dde23f22f87462b0db48d9ec50ae4a4ae74e076dcb08316a681d20c6bdfb1b70

Sharing

Copy URL Twitter E-mail

General

Target

dde23f22f87462b0db48d9ec50ae4a4ae74e076dcb08316a681d20c6bdfb1b70
Size

3.9MB
MD5

9863cef7d4c920379dabca9f9fab3427
SHA1

5fe68aa6f59149b3a41f7aede72f538f16a366c5
SHA256

dde23f22f87462b0db48d9ec50ae4a4ae74e076dcb08316a681d20c6bdfb1b70
SHA512

863aaff322ae1df5a38f238b5b2604707829e88d5151026ac0825beb9f1d1afb052977500e14372020c3391e7d73c9b5389f45c81e43aa3c0c36d5d9df8d4191
SSDEEP

98304:+S9BL3K9Z9nxnzHjftd9hq6md9noPFLOAkGkzdnEVomFHKnPqXk:J8Z9nR9hq6mdBoPFLOyomFHKnPq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dde23f22f87462b0db48d9ec50ae4a4ae74e076dcb08316a681d20c6bdfb1b70

Files

dde23f22f87462b0db48d9ec50ae4a4ae74e076dcb08316a681d20c6bdfb1b70
.exe windows:5 windows x86

0bd63503bb2436ea8fdc90ad30a7a6c8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

libfftw3-3

fftw_free
fftw_alloc_real
fftw_destroy_plan
fftw_execute
fftw_plan_dft_r2c_1d
fftw_alloc_complex

kernel32

GetStartupInfoW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetProcessHeap
GetStringTypeW
SetFilePointerEx
OutputDebugStringW
WriteConsoleW
LCMapStringW
GetDriveTypeW
SetEnvironmentVariableA
GetStdHandle
GetFileType
SetStdHandle
HeapQueryInformation
SizeofResource
LockResource
LoadResource
FindResourceW
GetPrivateProfileStringW
GetModuleFileNameW
GlobalAlloc
GlobalLock
GlobalUnlock
FreeResource
GlobalFree
WideCharToMultiByte
lstrcpynW
GetLastError
GetCurrentThreadId
CreateEventW
CloseHandle
MulDiv
ResumeThread
WaitForSingleObject
SetEvent
ResetEvent
Sleep
UnmapViewOfFile
OpenFileMappingW
CreateFileMappingW
MapViewOfFile
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetModuleFileNameA
MultiByteToWideChar
CreateMutexW
ReleaseMutex
HeapSize
AreFileApisANSI
GetModuleHandleExW
ExitProcess
HeapReAlloc
RtlUnwind
RaiseException
VirtualQuery
VirtualAlloc
GetSystemInfo
IsProcessorFeaturePresent
IsDebuggerPresent
GetSystemTimeAsFileTime
ExitThread
HeapAlloc
HeapFree
GetCommandLineW
GetPrivateProfileStringA
GetPrivateProfileIntA
CreateThread
FreeLibrary
FindFirstFileW
LoadLibraryW
FindResourceExW
VirtualProtect
GetProfileIntW
GetTickCount
SearchPathW
GetWindowsDirectoryW
GetTempPathW
GetTempFileNameW
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryW
VerifyVersionInfoW
VerSetConditionMask
GlobalFlags
GlobalGetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InterlockedIncrement
lstrcmpA
GetCurrentThread
FileTimeToSystemTime
FindNextFileW
FileTimeToLocalFileTime
SuspendThread
SetThreadPriority
GetVersionExW
GetThreadLocale
lstrcmpiW
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindClose
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
DecodePointer
EncodePointer
GetModuleHandleA
GetVersion
OutputDebugStringA
InterlockedDecrement
GetCurrentProcessId
SetLastError
FormatMessageW
LocalFree
GetProcAddress
GlobalSize
lstrcpyW
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
GetPrivateProfileIntW
WritePrivateProfileStringW
InterlockedExchange
SetFileAttributesW
RemoveDirectoryW
GetFileAttributesW
TerminateThread
CopyFileW
DeleteFileW
GetModuleHandleW
LoadLibraryA
CreateFileW

