584f9a10ed638d989cee954bc83aedee0f8fad7db9d6d2449581654017816b39

Sharing

Copy URL Twitter E-mail

General

Target

584f9a10ed638d989cee954bc83aedee0f8fad7db9d6d2449581654017816b39
Size

2.2MB
MD5

65e7c6d83c4db6a6ad0c23d142a034ce
SHA1

0cbcf527460edf3055ae95af0df0328569236a1b
SHA256

584f9a10ed638d989cee954bc83aedee0f8fad7db9d6d2449581654017816b39
SHA512

0414c5327e4f45ab30f7b3443d6541859775c33d13f99f9bd4ce505b3057a610ae41bc332d08d4e218eb5cd3a2826e3b9b3c44225f595166b163c2bb84152ec2
SSDEEP

49152:QkTFR3S/xcNmGEkSRnY9Opz/gEAMTrGOiuxu+I449003aA+T6vguf2:3cVGERRkEz4EAMTrGRg8449Z3aA+T6Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
584f9a10ed638d989cee954bc83aedee0f8fad7db9d6d2449581654017816b39

Files

584f9a10ed638d989cee954bc83aedee0f8fad7db9d6d2449581654017816b39
.exe windows:5 windows x86

afd3fcd266804341f4f489469e8e80d4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileExW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
GetDriveTypeW
LCMapStringW
GetStringTypeW
GetACP
ExitProcess
GetFileType
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
VirtualQuery
VirtualAlloc
GetSystemInfo
RtlUnwind
OutputDebugStringW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
GetCPInfo
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
GetStdHandle
LoadLibraryA
LockResource
GetLastError
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LoadResource
SizeofResource
GetModuleHandleW
FindResourceW
GetPrivateProfileStringW
MultiByteToWideChar
CloseHandle
CreateMutexW
GetModuleFileNameW
Sleep
ReadFile
GetSystemTime
lstrcpyW
CreateEventW
GetCommandLineW
WritePrivateProfileStringW
CreateDirectoryW
RemoveDirectoryW
CreateFileW
DeleteFileW
CopyFileW
DecodePointer
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
RaiseException
SetLastError
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
GlobalFree
LocalFree
MulDiv
FormatMessageW
WideCharToMultiByte
FileTimeToLocalFileTime
FindClose
FindFirstFileW
FindNextFileW
GetProcAddress
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
OutputDebugStringA
EncodePointer
GetCurrentThreadId
GetSystemDirectoryW
FreeLibrary
FreeResource
GetModuleHandleA
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
InterlockedExchange
LoadLibraryW
GlobalAddAtomW
GlobalFindAtomW
GetCurrentProcessId
SetEvent
WaitForSingleObject
SetThreadPriority
SuspendThread
ResumeThread
GetCurrentThread
GetVersionExW
lstrcmpA
GetPrivateProfileIntW
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetVolumeInformationW
LockFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
lstrcmpiW
GetThreadLocale
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GlobalGetAtomNameW
GlobalFlags
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetCurrentDirectoryW
VerSetConditionMask
VerifyVersionInfoW
GetFileAttributesW
GetFileAttributesExW
GetFileSizeEx
GetFileTime
SetErrorMode
FindResourceExW
GetWindowsDirectoryW
SearchPathW
GetTickCount
GetProfileIntW
GetTempFileNameW
GetTempPathW
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW

