9101245c323060cdba023f6684d0b4df766a87c58d3b45661c95776c264d2e86

Sharing

Copy URL Twitter E-mail

General

Target

9101245c323060cdba023f6684d0b4df766a87c58d3b45661c95776c264d2e86
Size

3.6MB
MD5

bc931e21259d992d6854edfd195824b4
SHA1

1164cb598c0e205f606ccaeff27c78a71b61ea92
SHA256

9101245c323060cdba023f6684d0b4df766a87c58d3b45661c95776c264d2e86
SHA512

08f11290f59f3f1194291d047f27590f6ec1ec3d52a460898cdfe3cb48627d0bf14647ba14be84d32d3d828c7f9a8fa0bb76345b1c1b5369e43aa66e659bb383
SSDEEP

98304:PvrVUB45d/WZ3iax/UnkN331o4L8FLOAkGkzdnEVomFHKnPy:n5u31o4AFLOyomFHKnPy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9101245c323060cdba023f6684d0b4df766a87c58d3b45661c95776c264d2e86

Files

9101245c323060cdba023f6684d0b4df766a87c58d3b45661c95776c264d2e86
.exe windows:6 windows x86

475fdd0c82b06dcb5ee944cca766bad7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
GetACP
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
ReadConsoleW
GetCommandLineW
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
CreateThread
VirtualQuery
VirtualAlloc
GetSystemInfo
GetModuleHandleExW
ExitProcess
RtlUnwind
GetCPInfo
LCMapStringW
GetStringTypeW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
lstrcmpA
GetLastError
CreateMutexW
GetModuleFileNameW
CreateDirectoryW
CreateFileW
DeleteFileW
RemoveDirectoryW
SetFileAttributesW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
Sleep
GetSystemTime
GetModuleHandleW
LoadResource
LockResource
SizeofResource
lstrcpyW
FindResourceW
GetPrivateProfileStringW
WritePrivateProfileStringW
CopyFileW
MultiByteToWideChar
WideCharToMultiByte
OutputDebugStringA
OutputDebugStringW
InitializeCriticalSection
GetLocalTime
DecodePointer
RaiseException
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
SetLastError
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
GlobalFree
LocalFree
MulDiv
FormatMessageW
FreeResource
GetModuleHandleA
GetProcAddress
LoadLibraryW
SetEvent
WaitForSingleObject
CreateEventW
GetCurrentThreadId
SetThreadPriority
SuspendThread
ResumeThread
GetCurrentThread
GetVersionExW
FreeLibrary
LoadLibraryExW
GlobalDeleteAtom
CloseHandle
lstrcmpW
GetPrivateProfileIntW
GlobalAddAtomW
GetCurrentProcessId
InitializeCriticalSectionAndSpinCount
LoadLibraryA
FindClose
FindFirstFileW
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
lstrcmpiW
MoveFileW
GetThreadLocale
FileTimeToLocalFileTime
FindNextFileW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
EncodePointer
GetSystemDirectoryW
GlobalFindAtomW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GlobalGetAtomNameW
GlobalFlags
GetCurrentDirectoryW
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VerSetConditionMask
VerifyVersionInfoW
GetFileAttributesW
GetFileAttributesExW
GetFileSizeEx
GetFileTime
SetErrorMode
VirtualProtect
GetWindowsDirectoryW
GetTickCount
GetTempFileNameW
GetTempPathW
GetProfileIntW
SearchPathW
FindResourceExW
GetUserDefaultLCID
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
ResetEvent
WaitForSingleObjectEx
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW

