60cc8c2e73995caa774ae6121d75f283bbb1f242406345feddf33601bc7a8138

Sharing

Copy URL Twitter E-mail

General

Target

60cc8c2e73995caa774ae6121d75f283bbb1f242406345feddf33601bc7a8138
Size

3.5MB
MD5

700aab10a48e6feb7a197a1155522555
SHA1

712e52455fd47485f5e5dd113bf0e650ca517392
SHA256

60cc8c2e73995caa774ae6121d75f283bbb1f242406345feddf33601bc7a8138
SHA512

b1b2886836e1581db5a1d7f8ce562b49d2a38d169591d79569358425e1594a51aec326eefe72df2cb662472afbb941061ebe251a8b54456d9ec8b1a6f7379070
SSDEEP

49152:PxrFFqXsSYZpXMmetx/Aa2Og1Pk7NRLHdCeSj+H1RYjp5x7URPmQndib9i7bfC+y:/SCs6wPm6YZi7bfBA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
60cc8c2e73995caa774ae6121d75f283bbb1f242406345feddf33601bc7a8138

Files

60cc8c2e73995caa774ae6121d75f283bbb1f242406345feddf33601bc7a8138
.exe windows:6 windows x64

b6f93e35f0095398708d9449332d265d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ws2_32

getsockopt
select
__WSAFDIsSet
send
listen
ntohs
inet_ntop
WSAAddressToStringA
WSACloseEvent
recv
setsockopt
gethostbyname
ntohl
recvfrom
sendto
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
connect
inet_addr
WSAEventSelect
WSACreateEvent
closesocket
shutdown
bind
htons
htonl
socket
WSACleanup
freeaddrinfo
ioctlsocket
inet_ntoa
getaddrinfo
gethostname
accept
WSAStartup

kernel32

GetFullPathNameW
GetVolumeInformationW
LockFile
UnlockFile
DuplicateHandle
lstrcmpiW
lstrcmpA
SetThreadPriority
SuspendThread
ResumeThread
GetVersionExW
GetCurrentThread
GetProfileIntW
GlobalGetAtomNameW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
GlobalAddAtomW
LocalReAlloc
GetLocaleInfoW
GetSystemDefaultUILanguage
GlobalFlags
VirtualProtect
SetErrorMode
FindResourceExW
GetWindowsDirectoryW
GetTempPathW
SearchPathW
GetTempFileNameW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
WaitForSingleObjectEx
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
RtlUnwindEx
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleExW
FreeResource
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
GetModuleHandleW
FileTimeToLocalFileTime
MulDiv
DeactivateActCtx
GetLocalTime
GetProcessHeap
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
HeapFree
lstrcmpW
GetCommandLineW
GetCurrentDirectoryW
OutputDebugStringW
QueryPerformanceCounter
QueryPerformanceFrequency
ResetEvent
GetTimeZoneInformation
ReleaseMutex
SetEvent
CreateEventW
WaitForSingleObject
CreateMutexW
FormatMessageA
SetLastError
FlushFileBuffers
SetFilePointerEx
GetFileSizeEx
GetFileAttributesW
GetFileTime
CompareStringW
QueryActCtxW
TerminateProcess
CreateDirectoryW
LocalFree
ActivateActCtx
CreateActCtxW
GlobalFindAtomW
FormatMessageW
GetFileAttributesExW
lstrlenW
TerminateThread
GetExitCodeThread
InitializeCriticalSection
TryEnterCriticalSection
MultiByteToWideChar
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileW
CreateFileA
GlobalUnlock
FindActCtxSectionStringW
SwitchToThread
LCMapStringW
GetStringTypeW
GetCPInfo
GlobalLock
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GlobalSize
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetDriveTypeW
GlobalFree
GlobalAlloc
GetTickCount
FindClose
FindFirstFileW
CloseHandle
SetEndOfFile
WriteFile
SetFilePointer
ReadFile
GetFileSize
WideCharToMultiByte
WritePrivateProfileStringW
GetModuleFileNameW
GetUserDefaultUILanguage
GetPrivateProfileIntA
Sleep
CreateFileW
FreeLibrary
GetProcAddress
LoadLibraryW
lstrcpyW
VerifyVersionInfoW
VerSetConditionMask
CopyFileW
DeleteFileW
FindResourceW
LoadResource
LockResource
SizeofResource
GetLastError
WritePrivateProfileStringA
GetTickCount64
GetPrivateProfileStringW
GetPrivateProfileIntW
GetPrivateProfileStringA
RtlPcToFileHeader
GetConsoleOutputCP
GetConsoleMode
ReadConsoleW
SetEnvironmentVariableW
SetCurrentDirectoryW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetCommandLineA
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualQuery
SetStdHandle
GetFileType
GetStdHandle
ExitProcess
IsValidCodePage
GetACP
GetOEMCP
FindFirstFileExW
GetEnvironmentStringsW
FreeEnvironmentStringsW
WriteConsoleW
LocalAlloc

