9fc8f67f6570c9fc91f29046dd479445759d8536265efa9ca002c3572d6d30f2

Sharing

Copy URL

Twitter E-mail

General

Target

9fc8f67f6570c9fc91f29046dd479445759d8536265efa9ca002c3572d6d30f2
Size

9.0MB
MD5

2e0cda9fc4ec5825448161d3f6af0906
SHA1

8f3b57f7ddf7a00e435f372d9013214c24b45b7f
SHA256

9fc8f67f6570c9fc91f29046dd479445759d8536265efa9ca002c3572d6d30f2
SHA512

9ded8989748ed83e0abbb30e1ca08870b6c231aaae70749fbdbe558b09d8b2df600f968479a8f73ea26e6b1c6d0ff4cc5b6fc23eb4be856d95e27c42f2eb7d8c
SSDEEP

98304:k2/1r91ACJda/Bg3DziUHWumVMPnkqFVwMmJTMNmlFU10dR8NzpKkvz:k2/FYCJcyziUHoWv/FKRJANSFNEpdv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9fc8f67f6570c9fc91f29046dd479445759d8536265efa9ca002c3572d6d30f2

Files

9fc8f67f6570c9fc91f29046dd479445759d8536265efa9ca002c3572d6d30f2
.exe windows:6 windows x86

21621185b92397f2465af0316fd846dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
WaitForSingleObjectEx
CreateEventW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
VirtualQuery
OutputDebugStringW
RtlUnwind
GetModuleHandleExW
GetSystemInfo
VirtualAlloc
HeapValidate
GetCommandLineA
GetCommandLineW
CreateThread
ExitThread
FreeLibraryAndExitThread
HeapQueryInformation
QueryPerformanceFrequency
GetStdHandle
GetFileType
WriteConsoleW
SetStdHandle
CompareStringW
LCMapStringW
GetStringTypeW
GetTimeZoneInformation
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
CreateFileW
GetTempFileNameA
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
FindResourceExW
GetVolumeInformationA
GetCurrentProcess
GetWindowsDirectoryA
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
GetACP
VerifyVersionInfoA
lstrcpyA
VerSetConditionMask
GetCurrentDirectoryA
GetProfileIntA
FileTimeToSystemTime
GetCPInfo
GetOEMCP
VirtualProtect
SetErrorMode
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetAtomNameA
WaitForSingleObject
SetEvent
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
GetTickCount
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
GetModuleFileNameA
GetVersionExA
GetCurrentThread
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
ResumeThread
SetThreadPriority
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
FreeResource
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
SearchPathA
GetTempPathA
GetHandleInformation
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
HeapFree
ExitProcess
DeleteFileA
Sleep
WriteFile
CreateFileA
FindResourceA
GetModuleHandleA
OpenProcess
LoadLibraryA
GetProcAddress
Process32Next
CloseHandle
Process32First
CreateToolhelp32Snapshot
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
SetLastError
MultiByteToWideChar
InitializeCriticalSectionEx
GetLastError
EnterCriticalSection
lstrcmpiA
LeaveCriticalSection

user32

DestroyMenu
SetRectEmpty
IntersectRect
OffsetRect
DestroyIcon
LoadImageA
UnpackDDElParam
ReuseDDElParam
GetSystemMetrics
InflateRect
SystemParametersInfoA
CopyImage
RealChildWindowFromPoint
GetClipboardFormatNameA
GetAsyncKeyState
GetKeyNameTextA
MapVirtualKeyA
SetRect
LoadAcceleratorsW
CopyAcceleratorTableA
IsRectEmpty
MessageBeep
SetLayeredWindowAttributes
EnumDisplayMonitors
TrackMouseEvent
CharUpperA
UpdateLayeredWindow
UnionRect
MonitorFromPoint
LoadImageW
DrawIconEx
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
CreateAcceleratorTableA
DestroyAcceleratorTable
SetCursorPos
SetClassLongA
CloseClipboard
SetClipboardData
EmptyClipboard
CharUpperBuffA
CopyIcon
WaitMessage
GetIconInfo
IsClipboardFormatAvailable
GetDoubleClickTime
IsCharLowerA
MapVirtualKeyExA
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
DestroyCursor
GetComboBoxInfo
ShowWindow
GetMenuCheckMarkDimensions
NotifyWinEvent
MapDialogRect
LoadCursorW
GetLastActivePopup
SetParent
GetDesktopWindow
WindowFromPoint
ClientToScreen
HideCaret
EnableScrollBar
ShowScrollBar
LockWindowUpdate
RedrawWindow
ValidateRect
InvalidateRect
GetWindowRgn
SetWindowRgn
GetUpdateRect
ReleaseDC
GetWindowDC
GetDC
SetForegroundWindow
GetForegroundWindow
UpdateWindow
GetSystemMenu
DrawMenuBar
EnableWindow
KillTimer
SetTimer
SetCapture
GetActiveWindow
OpenClipboard
GetNextDlgTabItem
GetNextDlgGroupItem
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
GetWindowThreadProcessId
TranslateAcceleratorA
ShowOwnedPopups
PostThreadMessageA
PostMessageA
LoadBitmapW
InvertRect
FrameRect
FillRect
DrawFocusRect
GetSysColorBrush
TabbedTextOutA
DrawStateA
GrayStringA
DrawTextExA
DrawTextA
DrawIcon
SetMenuDefaultItem
GetMenuDefaultItem
SetMenuItemInfoA
GetMenuItemInfoA
InsertMenuItemA
SetMenuItemBitmaps
DeleteMenu
RemoveMenu
ModifyMenuA
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
EnableMenuItem
CheckMenuItem
CreatePopupMenu
CreateMenu
GetMenuState
GetMenuStringA
LoadMenuW
LoadMenuA
DrawFrameControl
DrawEdge
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetWindow
GetTopWindow
GetClassNameA
GetParent
GetClassLongA
SetWindowLongA
GetWindowLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxA
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
EndPaint
BeginPaint
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
PostQuitMessage
DefWindowProcA
SendMessageA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
LoadCursorA
UnregisterClassA
RegisterClipboardFormatA
LoadAcceleratorsA
IsDialogMessageA
ReleaseCapture
SetCursor
TranslateMessage
GetMessageA
GetCursorPos
EndDialog
CreateDialogIndirectParamA
SetWindowTextA
IsWindowEnabled
SendDlgItemMessageA
CheckDlgButton
MoveWindow