user32

SetLayeredWindowAttributes
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
IsRectEmpty
SetMenuDefaultItem
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
WindowFromPoint
MessageBeep
DeleteMenu
KillTimer
SetTimer
ReleaseCapture
SetCapture
IsZoomed
TrackMouseEvent
GetAsyncKeyState
OffsetRect
SetRectEmpty
SendDlgItemMessageA
CopyImage
RealChildWindowFromPoint
LoadCursorW
GetSysColorBrush
MapVirtualKeyW
GetKeyNameTextW
CharUpperW
MapDialogRect
SetWindowContextHelpId
SetCursor
ShowOwnedPopups
PostQuitMessage
TranslateMessage
GetMessageW
GetMenuItemInfoW
DestroyMenu
IntersectRect
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
EnumDisplayMonitors
MoveWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
GetWindowLongW
EqualRect
MapWindowPoints
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
LoadAcceleratorsW
GetScrollRange
SetScrollRange
GetScrollPos
UnpackDDElParam
ReuseDDElParam
GetClientRect
CopyRect
InflateRect
ShowWindow
RegisterDeviceNotificationW
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
WaitMessage
CharNextW
CopyAcceleratorTableW
SetRect
GetNextDlgGroupItem
LoadImageW
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawIconEx
RegisterClipboardFormatW
DrawEdge
DrawFrameControl
DrawFocusRect
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
SetClassLongW
SetParent
CharUpperBuffW
LockWindowUpdate
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
IsIconic
GetSystemMetrics
LoadMenuW
GetSystemMenu
AppendMenuW
DrawIcon
SetForegroundWindow
InvalidateRgn
GetCursorPos
ModifyMenuW
LoadIconW
SystemParametersInfoW
DrawStateW
DestroyIcon
UnregisterClassW
GetMenuStringW
GetMenuState
InsertMenuW
RemoveMenu
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetWindowDC
BeginPaint
EndPaint
ClientToScreen
ScreenToClient
GetSysColor
FillRect
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
RegisterWindowMessageW
DispatchMessageW
PeekMessageW
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
SetCursorPos
CopyIcon
FrameRect
PostThreadMessageW
CreateAcceleratorTableW
DestroyAcceleratorTable
BringWindowToTop
InsertMenuItemW
TranslateAcceleratorW
GetClassInfoExW
CreateWindowExW
IsWindow
IsMenu
IsChild
DestroyWindow
SetWindowPos
GetWindowPlacement
GetIconInfo
HideCaret
InvertRect
IsClipboardFormatAvailable
GetDoubleClickTime
SendMessageW
PostMessageW
EnableWindow
GetDC
ReleaseDC
SetWindowRgn
InvalidateRect
GetWindowRect
PtInRect
GetParent
FindWindowW
SetWindowsHookExW
UnhookWindowsHookEx
UpdateWindow
SetWindowLongW
GetSubMenu
GetMenuItemID
GetMenuItemCount
GetWindowRgn
SubtractRect
CreateMenu
GetUpdateRect
GetComboBoxInfo
MapVirtualKeyExW
IsCharLowerW
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
ShowScrollBar
DestroyCursor

gdi32

GetTextFaceW
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
SetPaletteEntries
ExtFloodFill
LPtoDP
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
Polyline
Polygon
CreatePolygonRgn
Ellipse
CreateEllipticRgn
OffsetRgn
SetPixel
RealizePalette
EnumFontFamiliesExW
GetRgnBox
GetTextColor
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
CreateCompatibleBitmap
CreateRoundRectRgn
GetTextMetricsW
DPtoLP
SetRectRgn
PatBlt
GetMapMode
CreateRectRgnIndirect
CreateFontIndirectW
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutW
MoveToEx
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateBitmap
CopyMetaFileW
TextOutW
GetTextExtentPoint32W
GetBkColor
GetDIBColorTable
GetDeviceCaps
CreateDCW
Rectangle
CreateSolidBrush
GetObjectW
SetDIBColorTable
CreateDIBSection
StretchBlt
SelectObject
GetTextExtentPointW
GetPixel
DeleteObject
DeleteDC
CreateRectRgn
CreateCompatibleDC
CombineRgn
BitBlt

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

SystemFunction036
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegCloseKey

shell32

DragFinish
SHGetFileInfoW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHBrowseForFolderW
Shell_NotifyIconW
DragQueryFileW
SHAppBarMessage
ShellExecuteW

comctl32

ImageList_GetIcon
ImageList_GetIconSize
ImageList_ReplaceIcon
InitCommonControlsEx

shlwapi

PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW
StrFormatKBSizeW

uxtheme

GetWindowTheme
GetThemePartSize
IsAppThemed
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsThemeBackgroundPartiallyTransparent
GetThemeSysColor

ole32

IsAccelerator
CoRevokeClassObject
CoRegisterMessageFilter
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc

oleaut32

VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
SafeArrayDestroy
SysAllocString
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
LoadTypeLi
SysStringLen
VariantTimeToSystemTime
SystemTimeToVariantTime

oledlg

OleUIBusyW

gdiplus

GdipGetImageHeight
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromStream
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipAlloc
GdipFree
GdiplusStartup
GdiplusShutdown
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipBitmapLockBits

hid

HidP_GetCaps
HidD_GetHidGuid
HidD_GetPreparsedData
HidD_FreePreparsedData
HidD_GetFeature
HidD_SetFeature
HidD_GetAttributes

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

winmm

PlaySoundW

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 351KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afd3fcd266804341f4f489469e8e80d4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

hid

setupapi

oleacc

winmm

imm32

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 351KB - Virtual size: 350KB

.data Size: 23KB - Virtual size: 171KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 175KB - Virtual size: 174KB

.reloc Size: 136KB - Virtual size: 135KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 351KB - Virtual size: 350KB

.data
Size: 23KB - Virtual size: 171KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 175KB - Virtual size: 174KB

.reloc
Size: 136KB - Virtual size: 135KB