daa2a0f5a6eace604b358e2f22e5b2b0_exe32[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

daa2a0f5a6eace604b358e2f22e5b2b0_exe32.exe
Size

260KB
MD5

daa2a0f5a6eace604b358e2f22e5b2b0
SHA1

71c5b81a22c5da41039081cc40e4378381b121b2
SHA256

0aa606d6e66b1dbeff0299300ec0a4ec828ad751d38f2604b361a16d6bebf3fd
SHA512

fde93efb94c0d878fa7d8e76dc5e40f4769d6f932fe775656c370faf644a07f202cd4fc13fa4714d8a833abe47c7d3ce6adbc767d7ed2cf6e989435246b702c5
SSDEEP

3072:k9oCnIKyKdGcMRQ9YF1KrSooL2qvBZPeSLHHHHHHHHHHHHHHHHQHZ:k9snAG5FvZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
daa2a0f5a6eace604b358e2f22e5b2b0_exe32.exe

Files

daa2a0f5a6eace604b358e2f22e5b2b0_exe32.exe
.exe windows:4 windows x86

5fa83d78dbaa47d3092a3c433ffda36b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

cfgmgr32

CM_Get_Device_ID_ListA
CM_Get_Device_ID_List_SizeA
CM_Get_Device_IDA
CM_Locate_DevNodeA
CM_Open_DevNode_Key
CM_Get_DevNode_Status
CM_Get_Device_ID_ExA
CM_Get_Device_Interface_List_SizeA
CM_Get_Device_Interface_ListA
CM_Get_Sibling
CM_Query_And_Remove_SubTreeA
CM_Reenumerate_DevNode
CM_Get_Child
CM_Get_DevNode_Registry_PropertyA

kernel32

RtlUnwind
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
RaiseException
HeapReAlloc
HeapSize
GetACP
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetProfileStringA
GetVersion
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetSystemDefaultLCID
GetExitCodeThread
lstrcmpiA
LocalFree
GetVolumeNameForVolumeMountPointA
lstrcpynA
lstrlenA
LocalAlloc
InitializeCriticalSection
CreateMutexA
GetLastError
CloseHandle
DeviceIoControl
CreateFileA
FreeLibrary
GetProcAddress
LoadLibraryA
CreateThread
lstrcmpA
GetCurrentThreadId
GetCurrentThread
GlobalDeleteAtom
GlobalAlloc
GlobalLock
GetModuleFileNameA
GetModuleHandleA
lstrcpyA
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
lstrcatA
LoadResource
FindResourceA
GlobalUnlock
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
MultiByteToWideChar
TlsAlloc
GlobalFree
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
WritePrivateProfileStringA
SetLastError
GetProcessVersion
GetCPInfo
GetOEMCP
SetErrorMode
GetCurrentProcess
WriteFile
SetFilePointer
FlushFileBuffers
SizeofResource

user32

GetClientRect
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetFocus
SetActiveWindow
GetSysColor
MapWindowPoints
UpdateWindow
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
LoadStringA
GetClassNameA
PtInRect
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
GetSysColorBrush
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
BeginDeferWindowPos
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
SetCursor
ShowOwnedPopups
PostQuitMessage
CreatePopupMenu
DialogBoxParamA
GetWindowLongA
SetWindowLongA
SendMessageA
SetDlgItemTextA
GetDlgItem
SendDlgItemMessageA
EnableWindow
ShowWindow
SetWindowTextA
GetDlgItemTextA
EndDialog
GetWindowRect
GetDesktopWindow
UnregisterClassA
HideCaret
MoveWindow
BroadcastSystemMessageA
MessageBoxA
LoadImageA
InsertMenuItemA
GetCursorPos
SetForegroundWindow
TrackPopupMenu
IsWindow
CopyRect
EndDeferWindowPos
UnhookWindowsHookEx
WinHelpA
LoadIconA
RegisterDeviceNotificationA
FindWindowA
GetTopWindow
GetPropA
GetCapture
PostMessageA
IsWindowUnicode
CharNextA
InflateRect
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
LoadBitmapA

gdi32

GetTextExtentPointA
BitBlt
CreateCompatibleDC
PatBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateSolidBrush
GetDeviceCaps
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
SelectObject
RestoreDC
SaveDC
DeleteDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetStockObject
DeleteObject
CreateDIBitmap

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA

shell32

DragQueryFileA
DragFinish
Shell_NotifyIconA

comctl32

ord17
PropertySheetA

setupapi

SetupDiCallClassInstaller
CM_Request_Device_EjectA
SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList
SetupDiSetClassInstallParamsA

Sections

.text
Size: 120KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5fa83d78dbaa47d3092a3c433ffda36b

Headers

File Characteristics

Imports

cfgmgr32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

setupapi

Sections

.text Size: 120KB - Virtual size: 116KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 8KB - Virtual size: 23KB

.rsrc Size: 103KB - Virtual size: 100KB

.text
Size: 120KB - Virtual size: 116KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 8KB - Virtual size: 23KB

.rsrc
Size: 103KB - Virtual size: 100KB