a4c9793e70de25611817b41a70dd1520_exe32[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

a4c9793e70de25611817b41a70dd1520_exe32.exe
Size

3.5MB
MD5

a4c9793e70de25611817b41a70dd1520
SHA1

055236c8655fa3834b1bb4300876b9e007370ae6
SHA256

07f580b0fb93ada177d3f957e99ce4e297dd11e59d7f18695e1573341627e9f4
SHA512

9a5bf43cd361dd81ffa16cb44526791d000c3f841c973b0a4e0ac074466c2b8a61bb91260373cdc5de7397d208a8f11c18da67e93e2c7c18695df3c4a09d84ff
SSDEEP

98304:UKqqBHMm/S/65f/GXMrdIwrG5xIncji3fJ:lMD/65X3bzfJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4c9793e70de25611817b41a70dd1520_exe32.exe

Files

a4c9793e70de25611817b41a70dd1520_exe32.exe
.exe windows:4 windows x86

b0a52b16604e615d27eb1ef0ce3e20fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Copy
ImageList_EndDrag
ImageList_GetImageCount
ImageList_Remove
ImageList_Replace
ImageList_SetImageCount
ord17
ImageList_BeginDrag
ImageList_AddMasked
ImageList_DrawIndirect
ImageList_Add

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoW

kernel32

GetProcAddress
GetStartupInfoA
GetLocalTime
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
LoadLibraryA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleFileNameW
GetCommandLineW
GetLastError
GetModuleHandleA

user32

SetCursorPos
SetFocus
SetForegroundWindow
SetMenu
SetMenuItemInfoA
SetMenuItemInfoW
SetParent
SetPropA
SetRect
SetScrollInfo
SetSysColors
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPlacement
IsWindowEnabled
SetWindowRgn
SetWindowTextA
SetWindowTextW
ShowCaret
ShowOwnedPopups
ShowScrollBar
ShowWindow
ShowWindowAsync
SystemParametersInfoA
TrackPopupMenuEx
TranslateMessage
UnregisterClassA
UnregisterClassW
UpdateWindow
WindowFromDC
VkKeyScanA
IsWindow
IsRectEmpty
IsMenu
IsIconic
IsClipboardFormatAvailable
InvalidateRgn
InvalidateRect
IntersectRect
InsertMenuItemW
InsertMenuItemA
InflateRect
HideCaret
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowTextLengthA
GetWindowTextA
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowDC
GetWindow
GetTopWindow
GetSystemMenu
GetSysColorBrush
GetSubMenu
GetScrollInfo
GetPropA
GetParent
GetMenuItemInfoW
GetMenuItemInfoA
GetMenuItemCount
GetMenu
GetKeyState
GetIconInfo
GetForegroundWindow
SetCursor
GetDoubleClickTime
GetDlgItem
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetClipboardFormatNameA
GetClipboardData
GetClientRect
GetClassNameA
GetClassLongA
GetClassInfoW
GetClassInfoA
GetCaretPos
GetCapture
GetActiveWindow
FrameRect
FillRect
EnumThreadWindows
EnumPropsA
EnumClipboardFormats
EndPaint
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextA
DrawStateW
DrawStateA
DrawMenuBar
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DestroyCaret
DeleteMenu
DefWindowProcW
DefWindowProcA
CreateWindowExW
CreateWindowExA
CreatePopupMenu
CreateMenu
CreateIconIndirect
CreateCaret
CountClipboardFormats
CopyImage
CloseClipboard
ClientToScreen
ChildWindowFromPointEx
CharUpperBuffW
CharUpperBuffA
CharUpperA
CharToOemBuffA
CharToOemA
CharLowerBuffW
CharLowerBuffA
CharLowerA
CallWindowProcW
CallWindowProcA
CallNextHookEx
BringWindowToTop
BeginPaint
SystemParametersInfoW
GetSysColor
GetSystemMetrics
SetClipboardData
SetClassLongA
SetCaretPos
SetCapture
SetActiveWindow
SendMessageW
SendMessageA
ScrollWindowEx
ScrollWindow
ScreenToClient
RemovePropA
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterClipboardFormatA
RegisterClassW
RegisterClassA
RedrawWindow
PtInRect
PostQuitMessage
PostMessageW
PostMessageA
PeekMessageW
PeekMessageA
OpenClipboard
OffsetRect
OemToCharBuffA
OemToCharA
MsgWaitForMultipleObjects
MessageBoxW
MessageBoxA
MessageBeep
MapWindowPoints
LoadImageA
LoadIconA
LoadCursorA
LoadBitmapA
KillTimer
IsZoomed
GetFocus
IsWindowVisible
SetWindowPos

