653d9dbf848cec865e0af053c0b9cd130d883b722b33da7d6f6854e7883eae20

Sharing

Copy URL Twitter E-mail

General

Target

653d9dbf848cec865e0af053c0b9cd130d883b722b33da7d6f6854e7883eae20
Size

808KB
MD5

840831b42c5d1dd8da16f0505c39529d
SHA1

5aac35060284529b111b9c1639f6c934768c7215
SHA256

653d9dbf848cec865e0af053c0b9cd130d883b722b33da7d6f6854e7883eae20
SHA512

423e6d424fbb4615926239d00d45f91ccdb7a3d5d65b6674883baf89552847308a2a1f79e4ca54ebfd68a07b61b53773c967378849972707ce15dcf8ff7fe110
SSDEEP

24576:JBpqiIAuM2nqsWiGj0wfw4Rbj3brMAZZW2oY314:fzekFRH3PMD2o84

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
653d9dbf848cec865e0af053c0b9cd130d883b722b33da7d6f6854e7883eae20

Files

653d9dbf848cec865e0af053c0b9cd130d883b722b33da7d6f6854e7883eae20
.exe windows:4 windows x86

4fbe6855fa8602aaec250f26c6d10ebc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA
RegOpenKeyA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCloseKey

comctl32

ord17

dsound

ord1

gdi32

SetBkMode
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
IntersectClipRect
RestoreDC
SetBkColor
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
GetObjectA
SaveDC
CreateBitmap
DeleteObject
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetTextExtentPointA
CreateDIBitmap
GetStockObject

kernel32

GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
SetErrorMode
GlobalFlags
GetProcessVersion
GetCPInfo
GetOEMCP
RtlUnwind
RaiseException
ExitProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapFree
SetEnvironmentVariableA
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapReAlloc
GetACP
HeapSize
TlsFree
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
CompareStringA
CompareStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalFree
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalUnlock
MulDiv
GetModuleHandleA
SetLastError
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetCurrentThreadId
GetModuleFileNameA
lstrcmpiA
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
SetEndOfFile
UnlockFile
GetProfileStringA
LockFile
FlushFileBuffers
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
LocalFree
MultiByteToWideChar
lstrlenA
InterlockedDecrement
InterlockedIncrement
SetFilePointer
GetDriveTypeA
GetFileAttributesA
SetFileAttributesA
WideCharToMultiByte
CreateFileA
GetFileSize
FindResourceA
SizeofResource
LoadResource
LockResource
QueryPerformanceFrequency
QueryPerformanceCounter
GetWindowsDirectoryA
CreateMutexA
GetLastError
GetVersionExA
LoadLibraryA
GetProcAddress
FreeLibrary
Sleep
CloseHandle

shell32

ShellExecuteA

user32

GetTopWindow
AdjustWindowRectEx
GetSysColor
MapWindowPoints
SendDlgItemMessageA
IsDialogMessageA
SetWindowTextA
LoadStringA
GetClassNameA
PtInRect
GetSysColorBrush
InflateRect
DestroyMenu
InvalidateRect
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
GetWindowPlacement
GetWindowRect
CopyRect
EndDialog
SetActiveWindow
CreateDialogIndirectParamA
GrayStringA
DrawTextA
TabbedTextOutA
GetWindowDC
ClientToScreen
ScreenToClient
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
PostQuitMessage
CharUpperA
wsprintfA
UnhookWindowsHookEx
CharToOemBuffA
OemToCharBuffA
LoadImageA
BeginPaint
EndPaint
GetCursorPos
SetCursor
PostMessageA
IsIconic
GetClientRect
DrawIcon
SendMessageA
GetDlgItem
LoadIconA
SystemParametersInfoA
EnableWindow
PeekMessageA
TranslateMessage
DispatchMessageA
MsgWaitForMultipleObjects
MessageBoxA
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
CharNextA
IsWindowUnicode
ShowCursor
ChangeDisplaySettingsA
EnumDisplaySettingsA
GetDC
ReleaseDC
IsWindow
DestroyWindow
DefWindowProcA
LoadCursorA
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
OffsetRect
GetMenu
RegisterClassExA
GetClassInfoExA
GetSystemMetrics
CreateWindowExA
ShowWindow
UpdateWindow
SetForegroundWindow
SetFocus
HideCaret
UnregisterClassA
GetActiveWindow

winmm

timeGetTime

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

comdlg32

GetFileTitleA

d3d8

Direct3DCreate8

Sections

.text
Size: 289KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 91KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 374KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4fbe6855fa8602aaec250f26c6d10ebc

Headers

File Characteristics

Imports

advapi32

comctl32

dsound

gdi32

kernel32

shell32

user32

winmm

winspool.drv

comdlg32

d3d8

Sections

.text Size: 289KB - Virtual size: 292KB

.data Size: 45KB - Virtual size: 48KB

Size: 91KB - Virtual size: 128KB

.rsrc Size: 374KB - Virtual size: 376KB

.idata Size: 6KB - Virtual size: 8KB

.text
Size: 289KB - Virtual size: 292KB

.data
Size: 45KB - Virtual size: 48KB

.rsrc
Size: 374KB - Virtual size: 376KB

.idata
Size: 6KB - Virtual size: 8KB