8ddd885373106111998277eea8148c6e1608b0f3518492f3457976500b6101c5

Sharing

Copy URL Twitter E-mail

General

Target

8ddd885373106111998277eea8148c6e1608b0f3518492f3457976500b6101c5
Size

6.5MB
MD5

02d807f7c56457a2e39c6497de5296e9
SHA1

55511314d3f2f6356453ccc13b19cb39caf0a44f
SHA256

8ddd885373106111998277eea8148c6e1608b0f3518492f3457976500b6101c5
SHA512

f1563096621a9445df42b49a2633c3998d56d99be09692b53cc3e5504c1fb2ae9783102667f3fd59100b5753ebfef1d71fc9a74c1d2e4094fa0915675b04aff7
SSDEEP

98304:rLh32jbLCPAvSHwCeVUnJRZhppP0yl/0NmD4y7eUaR16zYhEg8ThoRXBWkvY0PtZ:Hh2TX9u0zPUKoz+hRWkxPtZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ddd885373106111998277eea8148c6e1608b0f3518492f3457976500b6101c5

Files

8ddd885373106111998277eea8148c6e1608b0f3518492f3457976500b6101c5
.exe windows x86

d65cf84c4f2c15c6d4be3cbca2b523c6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
FindNextFileW
FindFirstFileExW
ReadConsoleW
GetTimeZoneInformation
SetFilePointerEx
GetConsoleMode
GetConsoleCP
GetStdHandle
GetSystemTimeAsFileTime
GetFileType
SetStdHandle
FreeLibraryAndExitThread
ExitThread
VirtualQuery
GetSystemInfo
GetCommandLineW
GetCommandLineA
GetModuleHandleExW
RtlUnwind
GetStringTypeW
LCMapStringW
OutputDebugStringW
CreateFileW
WriteConsoleW
SetEnvironmentVariableW
QueryPerformanceFrequency
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
CreateEventW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FindResourceExW
GetTempFileNameA
GetWindowsDirectoryA
SearchPathA
GetProfileIntA
SetErrorMode
GetFileTime
GetFileSizeEx
InitializeSListHead
GetFileAttributesExA
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
VirtualProtect
GetTempPathA
GetACP
GetFileAttributesA
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryA
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetThreadLocale
GetVolumeInformationA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
LocalAlloc
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetSystemDirectoryW
EncodePointer
GlobalAddAtomA
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalSize
VerifyVersionInfoA
lstrcpyA
VerSetConditionMask
GlobalUnlock
FreeResource
CompareStringA
lstrcmpA
GlobalDeleteAtom
GlobalLock
GlobalAlloc
LoadLibraryW
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
GetVersionExA
GetCurrentThread
OutputDebugStringA
GetProcessHeap
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
HeapFree
VirtualQueryEx
VirtualAlloc
FindResourceA
VirtualFree
WritePrivateProfileStringA
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
TerminateProcess
WaitForSingleObject
WriteProcessMemory
VirtualAllocEx
Thread32Next
VirtualFreeEx
ResumeThread
SetThreadContext
GetThreadContext
SuspendThread
OpenThread
OpenProcess
CreateProcessA
Process32Next
Process32First
CreateToolhelp32Snapshot
ExitProcess
GlobalFree
MultiByteToWideChar
FreeLibrary
CreateEventA
GetProcAddress
LoadLibraryA
GetModuleHandleA
GetTickCount
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentProcessId
DeviceIoControl
CreateFileA
GetModuleFileNameA
CreateMutexA
SetLastError
SetThreadPriority
CreateThread
DeleteCriticalSection
InitializeCriticalSection
SetEvent
GetLastError
ResetEvent
LeaveCriticalSection
EnterCriticalSection
Sleep
CloseHandle
HeapQueryInformation

