5700e9fcde20316d9c5e0b499a20cd7945f798006b0d1273361000f8773369a6

Sharing

Copy URL Twitter E-mail

General

Target

5700e9fcde20316d9c5e0b499a20cd7945f798006b0d1273361000f8773369a6
Size

2.2MB
MD5

51a1f5d5d8f5617b4306af38eefbfef2
SHA1

896e19a4dc08fd70da0ce9f43d7db9c472ffd13f
SHA256

5700e9fcde20316d9c5e0b499a20cd7945f798006b0d1273361000f8773369a6
SHA512

71486fd2d83d27707a7f8891989ca2188362f28d45a38a8be937f67ede795ad01f8250051912b1a899fedb3eff0dc5f7b2583c5d8851f9821257ba991ec587a6
SSDEEP

49152:9zhsT9UBeUxcBQ6TYpNr4+A16CMjjKBaGJsuhw172cxZU3fQ:91sT9UBeUCVTYpNA16VvuaGJsuhw17t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5700e9fcde20316d9c5e0b499a20cd7945f798006b0d1273361000f8773369a6

Files

5700e9fcde20316d9c5e0b499a20cd7945f798006b0d1273361000f8773369a6
.exe windows:6 windows x86

c14a91fa5d9481d24964aae5783aea5d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

uwc4000

ord133
ord6
ord17
ord73
ord80
ord27
ord78
ord3
ord14
ord15
ord4
ord148
ord64
ord5
ord7
ord8
ord70
ord11
ord12
ord13
ord16
ord20
ord23
ord24
ord150
ord149
ord31
ord91
ord63
ord65
ord10
ord71
ord59
ord1
ord2

winmm

PlaySoundA
timeGetTime

kernel32

VirtualProtect
FindResourceExW
GetUserDefaultUILanguage
GetSystemTimeAsFileTime
RtlUnwind
EncodePointer
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
HeapFree
VerifyVersionInfoA
GetCommandLineA
HeapAlloc
SetThreadStackGuarantee
GetSystemInfo
VirtualAlloc
VirtualQuery
HeapReAlloc
CreateThread
ExitThread
ExitProcess
GetModuleHandleExW
AreFileApisANSI
SetStdHandle
GetFileType
HeapSize
HeapQueryInformation
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
TerminateProcess
GetStartupInfoW
IsValidCodePage
GetConsoleCP
GetConsoleMode
InitOnceExecuteOnce
SetFilePointerEx
GetProcessHeap
GetStringTypeW
QueryPerformanceCounter
GetTickCount64
GetEnvironmentStringsW
FreeEnvironmentStringsW
ReadConsoleW
OutputDebugStringW
GetTimeFormatEx
GetDateFormatEx
CompareStringEx
GetUserDefaultLocaleName
LCMapStringEx
IsValidLocaleName
EnumSystemLocalesEx
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
VerSetConditionMask
GetTickCount
lstrcpyA
GetWindowsDirectoryA
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
GetACP
GetCPInfo
GetOEMCP
GlobalFlags
FileTimeToSystemTime
InterlockedIncrement
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
SearchPathA
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetThreadLocale
GetVolumeInformationA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
CreateFileA
GetCurrentProcessId
WritePrivateProfileStringA
GetPrivateProfileIntA
GetLocaleInfoEx
GetThreadPreferredUILanguages
ApplicationRecoveryFinished
ApplicationRecoveryInProgress
RegisterApplicationRestart
RegisterApplicationRecoveryCallback
lstrcmpA
GetModuleFileNameA
GetVersionExA
GetCurrentThread
InterlockedExchange
ResumeThread
SuspendThread
SetThreadPriority
CreateEventA
WaitForSingleObject
SetEvent
CloseHandle
InterlockedDecrement
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
LoadLibraryW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
FreeLibrary
GetVersion
GetCurrentThreadId
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
OutputDebugStringA
GetFileAttributesW
MultiByteToWideChar
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
GetLastError
WritePrivateProfileStringW
GetPrivateProfileStringA
GetCurrentDirectoryA
WideCharToMultiByte
FindResourceW
SizeofResource
LockResource
LoadResource
Beep
Sleep
GetProfileIntA
GetTempFileNameA
TlsFree
GetTempPathA
RaiseException
InitializeCriticalSectionEx

