dc12a2a47e1921a95e983a78481b5f3e4ec345b6aa2d00bd0ecbbcd99a55a39c

Sharing

Copy URL Twitter E-mail

General

Target

dc12a2a47e1921a95e983a78481b5f3e4ec345b6aa2d00bd0ecbbcd99a55a39c
Size

7.1MB
MD5

76a2215db5ea47f24462ec9e19050994
SHA1

ea63ffc69b4cd45d595e6c47fbd747799e99965c
SHA256

dc12a2a47e1921a95e983a78481b5f3e4ec345b6aa2d00bd0ecbbcd99a55a39c
SHA512

3b71f25a3a96f034e195f97bdd1de4f332f2251c70357bf51df2a012d1156a3a18c005c73b7efd2fd79e791527a3a454780fbc61efa6733a1f04a31bb62e8abf
SSDEEP

196608:I0EXaVyBn6yOu6e9l9brNvbkgHvXzR1iGj5zPUSTXFLOyomFHKnP:I0EAyB68FBjkW/91PVTXF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc12a2a47e1921a95e983a78481b5f3e4ec345b6aa2d00bd0ecbbcd99a55a39c

Files

dc12a2a47e1921a95e983a78481b5f3e4ec345b6aa2d00bd0ecbbcd99a55a39c
.exe windows x86

5dfb3c556d8d7e773298a060fed1b279

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetStartupInfoW
IsValidCodePage
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
ReadConsoleW
SetFilePointerEx
SetUnhandledExceptionFilter
GetStringTypeW
OutputDebugStringW
LCMapStringW
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
SetStdHandle
UnhandledExceptionFilter
GetStdHandle
GetFileType
HeapQueryInformation
GetModuleHandleExW
ExitProcess
ExitThread
CreateThread
RtlUnwind
GetSystemTimeAsFileTime
GetModuleFileNameA
IsProcessorFeaturePresent
IsDebuggerPresent
VirtualQuery
VirtualAlloc
FindResourceExW
SearchPathA
GetProfileIntA
VirtualProtect
GetTempFileNameA
GetWindowsDirectoryA
VerifyVersionInfoA
VerSetConditionMask
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetCPInfo
GetOEMCP
GlobalFlags
GetACP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetCurrentProcessId
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
ResumeThread
SuspendThread
SetThreadPriority
CreateEventA
WaitForSingleObject
SetEvent
GetThreadLocale
GetVolumeInformationA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GetFullPathNameA
FlushFileBuffers
FindFirstFileA
FindClose
FileTimeToLocalFileTime
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
LoadLibraryW
LoadLibraryA
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
OutputDebugStringA
SetLastError
MulDiv
GlobalSize
GetTickCount
UnmapViewOfFile
GetFileSize
FileTimeToSystemTime
SetFileTime
LocalFileTimeToFileTime
GetCurrentDirectoryA
SystemTimeToFileTime
ReadFile
SetFilePointer
DecodePointer
HeapSize
RaiseException
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
Process32Next
Process32First
CreateToolhelp32Snapshot
lstrcmpA
GetFileAttributesA
DeleteFileA
Sleep
SetFileAttributesA
FormatMessageA
lstrlenA
LocalAlloc
LocalFree
InterlockedIncrement
InterlockedDecrement
GetVersionExA
GetSystemInfo
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
FreeResource
CloseHandle
WriteFile
CreateFileA
FindResourceA
WinExec
CreateDirectoryA
CopyFileA
GetTempPathA
WideCharToMultiByte
GetCommandLineA
FindResourceW
LoadResource
LockResource
SizeofResource
MultiByteToWideChar
InterlockedExchange
InitializeCriticalSectionAndSpinCount
GetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
lstrcatA
lstrcpyA