user32

MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableW
CharNextW
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
DestroyIcon
KillTimer
SetTimer
DeleteMenu
CopyImage
SetRectEmpty
SendDlgItemMessageA
RealChildWindowFromPoint
LoadCursorW
LoadMenuW
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
EqualRect
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
GetForegroundWindow
SetLayeredWindowAttributes
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
GetMenuItemInfoW
DestroyMenu
IntersectRect
DestroyAcceleratorTable
TranslateAcceleratorW
IsRectEmpty
DrawFocusRect
GetSysColorBrush
MapWindowPoints
RedrawWindow
DrawStateW
InsertMenuItemW
UnpackDDElParam
ReleaseDC
SetWindowRgn
InvalidateRect
InvalidateRgn
GetClientRect
DrawFrameControl
DrawEdge
RegisterWindowMessageW
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxW
SetCursor
ShowOwnedPopups
PostQuitMessage
CallNextHookEx
ValidateRect
EnumDisplayMonitors
SetParent
MonitorFromPoint
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
LoadImageW
TrackMouseEvent
IsZoomed
GetAsyncKeyState
NotifyWinEvent
SetCursorPos
UnionRect
BringWindowToTop
GetKeyState
IsWindowVisible
LockWindowUpdate
EnableScrollBar
GetDoubleClickTime
GetIconInfo
CopyIcon
GetMenuDefaultItem
TrackPopupMenu
SetMenuDefaultItem
GetWindowRect
GetCursorPos
ClientToScreen
PtInRect
GetDesktopWindow
SetWindowsHookExW
UnhookWindowsHookEx
LoadIconW
SystemParametersInfoW
GetDC
GetParent
GetSubMenu
GetMenuItemID
GetMenuItemCount
ModifyMenuW
CopyRect
InflateRect
OffsetRect
UnregisterClassW
GetMenuStringW
GetMenuState
InsertMenuW
RemoveMenu
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetWindowDC
BeginPaint
EndPaint
ScreenToClient
GetSysColor
FillRect
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
ReuseDDElParam
RegisterClipboardFormatW
ToUnicodeEx
GetKeyboardLayout
SetClassLongW
UpdateLayeredWindow
GetUpdateRect
CharUpperW
LoadAcceleratorsW
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongW
GetMessageW
TranslateMessage
DispatchMessageW
PeekMessageW
GetKeyboardState
MapVirtualKeyW
CreateAcceleratorTableW
GetKeyNameTextW
SubtractRect
CharUpperBuffW
FrameRect
ShowWindow
FindWindowW
SendMessageW
RegisterDeviceNotificationW
PostMessageW
IsIconic
EnableWindow
GetSystemMetrics
GetSystemMenu
CreatePopupMenu
AppendMenuW
DrawIcon
UpdateWindow
SetForegroundWindow
GetWindowRgn
DestroyCursor
CreateMenu
InvertRect
HideCaret
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
PostThreadMessageW
DrawIconEx
IsClipboardFormatAvailable

gdi32

GetTextFaceW
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
GetBoundsRect
FillRgn
SetPaletteEntries
ExtFloodFill
LPtoDP
EnumFontFamiliesExW
GetSystemPaletteEntries
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
RoundRect
OffsetRgn
SetPixel
RealizePalette
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
DPtoLP
SetRectRgn
GetMapMode
GetTextMetricsW
Polyline
Polygon
CreatePolygonRgn
PatBlt
GetTextColor
GetBkColor
Ellipse
CreateRectRgnIndirect
CreateEllipticRgn
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutW
MoveToEx
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateBitmap
GetDeviceCaps
CreateDCW
CopyMetaFileW
TextOutW
GetRgnBox
FrameRgn
CreateRoundRectRgn
CreateFontIndirectW
CreateCompatibleBitmap
GetTextExtentPoint32W
Rectangle
GetObjectW
SetDIBColorTable
CreateDIBSection
StretchBlt
SelectObject
GetTextExtentPointW
GetPixel
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgn
CreateCompatibleDC
CombineRgn
BitBlt

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

SystemFunction036
RegOpenKeyExW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey

shell32

SHAppBarMessage
Shell_NotifyIconW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
DragFinish
DragQueryFileW
ShellExecuteW
SHGetFileInfoW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW
StrFormatKBSizeW

uxtheme

GetThemePartSize
GetThemeSysColor
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed
DrawThemeText
DrawThemeParentBackground
GetWindowTheme
IsThemeBackgroundPartiallyTransparent

ole32

OleTranslateAccelerator
IsAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoRegisterMessageFilter
CoRevokeClassObject
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc

oleaut32

VariantClear
VariantInit
SysAllocStringLen
SysAllocString
SysFreeString
SafeArrayDestroy
VariantChangeType
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
LoadTypeLi
SysStringLen
VariantTimeToSystemTime
SystemTimeToVariantTime

oledlg

OleUIBusyW

gdiplus

GdipGetImageHeight
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromStream
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipAlloc
GdipFree
GdiplusStartup
GdiplusShutdown
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipBitmapLockBits

hid

HidP_GetCaps
HidD_GetHidGuid
HidD_GetPreparsedData
HidD_FreePreparsedData
HidD_GetFeature
HidD_SetFeature
HidD_GetProductString
HidD_GetAttributes

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 368KB - Virtual size: 367KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

475fdd0c82b06dcb5ee944cca766bad7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

hid

setupapi

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 368KB - Virtual size: 367KB

.data Size: 25KB - Virtual size: 122KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 143KB - Virtual size: 142KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 368KB - Virtual size: 367KB

.data
Size: 25KB - Virtual size: 122KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 143KB - Virtual size: 142KB