileNameW
FindResourceExW
GetCurrentDirectoryW
VerifyVersionInfoW
VerSetConditionMask
SetErrorMode
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalGetAtomNameW
GetCurrentThread
VirtualProtect
lstrcmpA
FindNextFileW
SystemTimeToTzSpecificLocalTime
GetFileSizeEx
GetFileAttributesExW
GetThreadLocale
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
GetCurrentProcessId
ResumeThread
SuspendThread
SetThreadPriority
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleA
FreeResource
GetCurrentThreadId
EncodePointer
OutputDebugStringA
SetLastError
MulDiv
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
WriteFile
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
HeapFree
WinExec
lstrlenW
lstrcatW
lstrcpyW
FileTimeToSystemTime
FileTimeToLocalFileTime
FreeLibrary
LoadLibraryW
GetModuleHandleW
GetProcAddress
GetLongPathNameW
GetCommandLineW
GetVersionExW
GetDriveTypeW
GetModuleFileNameW
LocalFree
FormatMessageW
SetEvent
GetLastError
ResetEvent
CreateEventW
CreateThread
GetLogicalDriveStringsW
WritePrivateProfileStringW
MoveFileW
DefineDosDeviceW
WaitForSingleObject
GetComputerNameW
GetSystemDirectoryW
GetWindowsDirectoryW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetTempPathW
TerminateThread
GetTickCount
Sleep
SetFileTime
GetFileTime
CopyFileW
WideCharToMultiByte
CreateDirectoryW
RemoveDirectoryW
DeleteFileW
SetFileAttributesW
GetFileAttributesW
CloseHandle
CreateFileW
GetProfileIntW
WriteProfileStringW
GetProfileStringW
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
WriteConsoleW
QueryPerformanceFrequency

user32

BringWindowToTop
ShowOwnedPopups
SetWindowContextHelpId
RegisterClipboardFormatW
MapDialogRect
GetAsyncKeyState
MapVirtualKeyW
GetKeyNameTextW
SendDlgItemMessageA
GetDesktopWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
CharNextW
CharUpperW
GetWindowThreadProcessId
GetActiveWindow
TranslateMessage
GetMessageW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
SetDlgItemTextW
MoveWindow
ShowWindow
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
EqualRect
MapWindowPoints
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
EndPaint
BeginPaint
GetForegroundWindow
SetActiveWindow
UpdateWindow
SetMenu
GetMenu
GetFocus
GetDlgCtrlID
IsIconic
LoadAcceleratorsW
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
TranslateAcceleratorW
CreatePopupMenu
DestroyMenu
InsertMenuItemW
IntersectRect
LoadCursorW
EnableWindow
FindWindowW
IsChild
IsMenu
GetClassInfoExW
GetClassInfoW
RegisterClassW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenuStringW
ScreenToClient
ReleaseDC
GetDC
CreateWindowExW
PostMessageW
GetNextDlgGroupItem
GetIconInfo
OffsetRect
UnpackDDElParam
ReuseDDElParam
IsZoomed
GetSystemMenu
DeleteMenu
IsRectEmpty
SetParent
SystemParametersInfoW
GetSysColorBrush
GetMenuItemInfoW
CopyImage
RealChildWindowFromPoint
CopyAcceleratorTableW
InvalidateRgn
DrawEdge
WindowFromPoint
GetCapture
SendMessageW
SetTimer
KillTimer
PostQuitMessage
LoadImageW
SetForegroundWindow
SetFocus
GetWindowRect
GetKeyboardLayout
LoadIconW
GetDlgItem
GetKeyState
ClientToScreen
SetCursorPos
GetCursorPos
LoadMenuW
GetSubMenu
ModifyMenuW
TrackPopupMenu
IsWindow
GetSystemMetrics
CallWindowProcW
GetParent
SetWindowLongW
SetCursor
GetClientRect
PtInRect
ReleaseCapture
RedrawWindow
SetCapture
CopyIcon
UnregisterClassW
InvalidateRect
CopyRect
GetWindowTextW
InflateRect
DrawStateW
SetRect
FillRect
DrawFocusRect
TrackMouseEvent
SetLayeredWindowAttributes
EnumDisplayMonitors
SetWindowRgn
MessageBeep
NotifyWinEvent
GetMenuDefaultItem
GetSysColor
SetRectEmpty
DestroyIcon
GetWindowLongW
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
IsClipboardFormatAvailable
PostThreadMessageW
LockWindowUpdate
DrawIconEx
HideCaret
InvertRect
SetClassLongW
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawFrameControl
FrameRect
DrawIcon
ToUnicodeEx
GetWindowRgn
DestroyCursor
CreateMenu
SubtractRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
GetUpdateRect
GetDoubleClickTime
MapVirtualKeyExW
IsCharLowerW
GetComboBoxInfo
WaitMessage
CharUpperBuffW
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
IsWindowVisible

