Hacks-Page-Tampermon-Script_635341[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

Hacks-Page-Tampermon-Script_635341.zip
Size

17.1MB
MD5

d5ae8aa419e6e91f16a6732547c94850
SHA1

003da58c9b2064ffde056a96cc6b751d7b8bc07b
SHA256

e9d4e66a1110959bd321d3fde4ba1ee69834c57fe8a4d4769a769f9062f885db
SHA512

1b870fb2a746e6cd29b2a8a60c947157e39e34ea833ec3cb9144c19bf339264ffaa35886effc21b23c6c73411934de9c12d53dbca52c6082667024162db70ed8
SSDEEP

393216:DgeRgDsnLm+v0IfCru1hJUsmMgndW731T+skF7cW3v:sWmsLmshfDhu5s78h79v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ProInstaller_0001.exe

Files

Hacks-Page-Tampermon-Script_635341.zip
.zip
ProInstaller_0001.exe
.exe windows x86

f6707c6dd66de1f4fec93a0736631749

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

comctl32

FlatSB_GetScrollInfo
ImageList_SetBkColor
ImageList_DragShowNolock
InitializeFlatSB
ImageList_SetImageCount
ImageList_Add
ImageList_DrawIndirect
FlatSB_SetScrollProp
ImageList_EndDrag
ImageList_DragEnter
FlatSB_GetScrollPos
ImageList_SetIconSize
ImageList_BeginDrag
FlatSB_SetScrollInfo
ImageList_DrawEx
ImageList_GetIconSize
ImageList_DragMove
ImageList_Write
ImageList_Draw
FlatSB_SetScrollPos
_TrackMouseEvent
ImageList_Remove
ImageList_GetImageCount
ImageList_Create
ImageList_GetDragImage
ImageList_Destroy
ImageList_DragLeave
ImageList_Read
ImageList_GetIcon
ImageList_GetBkColor

shell32

ShellExecuteExW
SHGetFolderPathW
ShellExecuteW
SHAppBarMessage
Shell_NotifyIconW

user32

GetMessagePos
GetWindowLongW
GetMenuStringW
GetKeyNameTextW
SendMessageA
LoadCursorW
GetMenuItemInfoW
SetScrollInfo
SendMessageW
CheckMenuItem
IsChild
InsertMenuW
GetMenuState
GetForegroundWindow
DestroyMenu
GetTopWindow
DefFrameProcW
GetClassLongW
GetFocus
CreatePopupMenu
DrawIcon
MapWindowPoints
IsRectEmpty
GetWindowThreadProcessId
SwitchToThisWindow
SetWindowsHookExW
DispatchMessageA
GetParent
GetUpdateRect
SetParent
KillTimer
MapVirtualKeyW
DrawTextExW
EnumClipboardFormats
IsDialogMessageW
TranslateMDISysAccel
InvalidateRect
ValidateRect
ScrollWindow
ReleaseCapture
EmptyClipboard
GetKeyState
GetMenuItemRect
SystemParametersInfoW
LoadIconW
GetClassNameW
GetDlgItem
GetSysColor
IsWindowUnicode
GetScrollPos
PeekMessageA
SetWindowLongW
FindWindowExW
DefMDIChildProcW
DrawFocusRect
GetMenu
CharUpperW
EndMenu
ActivateKeyboardLayout
GetPropW
PtInRect
GetKeyboardLayoutList
PostQuitMessage
ShowCaret
LoadKeyboardLayoutW
BeginPaint
CharUpperBuffW
ScreenToClient
GetCursor
GetKeyboardLayoutNameW
InsertMenuItemW
DeleteMenu
GetKeyboardState
IsClipboardFormatAvailable
GetSubMenu
GetSysColorBrush
PeekMessageW
MsgWaitForMultipleObjectsEx
ShowOwnedPopups
DrawEdge
IsZoomed
SetScrollRange
EnableScrollBar
GetDlgCtrlID
SetCursorPos
DrawMenuBar
InflateRect
CreateWindowExW
LoadStringW
MessageBoxW
GetClassInfoW
TrackPopupMenu
RemovePropW
GetClientRect
CopyImage
DestroyIcon
SetWindowRgn
RegisterWindowMessageW
EnumChildWindows
PostMessageW
ReleaseDC
OffsetRect
MsgWaitForMultipleObjects
ShowWindow
MessageBeep
GetWindow
CloseClipboard
SetRect
EndPaint
MonitorFromPoint
GetMessageExtraInfo
GetIconInfo
SetCursor
SetClipboardData
CallWindowProcW
GetMenuItemCount
CharLowerW
EnumWindows
GetWindowRect
CreateMenu
GetClipboardData
HideCaret
IsWindowVisible
IsWindow
EnableWindow
SetCapture
GetWindowDC
GetCapture
DrawTextW
SetMenu
GetDCEx
GetWindowPlacement
GetActiveWindow
MonitorFromWindow
SetForegroundWindow
GetClassInfoExW
CharNextW
GetDC
SetScrollPos
GetSystemMenu
ClientToScreen
DispatchMessageW
GetLastActivePopup
UnregisterClassW
IsWindowEnabled
EnumDisplayMonitors
UnhookWindowsHookEx
RemoveMenu
GetKeyboardLayout
OpenClipboard
DestroyWindow
WaitMessage
GetMenuItemID
AdjustWindowRectEx
EnumThreadWindows
SetActiveWindow
SetWindowPos
SetTimer
UpdateWindow
IsIconic
WindowFromPoint
SetPropW
SetWindowTextW
GetWindowTextW
IsDialogMessageA
GetCursorPos
CallNextHookEx
TranslateMessage
DestroyCursor
SetWindowPlacement
GetSystemMetrics
SetMenuItemInfoW
CreateIconIndirect
DefWindowProcW
SetClassLongW
FindWindowW
RedrawWindow
CharLowerBuffW
FrameRect
CreateIcon
RegisterClipboardFormatW
LoadBitmapW
GetScrollInfo
ShowScrollBar
EnableMenuItem
FillRect
GetComboBoxInfo
SetFocus
DrawFrameControl
RegisterClassW
DrawIconEx
GetScrollRange
GetDesktopWindow
GetMonitorInfoW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

