8cdfba29dfcb862646b9115f8b43d5e92a9f98725f3e2b4a83a4962e30635f73

Sharing

Copy URL Twitter E-mail

General

Target

8cdfba29dfcb862646b9115f8b43d5e92a9f98725f3e2b4a83a4962e30635f73
Size

1.9MB
MD5

135b6be51c314787865b8fbba9226a2c
SHA1

44d045b5984af0269aea8f224b43fb1c61fab0bb
SHA256

8cdfba29dfcb862646b9115f8b43d5e92a9f98725f3e2b4a83a4962e30635f73
SHA512

0514ad23955a7c3c0d9d312eec5d567b66fd1e2bbcda56e9543a094c85067694b664d6330fdebd9db6cdb2fd0670285954971ba38a58f06a0f5e845058a890b1
SSDEEP

49152:mlJNAaf+e+VV+92g1pw4MKPD6PSY0gy8jpgLDkFRuva1yd0aG:8AaP+jtg1pw4MKPD6PSYZ6DkFIa1yd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cdfba29dfcb862646b9115f8b43d5e92a9f98725f3e2b4a83a4962e30635f73

Files

8cdfba29dfcb862646b9115f8b43d5e92a9f98725f3e2b4a83a4962e30635f73
.exe windows:5 windows x86

c00efa7db385be6d26e0b510d2691b51

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gvport

GetGeoPort

libeay32

ord333
ord962

smsclientdll

_SMS_Init@0
_SMS_RegSMSCallBack@4
_SMS_SyncSendMailMessage@4
_SMS_ReadSnapMailSetting@4
_SMS_Release@0

geoddrawv2

?GVScale_Create@@YAPAXK@Z
?GVScale_Release@@YAHPAXK@Z
?GVColor_Release@@YAHPAXK@Z
?GVColor_Create@@YAPAXK@Z

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetStringTypeW
GetStdHandle
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
LCMapStringW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
SetEnvironmentVariableA
SetUnhandledExceptionFilter
GetFileType
HeapSize
SetStdHandle
ExitProcess
HeapQueryInformation
ExitThread
HeapReAlloc
GetSystemTimeAsFileTime
ReleaseMutex
WaitForSingleObject
SizeofResource
LockResource
LoadResource
FindResourceW
MultiByteToWideChar
OutputDebugStringW
GetLocalTime
FileTimeToSystemTime
SystemTimeToFileTime
WideCharToMultiByte
ResumeThread
SetEvent
ResetEvent
CopyFileA
CreateDirectoryA
GetTempPathA
GetModuleFileNameW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetTickCount
Sleep
GetLastError
WaitForMultipleObjects
GetCurrentProcessId
MapViewOfFile
OpenFileMappingW
CloseHandle
UnmapViewOfFile
CreateFileMappingW
InterlockedExchange
LeaveCriticalSection
EnterCriticalSection
FreeLibrary
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapAlloc
RtlUnwind
RaiseException
HeapFree
EncodePointer
DecodePointer
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
GetUserDefaultLCID
VirtualProtect
SearchPathW
GetProfileIntW
GetNumberFormatW
GetTempFileNameW
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesW
GetProcAddress
LoadLibraryW
CreateDirectoryW
GetFileAttributesExW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
lstrcmpiW
GetThreadLocale
lstrlenA
GlobalGetAtomNameW
lstrcpyW
DeleteFileW
GlobalFlags
GetCurrentDirectoryW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
ReleaseActCtx
CreateActCtxW
InterlockedIncrement
LocalAlloc
FileTimeToLocalFileTime
SuspendThread
SetThreadPriority
CreateEventW
CreateMutexW
FreeResource
GlobalAddAtomW
GlobalFindAtomW
GetVersionExW
CompareStringW
lstrcmpA
GlobalDeleteAtom
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
ActivateActCtx
DeactivateActCtx
lstrcmpW
GetModuleHandleW
GlobalFree
CopyFileW
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
lstrlenW
MulDiv
CreateSemaphoreW
CreateThread
GetCurrentThreadId
SetLastError
ReleaseSemaphore
InitializeCriticalSection
GetWindowsDirectoryW
InterlockedDecrement
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetSystemDefaultLangID
GetComputerNameA
GetTempPathW

