7cfb93efe8c3b2c421c7c27e4f36adde2c08fcd5e6f3418e7c031737665a1cd0

Sharing

Copy URL Twitter E-mail

General

Target

7cfb93efe8c3b2c421c7c27e4f36adde2c08fcd5e6f3418e7c031737665a1cd0
Size

6.0MB
MD5

02fb6ef8771b79b4323140df7e248d88
SHA1

63e053a963d3badbc3b8ddde8eececa319a07db0
SHA256

7cfb93efe8c3b2c421c7c27e4f36adde2c08fcd5e6f3418e7c031737665a1cd0
SHA512

c694fa93bbed50dbdd1937744c08422e6aebc397b2911abaf5a9465e6b7e6a378c97af4522346112a8ecd9aeaa691afb53acbbecab9db2d82f28f4adad84bf7b
SSDEEP

98304:Mp/gx+Ggi+fOriFacsUmdFLOAkGkzdnEVomFHKnPoNP:q/gx+G9rgsUwFLOyomFHKnPoN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7cfb93efe8c3b2c421c7c27e4f36adde2c08fcd5e6f3418e7c031737665a1cd0

Files

7cfb93efe8c3b2c421c7c27e4f36adde2c08fcd5e6f3418e7c031737665a1cd0
.exe windows x86

78467d03a9ac8b84bb3434828ed3aa08

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetModuleHandleExW
HeapValidate
GetSystemInfo
GetCommandLineA
GetCommandLineW
CreateThread
ExitThread
FreeLibraryAndExitThread
HeapQueryInformation
VirtualAlloc
QueryPerformanceFrequency
GetStdHandle
GetFileType
WriteConsoleW
SetStdHandle
ExitProcess
LCMapStringW
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
VirtualQuery
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
RtlUnwind
WaitForSingleObjectEx
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FindResourceExW
GetWindowsDirectoryW
SearchPathW
ResetEvent
Sleep
GetTempPathW
GetTickCount
GetTempFileNameW
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentProcess
GetHandleInformation
DuplicateHandle
UnlockFile
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
QueryPerformanceCounter
GetProfileIntW
GetFileSize
GetFileAttributesW
VerifyVersionInfoW
VerSetConditionMask
GetThreadLocale
GetAtomNameW
DeleteFileW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
CompareStringW
GlobalGetAtomNameW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
ResumeThread
SetThreadPriority
CopyFileW
FormatMessageW
MulDiv
GlobalSize
GetCurrentProcessId
GlobalAddAtomW
CreateEventW
SetEvent
SetErrorMode
GlobalUnlock
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
LoadLibraryA
lstrcpyW
FreeResource
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GlobalLock
LoadLibraryW
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
FreeLibrary
GetVersionExW
GetCurrentThreadId
GetCurrentThread
OutputDebugStringA
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
MultiByteToWideChar
HeapReAlloc
HeapSize
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
HeapFree
lstrcmpiW
GlobalFree
GlobalAlloc
GetLocalTime
SetFilePointer
WaitForSingleObject
OutputDebugStringW
lstrlenW
WriteFile
WideCharToMultiByte
LocalFree
LocalAlloc
GetSystemDefaultLangID
CloseHandle
GetCommState
CreateFileW
GetNativeSystemInfo
FindResourceW
LoadResource
LockResource
SizeofResource
SetThreadUILanguage
GetACP
GetModuleFileNameW
GetLastError
SetLastError
VirtualProtect

user32

DefWindowProcW
GetMessageTime
GetMessagePos
IsDialogMessageW
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
SetFocus
GetDlgCtrlID
CheckDlgButton
SetDlgItemTextW
MoveWindow
ShowWindow
SetRectEmpty
SendDlgItemMessageA
NotifyWinEvent
LoadIconW
LoadCursorW
GetTopWindow
SetParent
WindowFromPoint
MapWindowPoints
ScreenToClient
ClientToScreen
HideCaret
GetWindowRect
GetClientRect
EnableScrollBar
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
LockWindowUpdate
RedrawWindow
InvalidateRgn
InvalidateRect
GetWindowRgn
SetWindowRgn
GetUpdateRect
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
SetForegroundWindow
GetForegroundWindow
UpdateWindow
GetSystemMenu
DrawMenuBar
KillTimer
SetTimer
SetCapture
GetCapture
OpenClipboard
CallWindowProcW
GetNextDlgGroupItem
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
ShowOwnedPopups
IsChild
PostThreadMessageW
GetClassNameW
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxW
SetCursor
ValidateRect
GetKeyState
DispatchMessageW
TranslateMessage
GetMessageW
GetMenuCheckMarkDimensions
GetFocus
PostMessageW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
PtInRect
GetCursorPos
LoadBitmapW
InvertRect
FrameRect
DrawFocusRect
EndDeferWindowPos
GetMenu
SetMenu
TrackPopupMenu
GetSystemMetrics
UnregisterClassW
PeekMessageW
PostQuitMessage
SetWindowPos
SetWindowContextHelpId
GetParent
GetWindow
MapDialogRect
RegisterWindowMessageW
TabbedTextOutW
DrawStateW
GrayStringW
DrawTextExW
DrawTextW
DrawIcon
SetMenuDefaultItem
GetMenuDefaultItem
SetMenuItemInfoW
GetMenuItemInfoW
InsertMenuItemW
SetMenuItemBitmaps
DeleteMenu
ScrollWindow
SetPropW
GetPropW
RemovePropW
AdjustWindowRectEx
CopyRect
EqualRect
GetClassLongW
SetScrollInfo
GetScrollInfo
WinHelpW
MonitorFromWindow
GetMonitorInfoW
WaitMessage
RegisterClassW
RemoveMenu
ModifyMenuW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
GetNextDlgTabItem
DeferWindowPos
SendMessageW
GetSysColor
GetSysColorBrush
FillRect
InflateRect
OffsetRect
IsRectEmpty
DrawIconEx
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetActiveWindow
EnableWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongW
GetDesktopWindow
DrawEdge
DrawFrameControl
IsMenu
LoadMenuW
GetMenuStringW
GetMenuState
CreateMenu
CreatePopupMenu
CheckMenuItem
EnableMenuItem
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
DestroyCursor
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
MapVirtualKeyExW
IsCharLowerW
IsClipboardFormatAvailable
CharUpperBuffW
SubtractRect
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
RegisterClipboardFormatW
ReuseDDElParam
TranslateAcceleratorW
UnpackDDElParam
GetClipboardFormatNameW
GetClipboardFormatNameA
UpdateLayeredWindow
MapVirtualKeyW
GetKeyNameTextW
SetClassLongW
DestroyAcceleratorTable
CopyIcon
GetIconInfo
GetDoubleClickTime
UnionRect
SetCursorPos
GetAsyncKeyState
CharUpperW
TrackMouseEvent
LoadImageW
DestroyIcon
EmptyClipboard
SetClipboardData
CloseClipboard
MonitorFromPoint
EnumDisplayMonitors
SetLayeredWindowAttributes
MessageBeep
IntersectRect
SetRect
CopyAcceleratorTableW
CharNextW
DestroyMenu
LoadAcceleratorsW
RealChildWindowFromPoint
SystemParametersInfoW
CopyImage
ReleaseCapture