gdi32

StartPage
StartDocA
BitBlt
Chord
CombineRgn
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDCW
CreateDIBitmap
CreateDIBSection
CreateEllipticRgn
CreateFontIndirectA
CreateFontIndirectW
CreatePatternBrush
CreatePen
CreatePenIndirect
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetTextColor
SetTextCharacterExtra
SetTextAlign
SetStretchBltMode
SetROP2
SetRectRgn
SetPolyFillMode
SetPixel
SetMapMode
SetBrushOrgEx
SetBkMode
SetBkColor
SetArcDirection
SelectPalette
SelectObject
SaveDC
RestoreDC
RectVisible
RectInRegion
Rectangle
RealizePalette
PtInRegion
Polyline
PolyBezier
Pie
PatBlt
PaintRgn
OffsetViewportOrgEx
OffsetRgn
MoveToEx
MaskBlt
LPtoDP
LineTo
IntersectClipRect
GetWindowOrgEx
GetWindowExtEx
GetViewportOrgEx
GetViewportExtEx
GetTextMetricsA
GetTextExtentPointA
GetTextExtentPoint32W
GetTextExtentPoint32A
GetTextExtentExPointW
GetTextExtentExPointA
GetTextColor
GetTextAlign
GetStockObject
GetROP2
GetRgnBox
GetRegionData
GetPixel
GetObjectW
GetObjectType
GetObjectA
GetMapMode
GetDIBits
GetDeviceCaps
GetDCOrgEx
GetCurrentObject
GetClipRgn
GetClipBox
GetCharABCWidthsW
GetCharABCWidthsA
GetBkColor
GetBitmapBits
FillRgn
ExtTextOutW
ExtTextOutA
ExtSelectClipRgn
ExtFloodFill
ExtCreateRegion
ExtCreatePen
ExcludeClipRect
EqualRgn
EnumFontFamiliesExW
EnumFontFamiliesExA
EnumFontFamiliesA
EndPage
EndDoc
Ellipse
DPtoLP
DeleteObject
DeleteDC
CreateSolidBrush
CreateRoundRectRgn
CreateRectRgn
CreatePolygonRgn
Arc

winspool.drv

EnumPrintersW
EnumPrintersA
OpenPrinterA
OpenPrinterW
GetPrinterA
StartDocPrinterA
StartPagePrinter
WritePrinter
EndPagePrinter
AbortPrinter
EndDocPrinter
DocumentPropertiesA
DocumentPropertiesW
DeviceCapabilitiesW
DeviceCapabilitiesA
ClosePrinter

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA
GetSaveFileNameW
ChooseColorA
ChooseFontA
ChooseFontW
PrintDlgA
PrintDlgW
CommDlgExtendedError

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

shell32

DragFinish
DragQueryFileA
DragQueryFileW
DragAcceptFiles
ShellExecuteA

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance

oleaut32

VariantClear
VariantCopy
VariantInit
SysReAllocStringLen
SysFreeString
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayRedim
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElement
SafeArrayCreate
SafeArrayAccessData
VariantChangeTypeEx

msvcrt

_controlfp
__set_app_type
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
??2@YAPAXI@Z
??3@YAXPAX@Z
__p__fmode

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cdata5
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.btls3
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 404KB - Virtual size: 401KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rmn1013
Size: 799KB - Virtual size: 799KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b0a52b16604e615d27eb1ef0ce3e20fd

Headers

File Characteristics

Imports

comctl32

version

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

msvcrt

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.cdata5 Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 4.0MB

.btls3 Size: 8KB - Virtual size: 4KB

.rsrc Size: 404KB - Virtual size: 401KB

rmn1013 Size: 799KB - Virtual size: 799KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.cdata5
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 4.0MB

.btls3
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 404KB - Virtual size: 401KB

rmn1013
Size: 799KB - Virtual size: 799KB