user32

TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
RegisterClipboardFormatW
CopyImage
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
GetMenuDefaultItem
UnpackDDElParam
ReuseDDElParam
LoadImageW
InsertMenuItemW
TranslateAcceleratorW
LockWindowUpdate
BringWindowToTop
SetCursorPos
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateW
GetSystemMenu
LoadMenuW
SetClassLongW
GetAsyncKeyState
NotifyWinEvent
CreatePopupMenu
DestroyAcceleratorTable
SetParent
RedrawWindow
SetWindowRgn
IsZoomed
UnregisterClassW
CharUpperW
DestroyIcon
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
IntersectRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
OffsetRect
CharNextW
DestroyMenu
GetMenuItemInfoW
InflateRect
WaitMessage
ReleaseCapture
WindowFromPoint
SetCapture
SetLayeredWindowAttributes
EnumDisplayMonitors
SystemParametersInfoW
SetRectEmpty
KillTimer
InvalidateRect
RealChildWindowFromPoint
DeleteMenu
LoadCursorW
GetSysColorBrush
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
MonitorFromPoint
CheckDlgButton
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
GetWindowThreadProcessId
ShowOwnedPopups
SetCursor
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
IsWindowEnabled
GetNextDlgTabItem
EndDialog
SetWindowContextHelpId
MapDialogRect
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
IsWindow
UnionRect
UpdateLayeredWindow
IsMenu
CreateMenu
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MonitorFromWindow
PostThreadMessageW
SetMenuDefaultItem
IsClipboardFormatAvailable
FrameRect
GetUpdateRect
OpenClipboard
SetClipboardData
CloseClipboard
GetWindowRgn
DestroyCursor
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SubtractRect
MapVirtualKeyExW
GetKeyNameTextW
EmptyClipboard
IsCharLowerW
GetDoubleClickTime
CharUpperBuffW
CopyIcon
DrawIcon
SendMessageW
PostMessageW
IsIconic
GetClientRect
SetTimer
GetSystemMetrics
EnableWindow
RemoveMenu
GetSubMenu
GetMenuItemCount
InsertMenuW
GetMenuItemID
AppendMenuW
GetMenuStringW
GetMenuState
PostQuitMessage
GetWindow
SetWindowPos
SetWindowLongW
GetWindowLongW
GetMenu
CallWindowProcW
DefWindowProcW
GetDlgCtrlID
GetWindowPlacement
SetWindowPlacement
PtInRect
CopyRect
SetScrollInfo
GetScrollInfo
DeferWindowPos
EqualRect
ScreenToClient
GetWindowRect
GetParent
AdjustWindowRectEx
GetSysColor
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
MessageBoxW
UpdateWindow
IsWindowVisible
ShowScrollBar
SetForegroundWindow

gdi32

MoveToEx
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
GetStockObject
SelectPalette
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateDIBitmap
CreateFontIndirectW
CreateCompatibleBitmap
CreateRectRgnIndirect
GetTextMetricsW
EnumFontFamiliesW
IntersectClipRect
LineTo
GetBkColor
GetTextColor
GetRgnBox
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
CreateRoundRectRgn
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
SetDIBColorTable
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExW
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
GetTextFaceW
SetPixelV
GetTextExtentPoint32W
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
CreateDCW
CopyMetaFileW
GetDeviceCaps
CreateFontW
SetDIBitsToDevice
CreateDIBSection
DeleteObject
GetObjectW
SelectObject
DeleteDC
GetTextCharsetInfo
CreateCompatibleDC

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegEnumKeyExW
InitializeSecurityDescriptor
RegCloseKey
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegDeleteKeyW
SetSecurityDescriptorDacl
RegEnumValueW
RegQueryValueW
RegEnumKeyW

shell32

SHGetFileInfoW
ShellExecuteW
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderPathW
SHAppBarMessage
SHGetSpecialFolderLocation
SHGetPathFromIDListW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
UrlUnescapeW
PathFindExtensionW

ole32

CoTaskMemFree
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoInitializeEx
CoCreateInstance
OleRun
CoCreateGuid
CoUninitialize
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
CreateStreamOnHGlobal
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
CoInitialize

oleaut32

SysStringLen
VariantCopy
VariantInit
SysFreeString
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
OleCreateFontIndirect
VariantChangeType
SysAllocStringLen
VariantClear
GetErrorInfo
SysAllocString

oledlg

OleUIBusyW

gdiplus

GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipDeleteGraphics
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipCreateBitmapFromHBITMAP
GdipFree
GdipAlloc
GdipDisposeImage
GdipSaveImageToFile
GdipCreateBitmapFromScan0

ws2_32

WSACleanup
WSAStartup

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

wininet

InternetCrackUrlW
InternetCanonicalizeUrlW
InternetQueryDataAvailable
HttpOpenRequestW
InternetConnectW
HttpSendRequestExW
HttpEndRequestW
HttpSendRequestW
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallbackW
InternetOpenW
InternetGetLastResponseInfoW
InternetCloseHandle
HttpQueryInfoW
HttpAddRequestHeadersW

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 327KB - Virtual size: 327KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c00efa7db385be6d26e0b510d2691b51

Headers

DLL Characteristics

File Characteristics

Imports

gvport

libeay32

smsclientdll

geoddrawv2

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

ws2_32

oleacc

wininet

imm32

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 327KB - Virtual size: 327KB

.data Size: 33KB - Virtual size: 64KB

.rsrc Size: 38KB - Virtual size: 38KB

.reloc Size: 183KB - Virtual size: 183KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 327KB - Virtual size: 327KB

.data
Size: 33KB - Virtual size: 64KB

.rsrc
Size: 38KB - Virtual size: 38KB

.reloc
Size: 183KB - Virtual size: 183KB