b07198e01b347e9192809d1827be5c308355f2871772872f0a428e0933c2aaaa

Sharing

Copy URL Twitter E-mail

General

Target

b07198e01b347e9192809d1827be5c308355f2871772872f0a428e0933c2aaaa
Size

1.8MB
MD5

dc9dae0cf61fc37ad6a6c0453fd813e4
SHA1

1681162b43a926493bde9cc5bfb320a4fc4f2d62
SHA256

b07198e01b347e9192809d1827be5c308355f2871772872f0a428e0933c2aaaa
SHA512

793589eb87b90d1f70308c25ec13c721a03cef9486609458f487a5a1d60a9b395397c8cdcabc4caba935b02c2bab2d187cbac8e71cb77b80a80543863df58a30
SSDEEP

49152:S/ngyBz9DULild5mNUakU2DDs6jmmJ1juMi0uh0AEZc8Gxx:uBz9DQi9m3kU2DDswmmJ1j80AEZc8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b07198e01b347e9192809d1827be5c308355f2871772872f0a428e0933c2aaaa

Files

b07198e01b347e9192809d1827be5c308355f2871772872f0a428e0933c2aaaa
.exe windows:5 windows x86

7c9567929fe2a23494c2c6b6b05f1e18

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

hid

HidD_FreePreparsedData
HidP_GetCaps
HidD_GetAttributes
HidD_GetPreparsedData
HidD_GetHidGuid

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
GetTimeZoneInformation
IsProcessorFeaturePresent
LCMapStringW
GetConsoleCP
GetConsoleMode
GetDriveTypeW
WriteConsoleW
GetProcessHeap
SetEnvironmentVariableA
GetTempPathW
SizeofResource
LockResource
LoadResource
FindResourceW
WritePrivateProfileStringW
MultiByteToWideChar
WaitForSingleObject
CloseHandle
GetPrivateProfileIntW
GetPrivateProfileStringW
CreateFileW
WriteFile
WideCharToMultiByte
GetLastError
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetUserDefaultUILanguage
Sleep
GetModuleFileNameW
OpenMutexW
CreateMutexW
lstrlenW
CreateThread
GlobalAlloc
GlobalLock
GlobalUnlock
FreeResource
GlobalFree
SetFileAttributesW
GetCommState
SetCommState
CreateEventW
SetEvent
ReadFile
WaitForMultipleObjects
SetLastError
GetOverlappedResult
CancelIo
FreeLibrary
OpenProcess
GetLogicalDriveStringsW
QueryDosDeviceW
GetFileAttributesW
GetFileTime
GetFullPathNameW
QueryPerformanceCounter
LoadLibraryW
GetProcAddress
GetVersionExW
GetCommTimeouts
SetCommTimeouts
PurgeComm
MulDiv
LocalFree
FormatMessageW
GlobalSize
CopyFileW
GlobalReAlloc
lstrcmpW
InterlockedExchange
LoadLibraryExW
GetLocaleInfoW
GetModuleHandleW
DeactivateActCtx
ActivateActCtx
GetSystemDefaultUILanguage
ConvertDefaultLocale
GetCurrentThreadId
GetCurrentThread
GlobalDeleteAtom
lstrcmpA
lstrcpyW
GetCurrentProcessId
lstrlenA
SetThreadPriority
ResumeThread
GlobalAddAtomW
CompareStringW
GlobalFindAtomW
CreateActCtxW
ReleaseActCtx
InterlockedDecrement
FindClose
FindNextFileW
FindFirstFileW
FileTimeToSystemTime
FileTimeToLocalFileTime
GlobalGetAtomNameW
GetThreadLocale
InterlockedIncrement
LocalAlloc
TlsGetValue
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCurrentDirectoryW
GetSystemDirectoryW
GlobalFlags
DeleteFileW
lstrcmpiW
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetVolumeInformationW
SetErrorMode
GetTempFileNameW
GetFileAttributesExW
GetFileSizeEx
GetTickCount
GetWindowsDirectoryW
GetNumberFormatW
GetProfileIntW
SearchPathW
VirtualProtect
GetUserDefaultLCID
FindResourceExW
GetCommandLineW
HeapSetInformation
GetStartupInfoW
EncodePointer
DecodePointer
HeapFree
GetSystemTimeAsFileTime
GetTimeFormatW
GetDateFormatW
HeapAlloc
HeapReAlloc
RtlUnwind
RaiseException
ExitProcess
ExitThread
HeapQueryInformation
HeapSize
VirtualAlloc
GetSystemInfo
VirtualQuery
SetStdHandle
GetFileType
SetUnhandledExceptionFilter
GetStdHandle

