f12422381f78b77012158a461681555393d3e0c634915380612276a193c230cc

Sharing

Copy URL Twitter E-mail

General

Target

f12422381f78b77012158a461681555393d3e0c634915380612276a193c230cc
Size

1.5MB
MD5

4962db54b9accb2b4918af4eaae5623c
SHA1

2c99f260409c52a402441416d0f4e4951fb7c2bb
SHA256

f12422381f78b77012158a461681555393d3e0c634915380612276a193c230cc
SHA512

f676e645a617ef809878e7cd93f8d655fb5c02176fdd36134e4682bd0c8b5c324a25464cd960f3b3dc7ffc144ad5d79dc6170c3be8475cd689bcd75c44f4381d
SSDEEP

12288:Mkoz/SRt81+pKuv/5T2nHpZVo99Ho9U0/+0DKEezfhPqxGWI:MXzwKuv/5T2n9wcXD4YxGN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f12422381f78b77012158a461681555393d3e0c634915380612276a193c230cc

Files

f12422381f78b77012158a461681555393d3e0c634915380612276a193c230cc
.exe windows:4 windows x86

4169bb17f1ec1d66e80bec9259c15966

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetFileType
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
InterlockedExchange
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
GetVersionExA
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
HeapReAlloc
HeapSize
GetACP
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RaiseException
GetCommandLineA
TerminateProcess
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
GetFileTime
GetFileSize
GetFileAttributesA
GetTickCount
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetThreadLocale
WritePrivateProfileStringA
SizeofResource
GetOEMCP
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalFlags
GetModuleFileNameA
GetCurrentThread
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcmpA
CloseHandle
FreeLibrary
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
FormatMessageA
LocalFree
GlobalUnlock
GetModuleHandleA
MultiByteToWideChar
InterlockedIncrement
lstrcatA
LoadLibraryA
GetProcAddress
GetProfileStringA
GlobalFree
GlobalLock
GlobalAlloc
lstrcpynA
Sleep
WideCharToMultiByte
SetLastError
OutputDebugStringA
GetLastError
GetStartupInfoA
MulDiv
GetPrivateProfileStringA
InterlockedDecrement
lstrcmpiA
FindResourceA
LoadResource
LockResource
GetCPInfo
lstrlenW
lstrlenA
GetVersion

user32

CharUpperA
RegisterClipboardFormatA
PostThreadMessageA
LockWindowUpdate
GetDCEx
ReleaseCapture
LoadCursorA
GetClassNameA
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
wvsprintfA
EndDialog
CreateDialogIndirectParamA
LoadStringA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
KillTimer
SetTimer
SetRectEmpty
GetMessageA
TranslateMessage
ValidateRect
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
ScrollWindow
SetParent
SetScrollInfo
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetKeyState
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
RegisterWindowMessageA
GetWindowPlacement
IntersectRect
EndPaint
BeginPaint
GetWindowDC
GetMenuItemInfoA
SetRect
DrawEdge
FillRect
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
ScreenToClient
DestroyMenu
wsprintfA
UpdateWindow
GetDlgCtrlID
SetWindowPos
SetWindowLongA
SetClassLongA
GetCursorPos
IsWindow
PtInRect
MessageBeep
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
GetScrollInfo
CallWindowProcA
IsIconic
DrawIcon
GetSystemMenu
LoadIconA
MessageBoxA
LoadImageA
GetIconInfo
CreateIconIndirect
DrawStateA
GetClientRect
FrameRect
InflateRect
OffsetRect
DrawFocusRect
GetWindowRect
PostMessageA
IsWindowUnicode
CopyRect
GetSysColor
SystemParametersInfoA
DestroyIcon
DrawIconEx
ReleaseDC
DrawTextA
GetDC
GetDesktopWindow
GetSystemMetrics
AppendMenuA
GetMenuItemCount
ModifyMenuA
GetMenuState
GetMenuItemID
CreatePopupMenu
CreateMenu
GetMenuStringA
GetSysColorBrush
LoadBitmapA
TabbedTextOutA
GetSubMenu
GrayStringA
EnableWindow
DestroyCursor
GetWindowLongA
SendMessageA
IsMenu
GetNextDlgTabItem
GetParent
SetCursor
InvalidateRect
UnhookWindowsHookEx
SetCapture
ClientToScreen
WindowFromPoint
GetActiveWindow

gdi32

CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
StretchDIBits
GetCharWidthA
GetTextMetricsA
GetTextColor
GetBkColor
LPtoDP
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetDeviceCaps
CreateDCA
SetWindowOrgEx
CreatePatternBrush
CreateFontA
StartDocA
StartPage
EndPage
EndDoc
AbortDoc
CreateBitmap
SetBkColor
SetTextColor
GetStockObject
Rectangle
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
PatBlt
GetObjectA
GetPixel
SetPixel
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
Ellipse
GetTextExtentPoint32A
GetTextExtentPoint32W
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
CreateFontIndirectA
CreateSolidBrush
GetTextExtentPointA
CreateDIBitmap
CreatePen
GetBkMode
CreateRectRgnIndirect

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegCloseKey
RegOpenKeyExA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA

shell32

ShellExecuteExA

comctl32

ImageList_GetIcon
ImageList_AddMasked
ImageList_Draw
ImageList_ReplaceIcon
_TrackMouseEvent
ImageList_Destroy
ImageList_Create
ImageList_GetImageCount
ord17

oledlg

ord8

ole32

CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoInitialize
CoCreateInstance
OleRun
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes

olepro32

ord253

oleaut32

SysFreeString
VariantInit
VariantCopy
VariantClear
SysAllocString
VariantChangeType
SysAllocStringLen
SysAllocStringByteLen
VariantTimeToSystemTime
SysStringLen
GetErrorInfo

wininet

InternetReadFile
FtpOpenFileA
InternetConnectA
InternetOpenA
InternetCrackUrlA
FtpGetFileSize
InternetCloseHandle

Sections

.text
Size: 324KB - Virtual size: 321KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4169bb17f1ec1d66e80bec9259c15966

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wininet

Sections

.text Size: 324KB - Virtual size: 321KB

.rdata Size: 72KB - Virtual size: 68KB

.data Size: 28KB - Virtual size: 42KB

.rsrc Size: 1.1MB - Virtual size: 1.1MB

.text
Size: 324KB - Virtual size: 321KB

.rdata
Size: 72KB - Virtual size: 68KB

.data
Size: 28KB - Virtual size: 42KB

.rsrc
Size: 1.1MB - Virtual size: 1.1MB