500a703a09d85f8e2426dbc56d66897fad125f9c4da0455cf52343a895602ebd

Sharing

Copy URL Twitter E-mail

General

Target

500a703a09d85f8e2426dbc56d66897fad125f9c4da0455cf52343a895602ebd
Size

4.0MB
MD5

f48b35beada236353fd804618191b247
SHA1

61b554295d407e3f75462eac0022931291a56a7c
SHA256

500a703a09d85f8e2426dbc56d66897fad125f9c4da0455cf52343a895602ebd
SHA512

1bcc893d0aa1b345075ee0c765b4bf2a190400f2ccf3b66bd442384e0e54494fe98a7e8ac7a8cff56dc44269c47e5b2162cff1513ec571546ba8a65807d7951e
SSDEEP

49152:T1x60XwvP2BKhZT248sOQtCSqNtLIo4vFPdwIA/10IuX06sNlEhGFzv:lgpqXQx09/Q0VN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
500a703a09d85f8e2426dbc56d66897fad125f9c4da0455cf52343a895602ebd

Files

500a703a09d85f8e2426dbc56d66897fad125f9c4da0455cf52343a895602ebd
.dll windows:6 windows x86

2d670fdd694079e0bb8a1271b6be1a2c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetStringTypeW
RtlUnwind
InterlockedFlushSList
GetModuleHandleExW
HeapValidate
GetSystemInfo
GetCommandLineA
GetCommandLineW
CreateThread
ExitThread
FreeLibraryAndExitThread
VirtualAlloc
HeapQueryInformation
GetStdHandle
GetFileType
WriteConsoleW
QueryPerformanceFrequency
SetStdHandle
SetFilePointerEx
GetConsoleOutputCP
GetConsoleMode
ReadConsoleW
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
CreateFileW
VirtualQuery
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
Sleep
SearchPathA
GetTickCount
GetTempPathA
VerifyVersionInfoA
VerSetConditionMask
GetWindowsDirectoryA
lstrcpyA
FindResourceExW
GetACP
GetCPInfo
GetOEMCP
GetUserDefaultLCID
GetTempFileNameA
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetVolumeInformationA
CompareStringW
GetCurrentProcess
GetHandleInformation
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
CreateFileA
VirtualProtect
GetProfileIntA
GlobalFindAtomA
lstrcmpW
GetAtomNameA
GlobalGetAtomNameA
FreeResource
DeleteFileA
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryA
ResumeThread
SetThreadPriority
FindResourceA
GetSystemDirectoryW
EncodePointer
CopyFileA
FormatMessageA
MulDiv
GlobalSize
LoadLibraryA
SetErrorMode
LocalFree
LocalReAlloc
LocalAlloc
GlobalFree
GlobalUnlock
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
GlobalAddAtomA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
WaitForSingleObject
CloseHandle
CompareStringA
WideCharToMultiByte
lstrcmpA
GlobalDeleteAtom
GlobalLock
GlobalAlloc
LoadLibraryW
FindResourceW
SizeofResource
LockResource
LoadResource
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
FreeLibrary
GetVersionExA
GetCurrentThreadId
GetCurrentThread
OutputDebugStringA
LCMapStringW
SwitchToThread
lstrcmpiA
OutputDebugStringW
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
MultiByteToWideChar
HeapSize
InitializeCriticalSectionEx
SetLastError
HeapFree
ExitProcess

user32

GetKeyNameTextA
MapVirtualKeyA
IsRectEmpty
UnionRect
TrackMouseEvent
LoadImageW
DrawIconEx
GetIconInfo
MessageBeep
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongA
CloseClipboard
SetClipboardData
EmptyClipboard
SetCursorPos
CopyIcon
UpdateLayeredWindow
MonitorFromPoint
GetComboBoxInfo
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
GetDoubleClickTime
RegisterClipboardFormatA
CharUpperBuffA
IsClipboardFormatAvailable
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
DestroyCursor
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
GetClassLongA
SetWindowLongA
EqualRect
AdjustWindowRectEx
GetWindowTextLengthA
RemovePropA
GetPropA
SetPropA
ScrollWindow
SetMenu
GetMenu
SetFocus
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
CreateWindowExA
GetClassInfoExA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
SetRectEmpty
DestroyMenu
LoadAcceleratorsW
GetClassInfoA
RealChildWindowFromPoint
GetClassNameA
PtInRect
GetWindowTextA
SetWindowTextA
GetDlgCtrlID
NotifyWinEvent
LoadIconW
LoadIconA
LoadCursorW
LoadCursorA
GetWindow
GetTopWindow
SetParent
GetDesktopWindow
WindowFromPoint
MapWindowPoints
HideCaret
GetWindowRect
EnableScrollBar
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
ReuseDDElParam
LockWindowUpdate
RedrawWindow
InvalidateRect
GetWindowRgn
SetWindowRgn
GetUpdateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
GetSystemMenu
DrawMenuBar
KillTimer
SetTimer
SetCapture
GetCapture
GetActiveWindow
OpenClipboard
GetNextDlgTabItem
GetNextDlgGroupItem
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
ShowOwnedPopups
IsChild
PostThreadMessageA
SystemParametersInfoA
CopyImage
GetClientRect
CopyRect
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
InvertRect
FrameRect
FillRect
DrawFocusRect
GetSysColorBrush
DrawStateA
GrayStringA
DrawTextExA
DrawTextA
DrawIcon
SetMenuDefaultItem
GetMenuDefaultItem
SetMenuItemInfoA
GetMenuItemInfoA
InsertMenuItemA
DeleteMenu
RemoveMenu
ModifyMenuA
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
EnableMenuItem
CheckMenuItem
CreatePopupMenu
CreateMenu
GetMenuState
GetMenuStringA
LoadMenuW
LoadMenuA
IsMenu
DrawFrameControl
DrawEdge
UnhookWindowsHookEx
GetLastActivePopup
GetWindowThreadProcessId
GetParent
GetWindowLongA
IsWindowEnabled
EnableWindow
SetCursor
CallNextHookEx
SetWindowsHookExA
GetCursorPos
ValidateRect
GetKeyState
DispatchMessageA
TranslateMessage
GetMessageA
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetFocus
MapDialogRect
TabbedTextOutA
IsWindow
PostMessageA
SendMessageA
PostQuitMessage
PeekMessageA
MessageBoxA
UnregisterClassA
LoadImageA
IntersectRect
TranslateAcceleratorA
LoadAcceleratorsA
CharUpperA
DestroyIcon
GetClipboardFormatNameA
UnpackDDElParam
GetAsyncKeyState
InflateRect
ReleaseCapture
GetSystemMetrics
OffsetRect
SetRect
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SendDlgItemMessageA
SetScrollPos
TrackPopupMenu