gdi32

GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetClipBox
GetTextMetricsW
CombineRgn
GetMapMode
SetRectRgn
DPtoLP
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
CreateDIBSection
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
StretchBlt
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
LPtoDP
OffsetRgn
Rectangle
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
GetViewportOrgEx
SetPixelV
GetTextFaceW
ExcludeClipRect
Escape
CreateRectRgn
CreatePatternBrush
CreateHatchBrush
CreateBitmap
SetTextColor
SetBkColor
GetDeviceCaps
CreateDCW
CopyMetaFileW
DeleteObject
BitBlt
SelectObject
CreateCompatibleDC
GetTextExtentPoint32W
RoundRect
CreatePen
DeleteDC
SetPixel
CreateFontIndirectW
GetObjectW
GetStockObject
PatBlt
CreateCompatibleBitmap
CreateSolidBrush

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegSetValueExW
CryptCreateHash
RegEnumKeyExW
RegEnumValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW
RegQueryValueW
RegOpenKeyExW
CryptAcquireContextW
RegCreateKeyExW
RegCloseKey
CryptGetHashParam
CryptDuplicateHash
CryptDecrypt
CryptReleaseContext
CryptDestroyKey
CryptDestroyHash
CryptDeriveKey
CryptHashData

shell32

ShellExecuteW
SHBrowseForFolderW
SHGetPathFromIDListW
SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
Shell_NotifyIconW
SHGetFileInfoW
DragFinish
DragQueryFileW

comctl32

InitCommonControlsEx
_TrackMouseEvent

uxtheme

GetThemeColor
IsAppThemed
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
DrawThemeText
OpenThemeData
CloseThemeData
GetThemePartSize
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme

ole32

OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
RevokeDragDrop
RegisterDragDrop
OleTranslateAccelerator
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoRegisterMessageFilter
OleIsCurrentClipboard
IsAccelerator
OleFlushClipboard
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoCreateGuid
CoInitializeEx
CoCreateInstance
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitialize
CoLockObjectExternal

oleaut32

VariantInit
OleCreateFontIndirect
SysAllocString
SysStringLen
SystemTimeToVariantTime
SafeArrayDestroy
VariantClear
VariantCopy
VarBstrFromDate
LoadTypeLi
VariantChangeType
VariantTimeToSystemTime
SysFreeString
SysAllocStringLen

oledlg

OleUIBusyW

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics

wininet

InternetCloseHandle
InternetReadFile
InternetOpenUrlW
InternetSetOptionW
InternetOpenW
InternetCheckConnectionW

ws2_32

WSAGetLastError
gethostname

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 398KB - Virtual size: 397KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

11e29c490f68cef2977f2c711337d7ad

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

uxtheme

ole32

oleaut32

oledlg

gdiplus

wininet

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 398KB - Virtual size: 397KB

.data Size: 26KB - Virtual size: 51KB

.gfids Size: 107KB - Virtual size: 106KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1.1MB - Virtual size: 1.1MB

.reloc Size: 143KB - Virtual size: 142KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 398KB - Virtual size: 397KB

.data
Size: 26KB - Virtual size: 51KB

.gfids
Size: 107KB - Virtual size: 106KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1.1MB - Virtual size: 1.1MB

.reloc
Size: 143KB - Virtual size: 142KB