3d6238419bb8301e1884035e95c5b3b4a738879086f811c11d734e118f1f5fbc

Sharing

Copy URL Twitter E-mail

General

Target

3d6238419bb8301e1884035e95c5b3b4a738879086f811c11d734e118f1f5fbc
Size

2.1MB
MD5

683ddde53b8c9d9f43fb7770f8526543
SHA1

f852192b24dc0520f1941055fa0dc3f2d0f97b25
SHA256

3d6238419bb8301e1884035e95c5b3b4a738879086f811c11d734e118f1f5fbc
SHA512

6a3aa2b5f76e681fac9eb0833862a7961dfb0e327db4e0c0a1b8be7423a686126eab4526ff3b5d7957ce05aad1b4efa62a37f804bed29398cb2331dca55d2e3a
SSDEEP

49152:AeXTmTpKaI7mA7P6ul+owj9wU/mAjRUCnidLOahPtm:AoTmM7mA7P6ul+Th1mAjRUCnidLOY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d6238419bb8301e1884035e95c5b3b4a738879086f811c11d734e118f1f5fbc

Files

3d6238419bb8301e1884035e95c5b3b4a738879086f811c11d734e118f1f5fbc
.exe windows x86

8dcb6b669da23ccbd0c92ef00efb5c78

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
VirtualQuery
GetSystemInfo
LCMapStringW
GetConsoleOutputCP
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
RtlUnwind
RaiseException
OutputDebugStringW
GetCommandLineW
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetTimeZoneInformation
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
SetErrorMode
GetWindowsDirectoryW
FindResourceExW
SearchPathW
GetProfileIntW
SystemTimeToTzSpecificLocalTime
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
GetTempPathW
VerifyVersionInfoW
VerSetConditionMask
GetStringTypeExW
MoveFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetShortPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
DeleteFileW
GetCurrentDirectoryW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalFlags
GetThreadLocale
FileTimeToSystemTime
LocalReAlloc
LocalAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalReAlloc
InitializeCriticalSectionAndSpinCount
GetFileSize
CreateFileW
GlobalGetAtomNameW
SystemTimeToFileTime
ReplaceFileW
SetFileTime
GetTempFileNameW
GetFullPathNameW
GetFileTime
GetFileAttributesW
GetDiskFreeSpaceW
lstrcpyW
GetTickCount64
GetCurrentProcessId
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
lstrcmpA
GetVersionExW
GetCurrentThread
ResumeThread
SetThreadPriority
CreateEventW
WaitForSingleObject
SetEvent
CloseHandle
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
MultiByteToWideChar
WideCharToMultiByte
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
SetLastError
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapSize
HeapReAlloc
GetLastError
DecodePointer
IsBadReadPtr
LoadLibraryA
GetProcAddress
FreeLibrary
LoadResource
VirtualFree
VirtualProtect
VirtualAlloc
GetProcessHeap
HeapFree
HeapAlloc
Sleep
FindResourceW
SizeofResource
LockResource
GetCommandLineA
WriteConsoleW

