9261a6b18bb60ad1f6787749d5d8df006e92a764203120b1a622aaad920b96c4

Sharing

Copy URL Twitter E-mail

General

Target

9261a6b18bb60ad1f6787749d5d8df006e92a764203120b1a622aaad920b96c4
Size

1.8MB
MD5

62093d28c3410922cd05d907973dcb06
SHA1

20e78de1394ee32c57937e1e2ac9b53ecea985fc
SHA256

9261a6b18bb60ad1f6787749d5d8df006e92a764203120b1a622aaad920b96c4
SHA512

4397d3570bba6b657500c943f70419dd32ef7e34007be20947115f0b5ba6a11b97cc7b98f7bb25c6a8d25a84304b2b9b7b6f3a7048c5653119843a6b9dae44b0
SSDEEP

49152:0O/xL350mu1SU9wKOxhG51zl9t4q6rGJ+1Ogoj:N/tJ0AU9whxhG7zlj4q6rGJ+1Ogoj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9261a6b18bb60ad1f6787749d5d8df006e92a764203120b1a622aaad920b96c4

Files

9261a6b18bb60ad1f6787749d5d8df006e92a764203120b1a622aaad920b96c4
.exe windows:6 windows x86

735b91f83efb5b1eccf81113adea9dd9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetOpenUrlA
InternetOpenA
InternetCloseHandle

kernel32

HeapSize
Sleep
GetLastError
SetEvent
HeapReAlloc
WaitForSingleObject
RaiseException
ResetEvent
HeapAlloc
DecodePointer
InitializeCriticalSectionEx
HeapFree
CancelIo
CloseHandle
DeleteCriticalSection
GetProcessHeap
CreateEventA
EnterCriticalSection
OutputDebugStringA
SetLastError
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
LoadLibraryW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalAlloc
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalHandle
GlobalFree
LocalAlloc
LocalReAlloc
LocalFree
GetCurrentProcessId
LoadResource
LockResource
SizeofResource
FindResourceW
GlobalSize
MulDiv
VirtualFree
CopyFileA
SetThreadPriority
ResumeThread
CompareStringA
lstrcmpA
GlobalGetAtomNameA
FileTimeToSystemTime
EncodePointer
GetSystemDirectoryW
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
FindResourceA
GlobalAddAtomA
GlobalFindAtomA
FindFirstFileA
FlushFileBuffers
GetFullPathNameA
LockFile
SetEndOfFile
UnlockFile
GetVolumeInformationA
DuplicateHandle
lstrcmpiA
GlobalFlags
GetUserDefaultUILanguage
GetOEMCP
GetCPInfo
FileTimeToLocalFileTime
GetFileAttributesExA
GetFileSizeEx
GetFileTime
SystemTimeToTzSpecificLocalTime
GetACP
GetCurrentDirectoryA
FindResourceExW
VerSetConditionMask
VerifyVersionInfoA
GetTempPathA
GetProfileIntA
SearchPathA
GetTempFileNameA
CreateEventW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
OutputDebugStringW
FormatMessageA
RtlUnwind
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
VirtualQuery
HeapQueryInformation
GetCommandLineA
GetCommandLineW
QueryPerformanceFrequency
SetStdHandle
GetFileType
GetStdHandle
SetFilePointerEx
GetConsoleMode
ReadConsoleW
CompareStringW
LCMapStringW
GetConsoleOutputCP
GetTimeZoneInformation
FindFirstFileExW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
CreateFileW
WriteConsoleW
VirtualAlloc
LeaveCriticalSection
InitializeCriticalSection
WriteFile
SetFilePointer
CreateFileA
GetFileSize
ReadFile
GetCurrentProcess
ExpandEnvironmentStringsA
lstrlenA
lstrcatA
GetFileAttributesA
TerminateThread
lstrcpyA
GetWindowsDirectoryA
CreateProcessA
CreateDirectoryA
GetTickCount
VirtualProtect
LoadLibraryA
GetProcAddress
FreeLibrary
IsBadReadPtr
GetStringTypeW
GetCurrentThreadId
GetDiskFreeSpaceExA
GlobalMemoryStatusEx
ExitProcess
GetSystemInfo
GetVersionExA
GetDriveTypeA
OpenEventA
GetModuleFileNameA
WideCharToMultiByte
MultiByteToWideChar
FindClose
FindNextFileW