user32

GetIconInfo
GetDoubleClickTime
LockWindowUpdate
BringWindowToTop
SetCursorPos
LoadImageW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetParent
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
CharNextW
WaitMessage
CopyImage
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
NotifyWinEvent
MessageBeep
DeleteMenu
GetSystemMenu
ReleaseCapture
SetCapture
GetAsyncKeyState
IsZoomed
TrackMouseEvent
EnumDisplayMonitors
SetLayeredWindowAttributes
UnregisterClassW
RealChildWindowFromPoint
LoadCursorW
SetCursor
ShowOwnedPopups
GetSysColorBrush
SetWindowRgn
DrawFrameControl
DrawEdge
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
TranslateMessage
GetMessageW
WindowFromPoint
SendDlgItemMessageA
MapVirtualKeyW
CharUpperW
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
IntersectRect
LoadMenuW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IsDialogMessageW
SetWindowTextW
CheckDlgButton
GetDlgItemInt
SetDlgItemInt
MoveWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetWindow
GetTopWindow
CopyIcon
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
SubtractRect
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
DefWindowProcW
PostMessageW
GetMessageTime
DispatchMessageW
RegisterWindowMessageW
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxW
IsWindowEnabled
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
RemoveMenu
InsertMenuW
GetMenuItemCount
GetMenuItemID
InvertRect
HideCaret
GetSubMenu
GetMenuState
GetMenuStringW
DrawIcon
IsIconic
LoadIconW
ShowWindow
SetWindowPos
FindWindowW
EnumChildWindows
GetKeyNameTextW
GetFocus
SetForegroundWindow
MapWindowPoints
GetCursorPos
ModifyMenuW
DestroyAcceleratorTable
SetClassLongW
GetUpdateRect
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
GetWindowRgn
DestroyCursor
CreateMenu
GetComboBoxInfo
GetKeyState
KillTimer
SetTimer
PeekMessageW
wsprintfW
GetParent
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
GetClassLongW
IsClipboardFormatAvailable
AppendMenuW
CreatePopupMenu
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
GetClassNameW
GetSystemMetrics
GetWindowLongW
CallWindowProcW
PtInRect
ScreenToClient
GetMessagePos
DestroyIcon
PostThreadMessageW
ReuseDDElParam
UnpackDDElParam
LoadAcceleratorsW
InsertMenuItemW
TranslateAcceleratorW
CharUpperBuffW
RegisterClipboardFormatW
GetPropW
CreateAcceleratorTableW
DrawStateW
DrawFocusRect
IsRectEmpty
OffsetRect
SetRectEmpty
FrameRect
InflateRect
SetWindowLongW
GetSysColor
CopyRect
EnableWindow
SendMessageW
ReleaseDC
GetDC
GetWindowRect
UpdateWindow
InvalidateRect
GetClientRect
GrayStringW
DrawTextExW
TabbedTextOutW
EqualRect
SetRect
LoadBitmapW
DrawTextW
DrawIconEx
FillRect
SetMenuItemInfoW

gdi32

EndPath
FillPath
CreateFontIndirectW
SetDIBColorTable
CreateDIBSection
CopyMetaFileW
CreateDCW
CreateBitmap
CreateHatchBrush
CreatePatternBrush
CreateRectRgn
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
BeginPath
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
GetTextExtentPoint32W
CreateEllipticRgn
GetBkColor
GetTextColor
CreatePolygonRgn
Polyline
GetTextMetricsW
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
GetRgnBox
RealizePalette
StretchBlt
OffsetRgn
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExW
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
SetPixelV
GetTextFaceW
DeleteObject
DeleteDC
SelectObject
GetDeviceCaps
GetObjectW
CreatePen
CreateSolidBrush
GetStockObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
Polygon
SetPixel
Ellipse
SetWindowOrgEx
Rectangle
RoundRect

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegQueryValueW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegEnumKeyExW
RegEnumValueW
RegCloseKey
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW

shell32

ShellExecuteW
SHFileOperationW
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
DragFinish
DragQueryFileW
Shell_NotifyIconW
SHAppBarMessage

comctl32

ImageList_GetIcon
ImageList_GetIconSize
ImageList_AddMasked
_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW
PathRemoveFileSpecW
PathFileExistsW
StrFormatKBSizeW

uxtheme

GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
DrawThemeText
DrawThemeParentBackground
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
IsAppThemed

ole32

CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoInitializeEx
CoUninitialize
OleFlushClipboard
OleDuplicateData
OleIsCurrentClipboard
DoDragDrop
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoRevokeClassObject
CoRegisterMessageFilter
CoTaskMemFree
CoTaskMemAlloc
PropVariantClear
CoCreateInstance
CoInitialize
CreateStreamOnHGlobal
ReleaseStgMedium

oleaut32

SysAllocStringLen
VariantInit
VariantClear
VariantChangeType
SysAllocString
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SysFreeString
SafeArrayDestroy
OleLoadPicture

oledlg

OleUIBusyW

gdiplus

GdipDisposeImage
GdipFree
GdiplusStartup
GdipAlloc
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromStream
GdiplusShutdown
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipDrawImageI
GdipLoadImageFromStream
GdipBitmapGetPixel
GdipDrawImageRectI
GdipDeleteGraphics
GdipCreateFromHDC
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipCloneImage

sdl2

SDL_Init
SDL_CreateWindowFrom
SDL_CreateRenderer
SDL_SetRenderDrawColor
SDL_RenderClear
SDL_RenderFillRect
SDL_RenderPresent
SDL_Delay
SDL_DestroyRenderer
SDL_DestroyWindow
SDL_GetError

dbghelp

MakeSureDirectoryPathExists

ws2_32

closesocket

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 405KB - Virtual size: 405KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 421KB - Virtual size: 421KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bd63503bb2436ea8fdc90ad30a7a6c8

Headers

DLL Characteristics

File Characteristics

Imports

libfftw3-3

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

sdl2

dbghelp

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 405KB - Virtual size: 405KB

.data Size: 89KB - Virtual size: 119KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 421KB - Virtual size: 421KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 405KB - Virtual size: 405KB

.data
Size: 89KB - Virtual size: 119KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 421KB - Virtual size: 421KB