user32

ToAsciiEx
GetKeyboardState
GetKeyboardLayout
RegisterClipboardFormatA
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
GetUpdateRect
SetClassLongA
DestroyAcceleratorTable
ModifyMenuA
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
CopyIcon
GetIconInfo
GetDoubleClickTime
EnableScrollBar
LockWindowUpdate
CreatePopupMenu
BringWindowToTop
UnionRect
SetCursorPos
NotifyWinEvent
GetSystemMenu
LoadMenuW
GetAsyncKeyState
IsZoomed
TrackMouseEvent
LoadImageW
LoadImageA
DestroyIcon
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
MonitorFromPoint
SetParent
EnumDisplayMonitors
SetRectEmpty
SetLayeredWindowAttributes
MessageBeep
GetNextDlgGroupItem
IntersectRect
SetRect
InvalidateRgn
CopyAcceleratorTableA
CharNextA
InvalidateRect
DeleteMenu
LoadCursorW
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
CopyImage
SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
RealChildWindowFromPoint
LoadCursorA
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetWindowThreadProcessId
SetCursor
ShowOwnedPopups
DrawIconEx
IsRectEmpty
OffsetRect
InflateRect
MapVirtualKeyA
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawStateA
DrawFrameControl
DrawEdge
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetCursorPos
TranslateMessage
GetMessageA
CharUpperA
IsDialogMessageA
SendDlgItemMessageA
CheckDlgButton
SetDlgItemTextA
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetWindowTextLengthA
GetSystemMetrics
ReleaseDC
SendMessageA
SetTimer
KillTimer
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
LoadAcceleratorsW
CreateAcceleratorTableA
GetKeyNameTextA
SubtractRect
CharUpperBuffA
UpdateLayeredWindow
FrameRect
GetWindowRgn
DestroyCursor
IsClipboardFormatAvailable
InvertRect
HideCaret
GetKeyState
GetDlgCtrlID
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
MapVirtualKeyExA
IsCharLowerA
FillRect
PostThreadMessageA
EnableWindow
CreateMenu
MessageBoxA
PostMessageA
LoadIconW
SetWindowTextA
IsIconic
GetClientRect
DrawIcon
UnregisterClassA
wsprintfA
GetDesktopWindow
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
IsWindow
SetFocus
GetFocus
IsWindowEnabled
GetParent
DestroyWindow
CreateDialogIndirectParamA
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
SetActiveWindow
GetWindowLongA
RegisterWindowMessageA
DispatchMessageA
PeekMessageA
GetMessagePos
GetMessageTime
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsChild
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible

gdi32

MoveToEx
TextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectA
GetRgnBox
GetMapMode
SetRectRgn
DPtoLP
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExA
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
SetPixelV
GetTextFaceA
SetBkMode
SelectPalette
ExtSelectClipRgn
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
CreateDCA
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreatePatternBrush
CreatePen
GetTextMetricsA
Polyline
Polygon
CreatePolygonRgn
ExtTextOutA
PatBlt
GetTextExtentPoint32A
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
CombineRgn
CreateBitmap
SetTextColor
SetBkColor
GetDeviceCaps
CopyMetaFileA
CreateCompatibleDC
DeleteDC
SelectObject
BitBlt
CreateDIBSection
GetObjectA
DeleteObject

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteKeyA
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegOpenKeyExA
RegDeleteValueA
CloseServiceHandle
ControlService
OpenServiceA
OpenSCManagerA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA

shell32

SHGetFolderPathA
ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation
SHChangeNotify
SHFileOperationA
SHGetFileInfoA
DragFinish
DragQueryFileA
SHGetSpecialFolderPathA
SHAppBarMessage
SHGetDesktopFolder

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionA
PathFileExistsA
PathFindFileNameA
PathRemoveFileSpecW
UrlUnescapeA
PathIsUNCA
PathStripToRootA
StrFormatKBSizeA

uxtheme

CloseThemeData
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetThemeSysColor
GetWindowTheme
DrawThemeParentBackground
DrawThemeText
OpenThemeData
DrawThemeBackground
GetCurrentThemeName
GetThemeColor
GetThemePartSize

ole32

RevokeDragDrop
OleLockRunning
CoInitialize
CoUninitialize
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
OleRun
CoTaskMemAlloc
CoTaskMemFree
OleDuplicateData
ReleaseStgMedium
CoInitializeEx
CoCreateGuid
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoRegisterMessageFilter
CoRevokeClassObject

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
VariantClear
SysAllocString
VariantInit
VariantCopy
VariantChangeType
LoadRegTypeLi
DispCallFunc
SysStringLen
SafeArrayCreate
SafeArrayDestroy
SysStringByteLen
SafeArrayGetElemsize
SafeArrayAccessData
SafeArrayUnaccessData
VarBstrFromDate
LoadTypeLi
OleCreateFontIndirect
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
GetErrorInfo

oledlg

ord8

gdiplus

GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStream
GdipDeleteGraphics
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdiplusStartup
GdipDrawImageI
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipGetImagePaletteSize
GdipCreateBitmapFromScan0
GdiplusShutdown
GdipDisposeImage
GdipFree
GdipAlloc
GdipCloneImage
GdipCreateBitmapFromHBITMAP

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

wininet

InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetQueryOptionA
InternetQueryDataAvailable
InternetWriteFile
InternetReadFile
InternetOpenUrlA
InternetCloseHandle
InternetOpenA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetSetFilePointer

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 342KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5dfb3c556d8d7e773298a060fed1b279

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

version

oleacc

wininet

imm32

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 342KB - Virtual size: 341KB

.data Size: 27KB - Virtual size: 57KB

.rsrc Size: 5.1MB - Virtual size: 5.1MB

.reloc Size: 125KB - Virtual size: 125KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 342KB - Virtual size: 341KB

.data
Size: 27KB - Virtual size: 57KB

.rsrc
Size: 5.1MB - Virtual size: 5.1MB

.reloc
Size: 125KB - Virtual size: 125KB