superscan-4[.]1[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

superscan-4.1.zip
Size

229KB
MD5

7f7ee56509f3fa030427542421d163bb
SHA1

6cfd785fb9b98ffb03d8a53296d361c283ae4460
SHA256

b9107d798ca3bd15f81d4ce5e5494f8b6a438f044430a6c45d68cd64f300f32e
SHA512

2968607326fec6723d88cac06d03885d44e0f5f0f7fe6df44c8f091fa2000294881e1fa91481a8aa60aac1a14ee6b198afd1225a7bb1ede5127dfe9392cc7db4
SSDEEP

6144:47B6LMBgfGF6KqD5rnu4CbdlDKe/vfDCcW7c:47BeMBgfGF9Yuxdl2Amc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SuperScan4.1.exe

Files

superscan-4.1.zip
.zip
ReadMe.txt
SuperScan4.1.exe
.exe windows x86

04823b7150d1ea9e97d1df5b2b12a53b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

netapi32

NetRemoteTOD
NetServerDiskEnum
NetWkstaGetInfo
NetLocalGroupEnum
NetUserEnum
NetApiBufferFree
NetUseDel
NetUserModalsGet
NetWkstaTransportEnum
NetUseAdd
NetLocalGroupGetMembers
NetGetAnyDCName
NetGetDCName
Netbios
NetShareEnum
NetServerGetInfo
NetSessionEnum

winmm

PlaySoundA

kernel32

LockResource
SetLastError
WaitForSingleObject
SetEvent
CreateEventA
ResetEvent
OutputDebugStringA
SetThreadPriority
ResumeThread
GetCurrentThreadId
GetFileAttributesA
GetModuleFileNameA
GetComputerNameA
GlobalLock
GlobalUnlock
GetVersionExA
CreateFileA
SetFilePointer
ReadFile
GetLocalTime
HeapSize
GetTimeZoneInformation
RtlUnwind
GetFileType
SetHandleCount
InitializeCriticalSectionAndSpinCount
FlushFileBuffers
GetConsoleMode
GetConsoleCP
GetCurrentProcess
SizeofResource
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LCMapStringW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsProcessorFeaturePresent
RaiseException
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleW
HeapCreate
GetStartupInfoW
HeapSetInformation
GetCommandLineA
CreateThread
ExitThread
DecodePointer
EncodePointer
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
LoadResource
FindResourceA
QueryPerformanceFrequency
QueryPerformanceCounter
lstrcatA
GetCurrentDirectoryA
GetModuleHandleA
CloseHandle
lstrcmpiA
GetLastError
MultiByteToWideChar
CreateFileW
Sleep
WideCharToMultiByte
FormatMessageA
lstrcmpA
lstrcpyA
LoadLibraryA
GlobalFree
GetProcAddress
GlobalAlloc
GetTickCount
InterlockedDecrement
InterlockedIncrement
FreeLibrary
lstrcpynA
lstrlenA
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
LoadLibraryW
GetStringTypeW
VirtualQuery
WriteConsoleW
SetStdHandle
HeapReAlloc
SetEndOfFile
GetProcessHeap
CompareStringW
SetEnvironmentVariableA
TerminateProcess

user32

DeferWindowPos
DispatchMessageA
ShowWindow
MessageBoxA
GetMenu
TranslateMessage
IsDialogMessageA
IsWindowEnabled
MessageBeep
LoadIconA
GetParent
IsZoomed
KillTimer
SetDlgItemInt
PostQuitMessage
CreateDialogParamA
LoadImageA
ReleaseDC
GetDC
BeginPaint
GetClientRect
EndPaint
wsprintfA
wsprintfW
SendMessageA
SetFocus
GetFocus
InvalidateRect
GetCursorPos
GetSysColor
EnableMenuItem
DialogBoxParamA
EndDialog
CopyRect
EndDeferWindowPos
AdjustWindowRect
UpdateWindow
GetSystemMetrics
IsIconic
BeginDeferWindowPos
SetCursor
CloseClipboard
GetDlgItemInt
SetTimer
SendDlgItemMessageA
IsClipboardFormatAvailable
LoadMenuA
GetWindowTextA
GetClipboardData
GetDlgItem
PostMessageA
OpenClipboard
SetWindowTextA
EnableWindow
DestroyMenu
GetDlgItemTextA
SetDlgItemTextA
DestroyWindow
ScreenToClient
GetWindowRect
RegisterClassExA
SetCapture
OffsetRect
SetWindowLongA
UnionRect
GetWindowLongA
CreateWindowExA
DefWindowProcA
SetWindowPos
IsWindow
ClipCursor
ReleaseCapture
LoadCursorA
MoveWindow
GetMessageA
PostThreadMessageA
PeekMessageA
TrackPopupMenu
GetSubMenu

gdi32

GetObjectA
GetDIBColorTable
RealizePalette
CreateCompatibleDC
GetStockObject
DeleteObject
CreatePalette
CreateHalftonePalette
StretchBlt
DeleteDC
SetROP2
LineTo
MoveToEx
SetBkColor
CreateFontIndirectA
SelectObject
CreateSolidBrush
SelectPalette
CreatePen

comdlg32

GetOpenFileNameA

advapi32

CloseServiceHandle
RegOpenKeyExA
RegCloseKey
UnlockServiceDatabase
RegCreateKeyExA
LockServiceDatabase
RegSetValueExA
LsaFreeMemory
RegConnectRegistryA
LsaEnumerateTrustedDomains
LsaNtStatusToWinError
OpenSCManagerA
LsaClose
RegEnumKeyExA
EnumServicesStatusExA
LsaOpenPolicy
LsaQueryInformationPolicy
RegQueryValueExA

shell32

ShellExecuteA

ws2_32

WSACleanup
recvfrom
getsockname
connect
WSAStartup
setsockopt
WSASocketA
gethostbyaddr
gethostbyname
bind
send
gethostname
WSAIoctl
listen
accept
ntohl
htonl
WSACloseEvent
inet_addr
WSAGetLastError
WSAEnumNetworkEvents
htons
WSAEventSelect
ntohs
sendto
recv
socket
WSACreateEvent
closesocket
WSAWaitForMultipleEvents

rpcrt4

RpcMgmtEpEltInqBegin
RpcStringFreeA
RpcBindingFromStringBindingA
RpcBindingFree
RpcStringBindingComposeA
RpcBindingToStringBindingA
UuidToStringA
RpcMgmtEpEltInqDone
RpcMgmtEpEltInqNextA

crypt32

CertVerifyTimeValidity
CertGetCertificateChain
CertFreeCertificateContext
CertVerifyRevocation
CertFreeCertificateChain
CertVerifyCertificateChainPolicy

comctl32

InitCommonControlsEx
ord6

Sections

.text
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
registry.txt

Sharing

General

Malware Config

Signatures

Files

04823b7150d1ea9e97d1df5b2b12a53b

Headers

DLL Characteristics

File Characteristics

Imports

netapi32

winmm

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ws2_32

rpcrt4

crypt32

comctl32

Sections

.text Size: 166KB - Virtual size: 166KB

.rdata Size: 192KB - Virtual size: 192KB

.data Size: 99KB - Virtual size: 149KB

.rsrc Size: 39KB - Virtual size: 38KB

.reloc Size: 36KB - Virtual size: 35KB

.text
Size: 166KB - Virtual size: 166KB

.rdata
Size: 192KB - Virtual size: 192KB

.data
Size: 99KB - Virtual size: 149KB

.rsrc
Size: 39KB - Virtual size: 38KB

.reloc
Size: 36KB - Virtual size: 35KB