msimg32

AlphaBlend
TransparentBlt

shlwapi

PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
PathFindFileNameA
PathFindExtensionA
StrFormatKBSizeA

uxtheme

GetWindowTheme
GetCurrentThemeName
GetThemeColor
DrawThemeParentBackground
IsAppThemed
GetThemeSysColor
GetThemePartSize
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeText
IsThemeBackgroundPartiallyTransparent

crypt32

CryptEnumOIDInfo

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipCreateFromHDC
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipDeleteGraphics
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

gdi32

CreateBitmap
BitBlt
CombineRgn
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateEllipticRgn
CreateFontIndirectA
ExtTextOutA
CreateHatchBrush
CreatePalette
CreatePen
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
Ellipse
Escape
ExtFloodFill
FillRgn
FrameRgn
GetBkColor
GetBoundsRect
GetNearestPaletteIndex
GetDeviceCaps
GetObjectType
GetPaletteEntries
GetPixel
GetRgnBox
GetStockObject
GetTextColor
GetTextExtentPoint32A
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
OffsetRgn
PatBlt
PtInRegion
PtVisible
RectVisible
Rectangle
RealizePalette
RoundRect
SelectObject
SetPaletteEntries
SetPixel
SetPixelV
StretchBlt
SetRectRgn
GetTextMetricsA
GetObjectA
TextOutA
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
GetTextFaceA
CopyMetaFileA
DeleteDC
DeleteObject
ExcludeClipRect
GetClipBox
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
EnumFontFamiliesExA
GetSystemPaletteEntries
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
CreateDIBSection
SetDIBColorTable

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegEnumKeyA
RegQueryValueA
RegEnumValueA
RegEnumKeyExA
RegOpenKeyExA

shell32

SHGetFileInfoA
DragQueryFileA
DragFinish
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
SHBrowseForFolderA
SHAppBarMessage

ole32

RevokeDragDrop
OleLockRunning
CoLockObjectExternal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoUninitialize
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoCreateGuid
CoCreateInstance
RegisterDragDrop
CoInitialize
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
CoDisconnectObject
CoInitializeEx
ReleaseStgMedium
OleDuplicateData

oleaut32

VariantChangeType
LoadTypeLi
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantInit
SysAllocStringByteLen
VariantCopy
VarBstrFromDate
VariantClear
SysFreeString
SysAllocString
SysAllocStringLen

Exports

Exports

dsAdjustColor
dsExitSkin
dsGetColor
dsInitKeys
dsInvalidateRect
dsLoadSkin
dsLockState
dsSetDrawItemValue
dsSetSelfPaint
dsSkinWindow
dsTrackPopupMenu

Sections

.text
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 472KB - Virtual size: 472KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d670fdd694079e0bb8a1271b6be1a2c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

msimg32

shlwapi

uxtheme

crypt32

oleacc

gdiplus

imm32

winmm

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 3.3MB - Virtual size: 3.3MB

.rdata Size: 472KB - Virtual size: 472KB

.data Size: 21KB - Virtual size: 50KB

.rsrc Size: 12KB - Virtual size: 12KB

.reloc Size: 188KB - Virtual size: 188KB

.text
Size: 3.3MB - Virtual size: 3.3MB

.rdata
Size: 472KB - Virtual size: 472KB

.data
Size: 21KB - Virtual size: 50KB

.rsrc
Size: 12KB - Virtual size: 12KB

.reloc
Size: 188KB - Virtual size: 188KB