c78d6bfd05dbb927fbc5b4484360191e793b492d7a7c7f9d9d60f51fd6459bd2

Sharing

Copy URL Twitter E-mail

General

Target

c78d6bfd05dbb927fbc5b4484360191e793b492d7a7c7f9d9d60f51fd6459bd2
Size

5.4MB
MD5

0a9fb78c2b5aa9758c60fb9b71c732cb
SHA1

a3e51fd1989fba7c36a309adf3e84c3d787449d5
SHA256

c78d6bfd05dbb927fbc5b4484360191e793b492d7a7c7f9d9d60f51fd6459bd2
SHA512

6250916f74572afbbe79aa9870446817361f23c9f131f3e61e436e268d824d66924e2ec6094e16b0d9848c377a11e92ebe269b94695ce35d1e993e44d7387024
SSDEEP

98304:myy4A9O/NGXBgluuy2ioL9/rJx5TzPjNW3AoXQbQYBcYmQxrn4jkzLLz40PlJwdo:PPcOpl3JpnJW3AoXL74EqzJwnHNw++UE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c78d6bfd05dbb927fbc5b4484360191e793b492d7a7c7f9d9d60f51fd6459bd2

Files

c78d6bfd05dbb927fbc5b4484360191e793b492d7a7c7f9d9d60f51fd6459bd2
.exe windows:5 windows x86

fb26f86d120b7e4f89996be9da8ea5ff

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
connect
inet_addr
gethostbyname
ioctlsocket
htons
recv
socket
send
closesocket

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiChangeState
SetupDiSetClassInstallParamsW
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInfo

winmm

PlaySoundW

kernel32

GlobalDeleteAtom
lstrcmpA
GetPrivateProfileIntW
WritePrivateProfileStringW
GetPrivateProfileStringW
GlobalAddAtomW
FreeResource
ResumeThread
lstrcpyW
MulDiv
LocalFree
FormatMessageW
GlobalSize
CreateActCtxW
lstrcmpW
CompareStringW
GlobalFindAtomW
InitializeCriticalSection
GlobalFlags
GlobalGetAtomNameW
lstrlenA
GetThreadLocale
FileTimeToSystemTime
LocalAlloc
GlobalReAlloc
GlobalHandle
LocalReAlloc
lstrcmpiW
LockFile
UnlockFile
DuplicateHandle
GetVolumeInformationW
GetFullPathNameW
SetErrorMode
GetFileAttributesExW
FileTimeToLocalFileTime
GetFileAttributesW
GetFileSizeEx
GetTempFileNameW
GetWindowsDirectoryW
GetNumberFormatW
GetProfileIntW
SearchPathW
VirtualProtect
FindResourceExW
lstrlenW
GetProcessHeap
SetEndOfFile
HeapReAlloc
IsProcessorFeaturePresent
SetStdHandle
WriteConsoleW
GetStringTypeW
RaiseException
HeapSize
GetLocaleInfoW
InterlockedExchange
RtlUnwind
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentProcessId
QueryPerformanceCounter
HeapCreate
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetUserDefaultUILanguage
GetStdHandle
SetUnhandledExceptionFilter
EncodePointer
DecodePointer
ExitProcess
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
HeapSetInformation
GetCommandLineW
LockResource
SizeofResource
LoadResource
FindResourceW
DeviceIoControl
GetDriveTypeA
WaitForMultipleObjects
GetFileTime
SetFilePointer
CreateFileA
Sleep
GetTickCount
CreateThread
DeleteCriticalSection
GetThreadPriority
CreateSemaphoreW
EnterCriticalSection
ReleaseSemaphore
SetThreadPriority
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
TerminateThread
GetCurrentThread
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
WideCharToMultiByte
CreateEventW
ResetEvent
GetOverlappedResult
WriteFile
CreatePipe
GetSystemInfo
GetStartupInfoW
ReadFile
GetExitCodeProcess
GetVersionExW
WaitForSingleObject
CreateProcessW
PeekNamedPipe
DeleteFileW
FindNextFileW
RemoveDirectoryW
FindClose
GlobalFree
GetCurrentDirectoryW
GetTempPathW
GlobalUnlock
GetModuleFileNameW
CopyFileW
GlobalAlloc
GetModuleHandleW
GlobalLock
CreateDirectoryW
FindFirstFileW
CloseHandle
GetLastError
CreateFileW
GetFileSize
GetProcAddress
LoadLibraryW
FreeLibrary
GetLocalTime
ConvertDefaultLocale
GetSystemDefaultUILanguage
ActivateActCtx
FreeEnvironmentStringsW
DeactivateActCtx
ExitThread
HeapQueryInformation
VirtualAlloc
VirtualQuery
GetTimeZoneInformation
ReleaseActCtx
SetEnvironmentVariableA