oleaut32

GetErrorInfo
SafeArrayGetLBound
SafeArrayGetUBound
SysAllocStringLen
SysFreeString
VariantChangeType
SysReAllocStringLen
SafeArrayCreate
VariantClear
VariantInit
VariantCopy
SafeArrayPtrOfIndex

advapi32

OpenSCManagerW
RegQueryInfoKeyW
RegEnumKeyExW
OpenServiceW
LookupPrivilegeValueW
RegQueryValueExW
OpenProcessToken
GetUserNameW
RegOpenKeyExW
RegFlushKey
RegEnumValueW
QueryServiceStatus
RegCloseKey
AdjustTokenPrivileges

msvcrt

memset
memcpy

winhttp

WinHttpAddRequestHeaders
WinHttpSetTimeouts
WinHttpGetProxyForUrl
WinHttpCloseHandle
WinHttpWriteData
WinHttpSendRequest
WinHttpReadData
WinHttpSetCredentials
WinHttpOpenRequest
WinHttpQueryOption
WinHttpQueryDataAvailable
WinHttpSetOption
WinHttpQueryAuthSchemes
WinHttpQueryHeaders
WinHttpConnect
WinHttpReceiveResponse
WinHttpGetIEProxyConfigForCurrentUser
WinHttpOpen
WinHttpSetStatusCallback

kernel32

FindFirstFileW
GetStartupInfoW
TlsGetValue
VerSetConditionMask
HeapDestroy
GetCPInfo
SetLastError
CreateEventW
LoadResource
EnumCalendarInfoW
QueryPerformanceCounter
GetTickCount
MulDiv
IsDebuggerPresent
VerifyVersionInfoW
GlobalSize
GetModuleHandleW
GetCurrentThread
GetVersionExW
HeapAlloc
FileTimeToSystemTime
WaitForMultipleObjectsEx
FindNextFileW
VirtualQuery
CreateDirectoryW
GetCurrentThreadId
GetProcessHeap
SetEvent
GetModuleFileNameW
TlsSetValue
GetStdHandle
GetVersion
FindClose
CreateThread
InitializeCriticalSection
TerminateThread
LCMapStringW
EnterCriticalSection
SetFilePointer
GetTimeZoneInformation
VirtualAlloc
CloseHandle
GlobalDeleteAtom
VirtualQueryEx
LoadLibraryExW
RtlUnwind
QueryPerformanceFrequency
GlobalUnlock
WideCharToMultiByte
GetDateFormatW
GetSystemDefaultUILanguage
GetFileSize
SetThreadLocale
GetCPInfoExW
lstrlenW
LocalFree
MultiByteToWideChar
FreeResource
ReadFile
GetEnvironmentVariableW
SuspendThread
FindResourceW
RaiseException
SwitchToThread
DeleteCriticalSection
ExitThread
GetUserDefaultUILanguage
GetThreadLocale
GetExitCodeThread
SetErrorMode
LockResource
HeapFree
GlobalFree
GetComputerNameW
GlobalHandle
GetFullPathNameW
FormatMessageW
GetCurrentProcessId
ResumeThread
GetTempPathW
CreateMutexW
GetThreadPriority
LoadLibraryA
SetThreadPriority
GetCurrentProcess
GetLastError
UnhandledExceptionFilter
GetLocaleInfoW
GetProcAddress
GetDiskFreeSpaceW
GlobalLock
GlobalAddAtomW
GetSystemInfo
SizeofResource
LocalAlloc
IsValidLocale
WaitForSingleObject
LeaveCriticalSection
HeapCreate
GlobalFindAtomW
LoadLibraryW
GetFileAttributesW
GlobalAlloc
GetDriveTypeW
CreateFileW
GetLocalTime
ExitProcess
SetEndOfFile
GetCommandLineW
Sleep
FreeLibrary
DeviceIoControl
EnumResourceNamesW
MoveFileW
WriteFile
CompareStringW
GetACP
VirtualFree
ResetEvent