user32

MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
RedrawWindow
UpdateWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
ShowOwnedPopups
SetCursor
GetMessageW
TranslateMessage
DispatchMessageW
IsWindowVisible
GetKeyState
PeekMessageW
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
SetWindowsHookExW
UnhookWindowsHookEx
GetCursorPos
CallNextHookEx
GetFocus
PtInRect
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
ScreenToClient
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
SetFocus
MapVirtualKeyW
GetKeyNameTextW
ReleaseDC
GetDC
CopyRect
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetMonitorInfoW
GetDlgItem
GetNextDlgTabItem
EndDialog
GetLastActivePopup
IsWindowEnabled
MessageBoxW
RegisterWindowMessageW
SetWindowContextHelpId
GetParent
MapDialogRect
SetWindowPos
PostQuitMessage
GetDesktopWindow
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
RemovePropW
GetPropW
SetPropW
GetMenuItemCount
GetSubMenu
GetWindowLongW
PostMessageW
EnableWindow
GetClassNameW
GetClassLongW
RemoveMenu
SetClipboardData
EmptyClipboard
CloseClipboard
OpenClipboard
IsClipboardFormatAvailable
GetWindow
GetWindowThreadProcessId
GetTopWindow
SetWindowLongW
SetTimer
InvalidateRect
GetSysColor
GetCapture
IsChild
WinHelpW
SendDlgItemMessageA
SendDlgItemMessageW
DrawStateW
CheckDlgButton
GetNextDlgGroupItem
SetDlgItemTextW
IsDialogMessageW
SetWindowTextW
DrawIcon
GetClientRect
IsIconic
RegisterDeviceNotificationW
GetWindowRect
GetSystemMetrics
SendMessageW
AppendMenuW
GetSystemMenu
KillTimer
LoadIconW
MonitorFromWindow
GetMessagePos
GetMessageTime
EndDeferWindowPos
BeginDeferWindowPos
GetForegroundWindow
GetWindowTextW
IsWindow
GetWindowTextLengthW
MoveWindow
ShowWindow
InflateRect
GetMenuItemInfoW
DestroyMenu
SystemParametersInfoW
GetSysColorBrush
LoadCursorW
SetCapture
WindowFromPoint
ReleaseCapture
WaitMessage
DeleteMenu
SetRectEmpty
EnumDisplayMonitors
SetLayeredWindowAttributes
RealChildWindowFromPoint
CharNextW
OffsetRect
CopyAcceleratorTableW
IsRectEmpty
SetRect
IntersectRect
GetWindowRgn
DestroyCursor
SubtractRect
MapVirtualKeyExW
IsCharLowerW
GetDoubleClickTime
GetUpdateRect
CreateMenu
TranslateMDISysAccel
InvalidateRgn
DefMDIChildProcW
DefFrameProcW
PostThreadMessageW
CharUpperBuffW
CopyIcon
FrameRect
GetIconInfo
HideCaret
InvertRect
RegisterClipboardFormatW
LockWindowUpdate
SetCursorPos
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SetClassLongW
DestroyAcceleratorTable
SetParent
UnpackDDElParam
ReuseDDElParam
LoadImageW
LoadAcceleratorsW
InsertMenuItemW
BringWindowToTop
TranslateAcceleratorW
UnregisterClassW
CopyImage
DestroyIcon
GetMenuDefaultItem
SetMenuDefaultItem
CreatePopupMenu
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
CharUpperW
IsZoomed
GetAsyncKeyState
NotifyWinEvent
SetWindowRgn
MessageBeep
LoadMenuW
DrawMenuBar

gdi32

SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
PatBlt
CreateRectRgnIndirect
CreateDCW
CopyMetaFileW
GetDeviceCaps
CreateSolidBrush
DeleteObject
CreateRoundRectRgn
SetPixelV
GetTextFaceW
GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
LPtoDP
SetPaletteEntries
ExtFloodFill
EnumFontFamiliesExW
Rectangle
SetPixel
StretchBlt
SetDIBColorTable
OffsetRgn
GetSystemPaletteEntries
RealizePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
Polygon
Ellipse
Polyline
CreateEllipticRgn
CreatePolygonRgn
CreateDIBSection
CreateFontW
DPtoLP
GetMapMode
CombineRgn
SetRectRgn
GetRgnBox
GetTextColor
GetBkColor
GetTextCharsetInfo
EnumFontFamiliesW
GetTextMetricsW
CreateCompatibleBitmap
CreateDIBitmap
GetTextExtentPoint32W
CreateFontIndirectW
CreateHatchBrush
CreatePen
GetObjectType
SelectPalette
GetStockObject
CreateCompatibleDC
CreateBitmap
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
GetObjectW
CreateRectRgn
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueExW
RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
RegEnumKeyExW

shell32

SHGetFileInfoW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteExW
SHCreateDirectoryExW
DragQueryFileW
ShellExecuteW
SHAppBarMessage
DragFinish

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW
StrStrIW
PathFileExistsW
PathRemoveFileSpecW

ole32

OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoRegisterMessageFilter
CoRevokeClassObject
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitializeEx
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoUninitialize
CoInitialize
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CoCreateInstance
CreateStreamOnHGlobal

oleaut32

OleCreateFontIndirect
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysFreeString
SysAllocString
SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
VarBstrFromDate

oledlg

OleUIBusyW

gdiplus

GdipAlloc
GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdiplusStartup
GdiplusShutdown
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageRectI
GdipLoadImageFromStream
GdipFree
GdipCloneImage
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdipSetInterpolationMode
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize

setupapi

SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiOpenDeviceInterfaceW
SetupDiGetDeviceInterfaceDetailW
SetupDiDeleteDeviceInterfaceData

visa32

ord129
ord131
ord132
ord257
ord256
ord141

psapi

GetProcessImageFileNameW

winmm

timeGetTime
PlaySoundW
timeSetEvent

oleacc

CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 316KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7c9567929fe2a23494c2c6b6b05f1e18

Headers

DLL Characteristics

File Characteristics

Imports

hid

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

setupapi

visa32

psapi

winmm

oleacc

imm32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 316KB - Virtual size: 316KB

.data Size: 26KB - Virtual size: 58KB

.rsrc Size: 85KB - Virtual size: 84KB

.reloc Size: 172KB - Virtual size: 172KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 316KB - Virtual size: 316KB

.data
Size: 26KB - Virtual size: 58KB

.rsrc
Size: 85KB - Virtual size: 84KB

.reloc
Size: 172KB - Virtual size: 172KB