user32

ReuseDDElParam
LoadImageW
InsertMenuItemW
TranslateAcceleratorW
LockWindowUpdate
BringWindowToTop
SetCursorPos
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SetClassLongW
DestroyAcceleratorTable
SetParent
UnregisterClassW
GetMenuDefaultItem
SetMenuDefaultItem
GetMenuItemInfoW
CreatePopupMenu
IsMenu
DestroyMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsZoomed
GetAsyncKeyState
NotifyWinEvent
SetWindowRgn
GetSystemMenu
LoadMenuW
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
SetRect
IsRectEmpty
CopyAcceleratorTableW
OffsetRect
CharNextW
CharUpperW
DestroyIcon
WaitMessage
ReleaseCapture
WindowFromPoint
SetCapture
SetLayeredWindowAttributes
EnumDisplayMonitors
SystemParametersInfoW
SetRectEmpty
KillTimer
SetTimer
DeleteMenu
LoadCursorW
GetSysColorBrush
RealChildWindowFromPoint
IntersectRect
InflateRect
MoveWindow
IsDialogMessageW
SetDlgItemTextW
CheckDlgButton
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
GetMonitorInfoW
MapWindowPoints
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CopyIcon
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
SetWindowLongW
UnhookWindowsHookEx
GetWindowRect
PtInRect
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
ScreenToClient
GetWindowTextLengthW
GetScrollPos
SetScrollPos
GetClassNameW
UpdateWindow
FillRect
DrawStateW
MapVirtualKeyW
GetKeyNameTextW
ReleaseDC
GetDC
CopyRect
SetFocus
GetMenuStringW
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetNextDlgTabItem
EndDialog
RegisterWindowMessageW
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
ShowOwnedPopups
SetCursor
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetWindowRgn
DestroyCursor
SubtractRect
MapVirtualKeyExW
IsCharLowerW
GetDoubleClickTime
GetUpdateRect
IsClipboardFormatAvailable
CreateMenu
LoadBitmapW
GetFocus
GetParent
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
DrawTextW
TabbedTextOutW
DrawTextExW
InvalidateRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
PostThreadMessageW
ScrollWindow
CharUpperBuffW
RedrawWindow
GrayStringW
GetSysColor
IsWindow
IsIconic
DrawIcon
GetClientRect
LoadIconW
GetSystemMetrics
EnableWindow
PostMessageW
EnumWindows
GetWindowTextW
GetDlgItem
ShowWindow
RegisterDeviceNotificationW
MessageBoxW
CloseClipboard
EmptyClipboard
OpenClipboard
SendMessageW
SetClipboardData
SetWindowTextW
FrameRect
CopyImage
GetIconInfo
HideCaret
InvertRect
RegisterClipboardFormatW
AdjustWindowRectEx
UnpackDDElParam
MonitorFromWindow

gdi32

CreatePatternBrush
SelectPalette
GetObjectType
CreatePen
CreateHatchBrush
CreateFontIndirectW
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
CreateDIBitmap
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
GetBkColor
GetTextColor
GetPixel
GetRgnBox
GetTextExtentPoint32W
CreateRoundRectRgn
CreateDIBSection
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
OffsetRgn
ExtSelectClipRgn
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetTextFaceW
SetPixelV
GetWindowExtEx
GetViewportExtEx
RealizePalette
DeleteDC
SelectClipRgn
SetLayout
GetStockObject
GetObjectW
CreateSolidBrush
DeleteObject
PatBlt
CreateRectRgnIndirect
CreateDCW
CopyMetaFileW
GetDeviceCaps
CreateBitmap
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
ExtTextOutW
PtVisible
CreateRectRgn
Escape
RectVisible
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
SetDIBColorTable
TextOutW
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegEnumKeyW
RegEnumValueW
RegOpenKeyExW
RegEnumKeyExW
RegQueryValueW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey

shell32

SHGetFileInfoW
SHGetPathFromIDListW
ShellExecuteExW
ShellExecuteW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHAppBarMessage
DragQueryFileW
DragFinish
SHBrowseForFolderW
SHGetMalloc

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathRemoveFileSpecW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitialize
CoInitializeEx
CoCreateInstance
CoUninitialize
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
CoRegisterMessageFilter
CoRevokeClassObject
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CreateStreamOnHGlobal
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard

oleaut32

SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysAllocString
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 312KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 178KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb26f86d120b7e4f89996be9da8ea5ff

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

setupapi

winmm

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 3.6MB - Virtual size: 3.6MB

.data Size: 312KB - Virtual size: 352KB

.rsrc Size: 17KB - Virtual size: 17KB

.reloc Size: 178KB - Virtual size: 177KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 3.6MB - Virtual size: 3.6MB

.data
Size: 312KB - Virtual size: 352KB

.rsrc
Size: 17KB - Virtual size: 17KB

.reloc
Size: 178KB - Virtual size: 177KB