gdi32

CreateHatchBrush
CreatePalette
CreatePen
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
Ellipse
Escape
ExtFloodFill
FillRgn
FrameRgn
GetBkColor
GetBoundsRect
GetDeviceCaps
GetMapMode
GetNearestPaletteIndex
GetObjectType
GetPaletteEntries
GetPixel
GetRgnBox
GetTextColor
GetTextExtentPoint32W
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
OffsetRgn
PatBlt
PtInRegion
PtVisible
RectVisible
Rectangle
RealizePalette
RoundRect
SelectObject
SetPaletteEntries
SetPixel
SetPixelV
StretchBlt
SetRectRgn
GetTextMetricsW
GetObjectW
TextOutW
ExtTextOutW
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
GetTextFaceW
DeleteObject
CopyMetaFileW
SetBkColor
SetTextColor
ExcludeClipRect
GetClipBox
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateDIBitmap
EnumFontFamiliesW
CreateFontIndirectW
CreateEllipticRgn
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CombineRgn
BitBlt
DeleteDC
GetTextCharsetInfo
EnumFontFamiliesExW
GetSystemPaletteEntries
SetDIBColorTable
CreateDIBSection
GetStockObject

msimg32

AlphaBlend
TransparentBlt

winspool.drv

EnumPrintersW
ClosePrinter
ord204
OpenPrinterW
EnumPortsW
DocumentPropertiesW
AddPrinterW
EnumPrinterDriversW

advapi32

RegQueryValueExW
RegSetValueExW
RegCloseKey
RegEnumKeyW
RegQueryInfoKeyW
RegEnumKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegQueryValueW
RegEnumValueW
RegOpenKeyExW

shell32

SHGetFileInfoW
DragQueryFileW
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
ShellExecuteExW
DragFinish
ShellExecuteW
SHAppBarMessage

comctl32

InitCommonControlsEx

shlwapi

PathIsUNCW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
PathStripToRootW
StrFormatKBSizeW

uxtheme

GetThemeSysColor
GetWindowTheme
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed
DrawThemeText
DrawThemeParentBackground
GetThemePartSize
IsThemeBackgroundPartiallyTransparent

ole32

RevokeDragDrop
RegisterDragDrop
OleLockRunning
CoTaskMemAlloc
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoDisconnectObject
CoInitializeEx
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
StringFromGUID2
CoGetClassObject
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
StringFromCLSID
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
CoCreateInstance
CoInitialize
CoRevokeClassObject
CoRegisterMessageFilter
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal

oleaut32

SysFreeString
SysAllocStringLen
VariantInit
VariantClear
VariantChangeType
LoadTypeLi
SysAllocString
VariantCopy
VarBstrFromDate
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
OleCreateFontIndirect

oledlg

OleUIBusyW

gdiplus

GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipBitmapUnlockBits
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipDeleteGraphics

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDescriptionW
SetupDiGetDeviceInstanceIdW
SetupDiCreateDeviceInterfaceW
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassDevsW

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 487KB - Virtual size: 486KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78467d03a9ac8b84bb3434828ed3aa08

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

setupapi

oleacc

imm32

winmm

Sections

.text Size: 3.3MB - Virtual size: 3.3MB

.rdata Size: 487KB - Virtual size: 486KB

.data Size: 22KB - Virtual size: 50KB

.rsrc Size: 2.0MB - Virtual size: 2.0MB

.reloc Size: 193KB - Virtual size: 192KB

.text
Size: 3.3MB - Virtual size: 3.3MB

.rdata
Size: 487KB - Virtual size: 486KB

.data
Size: 22KB - Virtual size: 50KB

.rsrc
Size: 2.0MB - Virtual size: 2.0MB

.reloc
Size: 193KB - Virtual size: 192KB