user32

GetKeyboardLayout
ToUnicodeEx
FrameRect
CopyIcon
SetCursorPos
DrawFrameControl
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetParent
SetClassLongPtrW
InvertRect
HideCaret
GetIconInfo
DrawIconEx
GetNextDlgGroupItem
PostThreadMessageW
WaitMessage
UnionRect
EnableScrollBar
UpdateLayeredWindow
SetMenuDefaultItem
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
SetWindowRgn
DeleteMenu
IsZoomed
EnumDisplayMonitors
SetLayeredWindowAttributes
DestroyIcon
MapDialogRect
GetAsyncKeyState
RealChildWindowFromPoint
CopyImage
GetSysColorBrush
IsRectEmpty
SetCapture
GetMenuItemInfoW
DestroyMenu
ShowOwnedPopups
RegisterClipboardFormatW
PostQuitMessage
DrawStateW
SetRectEmpty
SendDlgItemMessageA
GetDesktopWindow
GetNextDlgTabItem
CreateDialogIndirectParamW
GetActiveWindow
GetMessageW
MapVirtualKeyW
GetKeyNameTextW
InflateRect
CharUpperW
WindowFromPoint
GetCursorPos
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IsDialogMessageW
IsDlgButtonChecked
CheckDlgButton
MoveWindow
ShowWindow
LoadMenuW
GetWindowThreadProcessId
IsWindowEnabled
ClientToScreen
GetWindowDC
GetDC
GetKeyboardState
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetTopWindow
GetClassNameW
GetClassLongPtrW
SetWindowLongW
GetWindowLongW
EqualRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowTextLengthW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
DefMDIChildProcW
EndPaint
BeginPaint
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
RemoveMenu
InsertMenuW
GetMenuItemID
GetMenuState
GetMenuStringW
UnregisterClassW
ReleaseCapture
GetSubMenu
GetMenuItemCount
ModifyMenuW
LockWindowUpdate
DrawIcon
GetSystemMenu
GetLastActivePopup
BringWindowToTop
IsIconic
SetForegroundWindow
MessageBeep
LoadAcceleratorsW
CreateAcceleratorTableW
DestroyAcceleratorTable
CopyAcceleratorTableW
CharUpperBuffW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
GetComboBoxInfo
IsCharLowerW
MapVirtualKeyExW
GetDoubleClickTime
IsClipboardFormatAvailable
GetUpdateRect
IsWindowVisible
GetDlgItemTextA
SystemParametersInfoW
DispatchMessageW
GetWindowRgn
DestroyCursor
CreateMenu
SubtractRect
MonitorFromWindow
TranslateMDISysAccel
TranslateMessage
PeekMessageW
LoadCursorW
SetCursor
MessageBoxW
AppendMenuW
IntersectRect
SetDlgItemTextW
KillTimer
SetTimer
SendDlgItemMessageW
LoadIconW
GetWindowTextW
DrawEdge
DrawFocusRect
DefFrameProcW
EndDialog
GetWindowLongPtrW
GetDlgItemTextW
SetFocus
SetWindowTextW
GetDlgItem
SetWindowLongPtrW
DialogBoxIndirectParamW
IsWindow
GetWindowRect
PtInRect
SetRect
GetMonitorInfoW
MonitorFromPoint
GetSystemMetrics
LoadImageW
LoadBitmapW
OffsetRect
GetParent
SendMessageW
FillRect
CopyRect
GetSysColor
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
GetClientRect
TrackMouseEvent
EnableWindow
InvalidateRect
PostMessageW
FindWindowW
ValidateRect
DrawMenuBar
ReleaseDC