user32

TrackMouseEvent
LoadMenuW
GetComboBoxInfo
IsZoomed
GetSystemMenu
PostThreadMessageA
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
SetParent
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
SetCursorPos
LockWindowUpdate
SetClassLongA
ChangeWindowMessageFilter
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuA
CharUpperBuffA
FrameRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
IsClipboardFormatAvailable
GetUpdateRect
SubtractRect
CreateMenu
DestroyCursor
GetWindowRgn
EnableScrollBar
GetAsyncKeyState
GetIconInfo
DrawIconEx
LoadImageA
SetRectEmpty
DrawFocusRect
GetMenuDefaultItem
CreatePopupMenu
MessageBeep
GetNextDlgGroupItem
IsRectEmpty
SetRect
InvalidateRgn
CopyAcceleratorTableA
OffsetRect
CharNextA
LoadCursorW
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
DestroyIcon
InvalidateRect
DeleteMenu
IntersectRect
UnregisterClassA
CopyImage
SystemParametersInfoA
InflateRect
GetMenuItemInfoA
DestroyMenu
RealChildWindowFromPoint
LoadCursorA
GetSysColorBrush
CharUpperA
MapDialogRect
SetWindowContextHelpId
GetWindowThreadProcessId
SetCursor
ShowOwnedPopups
PostQuitMessage
TranslateMessage
GetMessageA
MapVirtualKeyA
GetKeyNameTextA
FillRect
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
MonitorFromPoint
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
InvertRect
SendDlgItemMessageA
CheckDlgButton
SetDlgItemTextA
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxA
AdjustWindowRectEx
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
LoadBitmapW
GetParent
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
GetWindow
GetWindowLongA
GetWindowTextLengthA
GetWindowTextA
GetScrollPos
SetScrollPos
SetFocus
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
LoadIconW
GetCursorPos
GetWindowRect
UpdateLayeredWindow
IsMenu
UnionRect
SetWindowRgn
DrawFrameControl
DrawEdge
LoadImageW
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
RegisterClipboardFormatA
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
EndDialog
NotifyWinEvent
GetClientRect
DrawIcon
GetSystemMetrics
KillTimer
SetTimer
IsIconic
EnableWindow
SendMessageA
HideCaret
IsWindowEnabled

gdi32

CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
MoveToEx
TextOutA
ExtTextOutA
SetTextAlign
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CreateFontIndirectA
GetTextExtentPoint32A
GetTextMetricsA
CombineRgn
GetMapMode
SetRectRgn
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
CreateHatchBrush
RealizePalette
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExA
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceA
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
CreateCompatibleDC
BitBlt
GetObjectA
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
CreateDCA
CopyMetaFileA
GetSystemPaletteEntries
CreateFontA
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

DragFinish
SHGetFileInfoA
SHCreateItemFromParsingName
SHGetKnownFolderPath
SHGetPathFromIDListA
SHAppBarMessage
SHBrowseForFolderA
DragQueryFileA
ShellExecuteA
SHGetDesktopFolder
SHGetSpecialFolderLocation

shlwapi

PathFindExtensionA
PathIsUNCA
PathStripToRootA
PathRemoveFileSpecW
PathFindFileNameA
StrFormatKBSizeA

uxtheme

GetThemeSysColor
GetThemePartSize
IsAppThemed
GetWindowTheme
DrawThemeParentBackground
DrawThemeTextEx
BufferedPaintInit
BufferedPaintUnInit
BeginBufferedPaint
EndBufferedPaint
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsThemeBackgroundPartiallyTransparent

dwmapi

DwmIsCompositionEnabled
DwmSetWindowAttribute
DwmDefWindowProc

ole32

DoDragDrop
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CreateStreamOnHGlobal
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
IsAccelerator
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
OleTranslateAccelerator
OleDestroyMenuDescriptor
CoTaskMemFree
CoTaskMemAlloc
OleCreateMenuDescriptor
OleLockRunning

oleaut32

SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SafeArrayDestroy
SystemTimeToVariantTime
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
SysAllocString
VariantTimeToSystemTime
SysAllocStringByteLen
SysFreeString

oledlg

ord8

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipFree
GdipAlloc
GdipDrawImageRectI

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 334KB - Virtual size: 334KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 225KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c14a91fa5d9481d24964aae5783aea5d

Headers

DLL Characteristics

File Characteristics

Imports

uwc4000

winmm

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

dwmapi

ole32

oleaut32

oledlg

oleacc

gdiplus

imm32

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 334KB - Virtual size: 334KB

.data Size: 27KB - Virtual size: 1.1MB

.rsrc Size: 225KB - Virtual size: 224KB

.reloc Size: 184KB - Virtual size: 183KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 334KB - Virtual size: 334KB

.data
Size: 27KB - Virtual size: 1.1MB

.rsrc
Size: 225KB - Virtual size: 224KB

.reloc
Size: 184KB - Virtual size: 183KB