user32

CharNextA
RealChildWindowFromPoint
DeleteMenu
CopyImage
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
MapVirtualKeyA
GetKeyNameTextA
CharUpperA
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
GetTopWindow
GetClassLongA
EqualRect
AdjustWindowRectEx
GetWindowTextLengthA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
RegisterClassA
GetMessageTime
GetMessagePos
InvalidateRect
UpdateWindow
SetCursor
ShowOwnedPopups
ValidateRect
GetKeyState
GetMessageA
CopyAcceleratorTableA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
PtInRect
GetCursorPos
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
LockWindowUpdate
DrawTextA
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
GetLastActivePopup
MessageBoxA
EnumDisplayMonitors
GetMonitorInfoA
LoadCursorW
LoadCursorA
CopyRect
DestroyMenu
EnableScrollBar
GetDoubleClickTime
GetIconInfo
CopyIcon
MsgWaitForMultipleObjects
PeekMessageA
TranslateMessage
SetRectEmpty
SetLayeredWindowAttributes
GetClassInfoA
DefWindowProcA
GetDesktopWindow
GetWindowLongA
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamA
DestroyWindow
DrawIconEx
IsRectEmpty
OffsetRect
InflateRect
FillRect
DrawFocusRect
GetSysColorBrush
GetSysColor
MapWindowPoints
RedrawWindow
InvalidateRgn
SetRect
IntersectRect
GetNextDlgGroupItem
MessageBeep
SetParent
MonitorFromPoint
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DestroyIcon
LoadImageA
LoadImageW
SetWindowRgn
DrawStateA
TrackMouseEvent
IsZoomed
GetAsyncKeyState
LoadMenuW
GetSystemMenu
NotifyWinEvent
SetCursorPos
UnionRect
LoadBitmapW
DispatchMessageA
EnableWindow
LoadIconW
SendMessageA
SetTimer
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
KillTimer
SetWindowLongA
UnregisterHotKey
CallWindowProcA
GetWindowThreadProcessId
EnumWindows
GetDlgCtrlID
EnumChildWindows
GetClassNameA
GetWindowTextA
IsWindow
IsWindowEnabled
PostMessageA
GetKeyboardLayout
FindWindowA
GetForegroundWindow
AttachThreadInput
SetForegroundWindow
BringWindowToTop
SwitchToThisWindow
RegisterHotKey
SystemParametersInfoA
GetWindowRect
UnregisterClassA
PostQuitMessage
SetWindowPos
SetWindowContextHelpId
GetParent
GetWindow
MapDialogRect
RegisterWindowMessageA
DrawEdge
DrawFrameControl
GetMenuItemInfoA
GetMenuDefaultItem
SetMenuDefaultItem
ModifyMenuA
IsWindowVisible
GetFocus
CreatePopupMenu
DestroyAcceleratorTable
SetClassLongA
GetUpdateRect
GetWindowRgn
DestroyCursor
InvertRect
HideCaret
CreateMenu
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
MapVirtualKeyExA
IsCharLowerA
PostThreadMessageA
IsClipboardFormatAvailable
FrameRect
CharUpperBuffA
SubtractRect
RegisterClipboardFormatA
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
UpdateLayeredWindow
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
DrawTextExA

gdi32

EnumFontFamiliesA
GetDeviceCaps
GetStockObject
GetTextCharsetInfo
CopyMetaFileA
CreateDCA
CreateBitmap
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
TextOutA
DeleteObject
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetRgnBox
GetMapMode
SetRectRgn
DPtoLP
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExA
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceA
CreatePatternBrush
CreatePen
CreateFontIndirectA
CreateDIBitmap
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetTextMetricsA
Polyline
Polygon
CreatePolygonRgn
ExtTextOutA
PatBlt
GetTextExtentPoint32A
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
CombineRgn
GetObjectA
DeleteDC

msimg32

AlphaBlend
TransparentBlt

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegDeleteKeyA
CreateServiceA
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegDeleteValueA
OpenSCManagerA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
DeleteService
ControlService
StartServiceA
OpenServiceA
CloseServiceHandle

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetDesktopFolder
SHGetFileInfoA
SHAppBarMessage
DragQueryFileA
ShellExecuteA
DragFinish
SHGetMalloc

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionA
PathStripToRootA
StrFormatKBSizeA
PathRemoveFileSpecW
PathIsUNCA
PathFindFileNameA

uxtheme

GetThemeSysColor
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeParentBackground
IsAppThemed
DrawThemeText
GetWindowTheme
GetThemePartSize
IsThemeBackgroundPartiallyTransparent

ole32

OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
RegisterDragDrop
RevokeDragDrop
OleLockRunning
CoLockObjectExternal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoInitializeEx
CoRevokeClassObject
CoRegisterMessageFilter
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoDisconnectObject
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
CoInitialize
OleGetClipboard

oleaut32

OleCreateFontIndirect
SysAllocString
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
LoadTypeLi
VariantChangeType
VariantCopy
VarBstrFromDate
VariantClear
VariantInit
SysStringLen
SysFreeString
SysAllocStringByteLen
GetErrorInfo
SysAllocStringLen

oledlg

ord8

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipDrawImageRectI
GdipCreateBitmapFromScan0
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage

ws2_32

connect
WSARecv
WSAGetOverlappedResult
WSAWaitForMultipleEvents
WSASend
closesocket
WSACloseEvent
WSAStartup
WSAGetLastError
WSACleanup
gethostname
gethostbyname
inet_ntoa
WSACreateEvent
WSAResetEvent
WSASocketA
inet_addr
htons
shutdown

iphlpapi

GetAdaptersInfo

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

msvcrt

__dllonexit

psapi

GetMappedFileNameW

Sections

.text
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d65cf84c4f2c15c6d4be3cbca2b523c6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

iphlpapi

oleacc

imm32

winmm

msvcrt

psapi

Sections

.text Size: 5.1MB - Virtual size: 5.1MB

.data Size: 1.3MB - Virtual size: 1.3MB

.idata Size: 14KB - Virtual size: 16KB

.rsrc Size: 81KB - Virtual size: 84KB

.data Size: 4KB - Virtual size: 4KB

.text
Size: 5.1MB - Virtual size: 5.1MB

.data
Size: 1.3MB - Virtual size: 1.3MB

.idata
Size: 14KB - Virtual size: 16KB

.rsrc
Size: 81KB - Virtual size: 84KB

.data
Size: 4KB - Virtual size: 4KB