gdi32

GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
OffsetRgn
PatBlt
SetTextColor
BitBlt
DeleteObject
DeleteDC
SelectObject
StretchBlt
SetDIBColorTable
GetObjectA
CreateDIBSection
PtInRegion
GetTextExtentPoint32A
CombineRgn
CreateBitmap
GetStockObject
CreateCompatibleBitmap
CreateDCA
CreateEllipticRgn
CreateFontIndirectA
CreateHatchBrush
CreateCompatibleDC
GetTextColor
CreatePalette
CreatePen
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
Ellipse
Escape
ExtFloodFill
FillRgn
FrameRgn
GetBkColor
GetBoundsRect
GetRgnBox
GetPixel
GetPaletteEntries
GetObjectType
GetNearestPaletteIndex
SetBkColor
GetSystemPaletteEntries
EnumFontFamiliesExA
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
PtVisible
RectVisible
Rectangle
RealizePalette
RoundRect
SetPaletteEntries
SetPixel
SetPixelV
SetRectRgn
GetTextMetricsA
TextOutA
ExtTextOutA
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
GetTextFaceA
CopyMetaFileA
ExcludeClipRect
GetClipBox
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
GetDeviceCaps
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegEnumKeyA
RegQueryValueA
RegEnumValueA
RegEnumKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

shell32

DragFinish
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
SHBrowseForFolderA
ShellExecuteA
DragQueryFileA

ole32

CreateStreamOnHGlobal
DoDragDrop
OleGetClipboard
OleIsCurrentClipboard
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleFlushClipboard
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoCreateInstance
CoUninitialize
CoRevokeClassObject
CoInitializeEx
CoDisconnectObject
OleUninitialize
CoFreeUnusedLibraries
CoCreateGuid
ReleaseStgMedium
OleDuplicateData

oleaut32

LoadTypeLi
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringByteLen
VariantChangeType
VariantCopy
SysAllocString
SysFreeString
VariantClear
VariantInit
VarBstrFromDate
SysAllocStringLen

msimg32

TransparentBlt
AlphaBlend

shlwapi

PathIsUNCA
PathRemoveFileSpecW
PathFindFileNameA
PathFindExtensionA
PathStripToRootA
StrFormatKBSizeA

uxtheme

GetThemeSysColor
GetCurrentThemeName
GetThemeColor
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeText
IsAppThemed
GetThemePartSize

gdiplus

GdipGetImageHeight
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipGetImagePixelFormat
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipDrawImageI
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipDisposeImage
GdipFree
GdipAlloc
GdiplusStartup
GdiplusShutdown
GdipCloneImage

winmm

PlaySoundA

oleacc

CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 429KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.2MB - Virtual size: 5.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

21621185b92397f2465af0316fd846dc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

msimg32

shlwapi

uxtheme

gdiplus

winmm

oleacc

imm32

winspool.drv

Sections

.text Size: 3.2MB - Virtual size: 3.2MB

.rdata Size: 429KB - Virtual size: 428KB

.data Size: 20KB - Virtual size: 48KB

.rsrc Size: 5.2MB - Virtual size: 5.2MB

.reloc Size: 183KB - Virtual size: 183KB

.text
Size: 3.2MB - Virtual size: 3.2MB

.rdata
Size: 429KB - Virtual size: 428KB

.data
Size: 20KB - Virtual size: 48KB

.rsrc
Size: 5.2MB - Virtual size: 5.2MB

.reloc
Size: 183KB - Virtual size: 183KB