user32

IsRectEmpty
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
ReuseDDElParam
UnpackDDElParam
LoadImageW
DestroyIcon
IntersectRect
InsertMenuItemW
CreatePopupMenu
TranslateAcceleratorW
LoadAcceleratorsW
ReleaseCapture
BringWindowToTop
SetRect
SetRectEmpty
MonitorFromPoint
InflateRect
GetSystemMetrics
SystemParametersInfoW
OffsetRect
MessageBeep
IsZoomed
DestroyMenu
LoadMenuW
WaitMessage
PostThreadMessageW
InvalidateRect
DrawStateW
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatW
GetWindowThreadProcessId
SetCursor
ShowOwnedPopups
PostQuitMessage
GetCursorPos
TranslateMessage
GetMessageW
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
SetDlgItemTextW
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
EqualRect
CopyRect
MapWindowPoints
MessageBoxW
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
TrackMouseEvent
CharUpperW
GetAsyncKeyState
SetParent
EnableWindow
UpdateWindow
ClientToScreen
UnregisterClassW
SetFocus
GetDlgCtrlID
GetDlgItem
IsIconic
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
SetCapture
SetTimer
KillTimer
GetSystemMenu
DeleteMenu
SetWindowRgn
WindowFromPoint
LoadCursorW
NotifyWinEvent
GetIconInfo
DrawFrameControl
GetMenuItemInfoW
ModifyMenuW
DestroyAcceleratorTable
CreateWindowExW
GetClassInfoExW
CharUpperBuffW
LockWindowUpdate
GetSysColorBrush
RealChildWindowFromPoint
SendDlgItemMessageA
CharNextW
CopyImage
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetDC
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
ScreenToClient
GetSysColor
FillRect
SendMessageW
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
GetParent
LoadBitmapW
RegisterWindowMessageW
DispatchMessageW
EnumDisplayMonitors
PeekMessageW
GetMessagePos
GetMessageTime
PostMessageW
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
MapVirtualKeyW
CreateAcceleratorTableW
EnumChildWindows
SetClassLongW
DrawEdge
DrawFocusRect
DrawIconEx
DestroyCursor
DrawIcon
IsClipboardFormatAvailable
GetDoubleClickTime
GetKeyNameTextW
SetCursorPos
CopyIcon
FrameRect
GetComboBoxInfo
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsCharLowerW
MapVirtualKeyExW
SubtractRect
GetUpdateRect
GetTabbedTextExtentW
CreateMenu
GetWindowRgn
HideCaret
InvertRect
SetLayeredWindowAttributes
UnionRect
EnableScrollBar
UpdateLayeredWindow
SetMenuDefaultItem
GetMenuDefaultItem
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW

gdi32

GetCurrentPositionEx
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextColor
SetTextAlign
StartDocW
GetObjectW
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetTextExtentPoint32W
CreateCompatibleBitmap
CreateFontIndirectW
StartPage
EndPage
AbortDoc
SetAbortProc
DPtoLP
CombineRgn
GetDIBits
PatBlt
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
GetTextMetricsW
CreateRectRgnIndirect
GetMapMode
SetRectRgn
GetBkColor
GetTextColor
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
OffsetRgn
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
GetViewportOrgEx
LPtoDP
GetCharWidthW
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExW
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetWindowOrgEx
GetTextFaceW
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetNearestPaletteIndex
GetSystemPaletteEntries
RoundRect
SetPixelV
GetClipBox
ExcludeClipRect
Escape
DeleteObject
CreateSolidBrush
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
CreateBitmap
BitBlt
GetDeviceCaps
CreateDCW
CopyMetaFileW
EndDoc
CreateRectRgn
DeleteDC

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesW
GetJobW
OpenPrinterW
ClosePrinter

advapi32

RegSetValueExW
RegSetValueW
RegEnumKeyExW
RegEnumValueW
SetFileSecurityW
GetFileSecurityW
RegQueryValueW
RegEnumKeyW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

DragQueryFileW
DragFinish
SHAppBarMessage
SHAddToRecentDocs
ExtractIconW
ShellExecuteW
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
SHGetFileInfoW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathIsUNCW
StrFormatKBSizeW
PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW

uxtheme

IsAppThemed
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetThemePartSize

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoInitializeEx
DoDragDrop
OleLockRunning
CoRegisterMessageFilter
OleGetClipboard
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleFlushClipboard
CoRevokeClassObject
CoGetClassObject
CoDisconnectObject
CreateStreamOnHGlobal
CLSIDFromProgID
CLSIDFromString
OleUninitialize
CoFreeUnusedLibraries
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
OleIsCurrentClipboard
OleInitialize

oleaut32

VarBstrFromDate
VariantCopy
OleCreateFontIndirect
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
LoadTypeLi
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
SysStringLen

oledlg

OleUIBusyW

gdiplus

GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateBitmapFromScan0

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetReadFile

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 342KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8dcb6b669da23ccbd0c92ef00efb5c78

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

wininet

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 342KB - Virtual size: 341KB

.data Size: 24KB - Virtual size: 42KB

.rsrc Size: 68KB - Virtual size: 67KB

.reloc Size: 144KB - Virtual size: 143KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 342KB - Virtual size: 341KB

.data
Size: 24KB - Virtual size: 42KB

.rsrc
Size: 68KB - Virtual size: 67KB

.reloc
Size: 144KB - Virtual size: 143KB