ole32

CoTaskMemFree
IsEqualGUID
CoTaskMemAlloc
CoCreateInstance
OleUninitialize
CoInitialize
OleInitialize
CoUninitialize

gdi32

SaveDC
GetEnhMetaFileDescriptionW
SelectPalette
Polyline
SetGraphicsMode
GetStretchBltMode
GetTextExtentPoint32W
PlayEnhMetaFile
DeleteDC
AngleArc
SetEnhMetaFileBits
CreateRectRgn
SetDCPenColor
RectVisible
MoveToEx
CreateDIBSection
GetSystemPaletteEntries
CreatePenIndirect
CreateHalftonePalette
CombineRgn
SetWindowOrgEx
SetROP2
GetRgnBox
GetBitmapBits
CreateFontIndirectW
SetWorldTransform
DeleteEnhMetaFile
SetDIBits
Chord
RestoreDC
CreateCompatibleBitmap
GetDIBColorTable
GetCurrentPositionEx
SetBkMode
SetPixel
PolyBezier
FrameRgn
Pie
GetEnhMetaFileHeader
SetRectRgn
GetWindowOrgEx
DeleteObject
ArcTo
ExtTextOutW
GetPixel
GetCurrentObject
Polygon
CreateBitmap
IntersectClipRect
EnumFontFamiliesExW
UnrealizeObject
GetEnhMetaFileBits
CreateBrushIndirect
GetDeviceCaps
Rectangle
ExcludeClipRect
SetWinMetaFileBits
GetViewportOrgEx
GetWinMetaFileBits
GetStockObject
StretchBlt
GdiFlush
GetTextMetricsW
PatBlt
GetTextColor
RoundRect
CreateCompatibleDC
GetClipBox
SelectObject
Ellipse
GetTextExtentPointW
RealizePalette
ExtFloodFill
GetNearestPaletteIndex
GetEnhMetaFilePaletteEntries
GetDIBits
LineTo
GetPaletteEntries
GetObjectW
CreateSolidBrush
SetDIBColorTable
SetBkColor
CreateRoundRectRgn
GetBkMode
GetBrushOrgEx
CreatePalette
CopyEnhMetaFileW
MaskBlt
SetTextColor
BitBlt
ExtCreateRegion
SetViewportOrgEx
SetStretchBltMode
PolyBezierTo
CreateDIBitmap
Arc
SetBrushOrgEx

Exports

Exports

__dbk_fcall_wrapper
dbkFCallWrapperAddr

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 485KB - Virtual size: 484KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 106KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 88B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 283KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 321KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6707c6dd66de1f4fec93a0736631749

Headers

DLL Characteristics

File Characteristics

Imports

winmm

comctl32

shell32

user32

version

oleaut32

advapi32

msvcrt

winhttp

kernel32

ole32

gdi32

Exports

Exports

Sections

.text Size: 2.9MB - Virtual size: 2.9MB

.itext Size: 13KB - Virtual size: 12KB

.data Size: 485KB - Virtual size: 484KB

.bss Size: - Virtual size: 106KB

.idata Size: 13KB - Virtual size: 13KB

.didata Size: 4KB - Virtual size: 3KB

.edata Size: 512B - Virtual size: 108B

.tls Size: - Virtual size: 88B

.rdata Size: 512B - Virtual size: 93B

.reloc Size: 283KB - Virtual size: 283KB

.rsrc Size: 321KB - Virtual size: 321KB

.text
Size: 2.9MB - Virtual size: 2.9MB

.itext
Size: 13KB - Virtual size: 12KB

.data
Size: 485KB - Virtual size: 484KB

.bss
Size: - Virtual size: 106KB

.idata
Size: 13KB - Virtual size: 13KB

.didata
Size: 4KB - Virtual size: 3KB

.edata
Size: 512B - Virtual size: 108B

.tls
Size: - Virtual size: 88B

.rdata
Size: 512B - Virtual size: 93B

.reloc
Size: 283KB - Virtual size: 283KB

.rsrc
Size: 321KB - Virtual size: 321KB