gdi32

SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SetRectRgn
DPtoLP
CreateCompatibleDC
SelectObject
GetTextMetricsW
CreateDIBitmap
SetBkMode
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
CreateDIBSection
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
SetPixel
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
LPtoDP
GetRgnBox
OffsetRgn
RoundRect
ExtFloodFill
SetPaletteEntries
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
SetPixelV
GetTextFaceW
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
MoveToEx
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
CreateCompatibleBitmap
PatBlt
GetObjectW
Polyline
RestoreDC
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateBitmap
GetDeviceCaps
CreateDCW
CopyMetaFileW
CreateFontIndirectW
Polygon
Rectangle
GetTextExtentPoint32W
GetStockObject
SetBkColor
SetTextColor
DeleteObject
CreateRectRgn
FillRgn
GetWindowOrgEx
CreateSolidBrush
CombineRgn
CreateRectRgnIndirect
DeleteDC
GetTextColor
StretchBlt
BitBlt
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetOpenFileNameW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegDeleteKeyW
RegCloseKey
RegEnumKeyExW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegFlushKey
RegCreateKeyExW
RegEnumValueW
RegOpenKeyExW
RegQueryValueExW

shell32

DragFinish
ShellExecuteW
ShellExecuteExW
SHGetFileInfoW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHBrowseForFolderW
DragQueryFileW
SHAppBarMessage

shlwapi

PathFileExistsW
PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

GetCurrentThemeName
IsAppThemed
DrawThemeText
DrawThemeParentBackground
OpenThemeData
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemeSysColor
GetThemePartSize
GetThemeColor
DrawThemeBackground
CloseThemeData

ole32

CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CoUninitialize
CoInitialize
CoCreateGuid
OleDuplicateData
ReleaseStgMedium
CoInitializeEx
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
OleFlushClipboard
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
OleIsCurrentClipboard
DoDragDrop
CoDisconnectObject
CoRevokeClassObject
CoRegisterMessageFilter
CreateStreamOnHGlobal
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
IsAccelerator

oleaut32

LoadTypeLi
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocStringLen
VariantCopy
VariantClear
VariantChangeType
SysFreeString
SysAllocString
VariantInit

oledlg

OleUIBusyW

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize

libcurl

curl_easy_getinfo
curl_slist_free_all
curl_slist_append
curl_easy_send2
curl_easy_perform
curl_mime_free
curl_easy_cleanup
curl_easy_init
curl_easy_setopt

winmm

PlaySoundW

wsdapi

WSDXMLCreateContext
WSDCreateDiscoveryProvider

iphlpapi

SendARP

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 769KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gehcont
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 270KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6f93e35f0095398708d9449332d265d

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

libcurl

winmm

wsdapi

iphlpapi

oleacc

imm32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 769KB - Virtual size: 768KB

.data Size: 31KB - Virtual size: 63KB

.pdata Size: 103KB - Virtual size: 102KB

.gehcont Size: 512B - Virtual size: 24B

.rsrc Size: 270KB - Virtual size: 270KB

.reloc Size: 65KB - Virtual size: 65KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 769KB - Virtual size: 768KB

.data
Size: 31KB - Virtual size: 63KB

.pdata
Size: 103KB - Virtual size: 102KB

.gehcont
Size: 512B - Virtual size: 24B

.rsrc
Size: 270KB - Virtual size: 270KB

.reloc
Size: 65KB - Virtual size: 65KB