user32

ClientToScreen
GetDesktopWindow
RealChildWindowFromPoint
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetWindowDC
FillRect
DestroyMenu
GetMenuItemInfoA
InflateRect
SystemParametersInfoA
CopyImage
SetRectEmpty
OffsetRect
PostQuitMessage
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetAsyncKeyState
MapDialogRect
IntersectRect
TrackMouseEvent
InvalidateRect
LoadImageW
ShowOwnedPopups
SetCursor
DeleteMenu
SetTimer
KillTimer
GetNextDlgGroupItem
SetCapture
ReleaseCapture
WindowFromPoint
DrawFocusRect
IsRectEmpty
LoadImageA
DrawIconEx
GetIconInfo
MessageBeep
EnableScrollBar
HideCaret
InvertRect
LoadCursorW
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
MapVirtualKeyA
GetKeyNameTextA
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateA
SetClassLongA
SetWindowRgn
SetParent
DrawEdge
DrawFrameControl
IsZoomed
LoadMenuW
GetSystemMenu
BringWindowToTop
SetCursorPos
CopyIcon
FrameRect
DrawIcon
UnionRect
UpdateLayeredWindow
MonitorFromPoint
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
GetComboBoxInfo
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetRect
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
IsClipboardFormatAvailable
GetUpdateRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
CheckDlgButton
CreateMenu
DestroyIcon
DestroyCursor
GetWindow
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
CopyRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetClientRect
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
GetDlgItem
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
GetWindowTextLengthA
GetWindowTextA
LoadCursorA
GetSysColorBrush
GetSysColor
CallNextHookEx
SetWindowsHookExA
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
PeekMessageA
DispatchMessageA
TranslateMessage
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
GetLastActivePopup
GetWindowThreadProcessId
GetParent
GetWindowLongA
MessageBoxA
IsWindowEnabled
EnableWindow
SendMessageA
UnhookWindowsHookEx
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
CharUpperA
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
GetWindowRgn
SubtractRect
LoadIconA
GetMessageA
PostThreadMessageA
GetInputState
GetDC
GetSystemMetrics
ReleaseDC
GetUserObjectInformationA
SetThreadDesktop
GetThreadDesktop
CloseDesktop
OpenDesktopA
OpenInputDesktop
wsprintfA
ExitWindowsEx
IsWindowVisible

gdi32

GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetViewportOrgEx
CreateFontIndirectA
DeleteObject
DeleteDC
StretchBlt
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
GetTextExtentPoint32A
GetClipBox
ExcludeClipRect
Escape
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
GetObjectType
GetWindowOrgEx
SetPixelV
CombineRgn
CreateRectRgnIndirect
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
PatBlt
SetRectRgn
DPtoLP
GetTextMetricsA
EnumFontFamiliesExA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
CopyMetaFileA
GetTextFaceA
BitBlt
GetObjectA
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
CreateDCA
GetTextColor
CreatePolygonRgn
Polygon
Polyline
OffsetRgn
GetRgnBox
Rectangle
LPtoDP
CreateRoundRectRgn

advapi32

RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

shell32

ShellExecuteA
SHAppBarMessage
SHBrowseForFolderA
DragFinish
DragQueryFileA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetFileInfoA

msimg32

AlphaBlend
TransparentBlt

shlwapi

PathFindFileNameA
PathIsUNCA
PathStripToRootA
PathFindExtensionA
PathRemoveFileSpecW
StrFormatKBSizeA

uxtheme

GetThemePartSize
GetThemeColor
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
GetCurrentThemeName
GetWindowTheme
IsAppThemed
GetThemeSysColor

ws2_32

select
WSAStartup
send
socket
closesocket
WSAIoctl
WSACleanup
gethostbyname
gethostname
getsockname
connect
recv
htons
setsockopt

gdiplus

GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipSetInterpolationMode
GdipDrawImageRectI
GdiplusStartup
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateFromHDC
GdipFree
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdipAlloc
GdipCloneImage
GdiplusShutdown
GdipBitmapLockBits
GdipCreateBitmapFromScan0

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

ole32

OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoInitializeEx
CoInitialize
CoUninitialize
CoCreateInstance
CoDisconnectObject
ReleaseStgMedium
OleDuplicateData
OleCreateMenuDescriptor
CoTaskMemFree
CoTaskMemAlloc

oleaut32

VariantChangeType
VariantCopy
VariantClear
VarBstrFromDate
SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen
SysStringLen
LoadTypeLi
SysAllocStringByteLen
VariantInit
SysFreeString

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 317KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

735b91f83efb5b1eccf81113adea9dd9

Headers

DLL Characteristics

File Characteristics

Imports

wininet

kernel32

user32

gdi32

advapi32

shell32

msimg32

shlwapi

uxtheme

ws2_32

gdiplus

oleacc

imm32

winmm

winspool.drv

ole32

oleaut32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 317KB - Virtual size: 317KB

.data Size: 21KB - Virtual size: 39KB

.rsrc Size: 49KB - Virtual size: 48KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 317KB - Virtual size: 317KB

.data
Size: 21KB - Virtual size: 39KB

.rsrc
Size: 49KB - Virtual size: 48KB