8da4c816c68ba62a39264d8ec3ba753f5d92bc080a7c0c240fdf438bb3e3f008

Sharing

Copy URL

Twitter E-mail

General

Target

8da4c816c68ba62a39264d8ec3ba753f5d92bc080a7c0c240fdf438bb3e3f008
Size

804KB
MD5

bd96e7e3a0b8093c3794eea3b1d25770
SHA1

5b1a819381192803968c532f0955baa5ca79164f
SHA256

8da4c816c68ba62a39264d8ec3ba753f5d92bc080a7c0c240fdf438bb3e3f008
SHA512

5b9609d8b2aa21bb6f0dc1f518595b4e3c20c08ff35d55b69e43cc2c96ec4bba66267168946d103b61b98c85450394a02a3dcc93da8047d92c4e379a8cf0630f
SSDEEP

12288:n6+l4iNQ/0MgrWFwcLUzOzmHGWJJpApO6c5miGHnepikBs1LY5IQD:n1JNQ/LUzOzaG/O6WGHnHMIL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8da4c816c68ba62a39264d8ec3ba753f5d92bc080a7c0c240fdf438bb3e3f008

Files

8da4c816c68ba62a39264d8ec3ba753f5d92bc080a7c0c240fdf438bb3e3f008
.exe windows:4 windows x86

6f5049def3712a9e345683c254d7c4fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadCodePtr
SetUnhandledExceptionFilter
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetStringTypeW
GetStringTypeA
LCMapStringW
GetProfileStringA
LCMapStringA
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapCreate
GetModuleFileNameA
HeapDestroy
GetEnvironmentVariableA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapSize
GetFileType
SetStdHandle
RaiseException
GetACP
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapFree
GetCommandLineA
GetStartupInfoA
TerminateProcess
ExitProcess
HeapAlloc
HeapReAlloc
RtlUnwind
WritePrivateProfileStringA
SetErrorMode
GetFileTime
GetFileSize
GetOEMCP
GetCPInfo
GetProcessVersion
SizeofResource
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetCurrentThread
lstrcmpA
GetProfileIntA
lstrlenW
GetThreadLocale
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
SetLastError
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
LockResource
FindResourceA
LoadResource
FileTimeToLocalFileTime
FileTimeToSystemTime
FormatMessageA
WideCharToMultiByte
GetTickCount
CopyFileA
GlobalAlloc
GlobalFree
IsBadReadPtr
FreeLibrary
LoadLibraryA
GetProcAddress
MulDiv
GlobalSize
GlobalLock
GlobalUnlock
GlobalReAlloc
GetVersionExA
DeleteFileA
FindFirstFileA
FindClose
GetFileAttributesA
lstrcpyA
LocalFree
lstrlenA
MultiByteToWideChar
GetLastError
InterlockedIncrement
InterlockedDecrement

user32

GetTabbedTextExtentA
FindWindowA
GetSysColorBrush
GetClassNameA
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
DestroyCursor
GetMessageA
TranslateMessage
ValidateRect
LoadStringA
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
DestroyMenu
GetDesktopWindow
SetRectEmpty
CharUpperA
EndPaint
BeginPaint
GetWindowDC
ShowWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
CheckRadioButton
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
SetScrollPos
GetTopWindow
IsChild
WinHelpA
RegisterClassA
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
GetWindowPlacement
PostThreadMessageA
EndDialog
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
wsprintfA
GetWindowRect
SendMessageA
EnableWindow
SystemParametersInfoA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetLastActivePopup
IsWindowEnabled
MessageBoxA
UnhookWindowsHookEx
IsRectEmpty
IsWindowVisible
GetFocus
GetDoubleClickTime
TranslateAcceleratorA
IsIconic
GetSystemMenu
AppendMenuA
GetMenu
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
MessageBeep
GetDCEx
LockWindowUpdate
RegisterClipboardFormatA
GetScrollPos
SetParent
DeleteMenu
LoadAcceleratorsA
EnableMenuItem
LoadMenuA
GetMenuItemCount
GetMenuItemID
GetMenuStringA
ModifyMenuA
GetSubMenu
GetIconInfo
DestroyIcon
DrawIcon
LoadIconA
ClientToScreen
WindowFromPoint
GetActiveWindow
LoadBitmapA
ReleaseDC
GetDC
DrawTextA
DrawEdge
InflateRect
FrameRect
FillRect
GetSysColor
SetCursor
LoadCursorA
SetRect
IsWindow
DefWindowProcA
GetClassInfoA
GetParent
IntersectRect
GetKeyState
KillTimer
GetClientRect
ScreenToClient
GetCursorPos
InvalidateRect
IsClipboardFormatAvailable
TabbedTextOutA
GrayStringA
GetSystemMetrics
GetMessagePos
PostMessageA
InvertRect
PtInRect
SetTimer
ClipCursor
SetCapture
ReleaseCapture
GetCapture
SetWindowRgn
GetWindowLongA
CopyRect
GetNextDlgTabItem
MoveWindow

gdi32

GetViewportExtEx
GetWindowExtEx
GetMapMode
SetRectRgn
DPtoLP
SetAbortProc
StretchDIBits
GetCharWidthA
GetViewportOrgEx
CopyMetaFileA
LPtoDP
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
GetCurrentPositionEx
SetTextAlign
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectObject
RestoreDC
SaveDC
CombineRgn
CreateSolidBrush
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CreateRectRgnIndirect
PatBlt
CreateDCA
Rectangle
GetStockObject
DeleteObject
CreatePatternBrush
FrameRgn
CreateRoundRectRgn
CreateRectRgn
CreateEllipticRgn
CreateFontA
StartDocA
StartPage
EndPage
EndDoc
AbortDoc
GetObjectA
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreatePen
CreateCompatibleDC
CreateCompatibleBitmap
GetBkColor
BitBlt
GetDeviceCaps
GetTextMetricsA
GetCurrentObject
GetTextExtentPointA
CreateDIBitmap
GetTextExtentPoint32A
CreateFontIndirectA
DeleteDC

comdlg32

GetOpenFileNameA
CommDlgExtendedError
GetFileTitleA
PrintDlgA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA

shell32

DragQueryFileA
DragFinish
ShellExecuteA

comctl32

ImageList_AddMasked
ImageList_Draw
_TrackMouseEvent
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_GetImageInfo
ord17

oledlg

ord8

ole32

OleDuplicateData
CoTaskMemAlloc
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
CoTaskMemFree
ReleaseStgMedium
OleUninitialize
OleInitialize
CLSIDFromString
CLSIDFromProgID
CoUninitialize
CoCreateInstance
OleRun
CoInitialize
CreateStreamOnHGlobal
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
CoRegisterMessageFilter
DoDragDrop
CoRevokeClassObject

olepro32

ord253

oleaut32

SysFreeString
SysAllocStringByteLen
SysStringLen
VariantClear
SysStringByteLen
VariantCopy
VariantInit
SysAllocString
VariantChangeType
SysAllocStringLen
VariantTimeToSystemTime
GetErrorInfo

Sections

.text
Size: 444KB - Virtual size: 441KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f5049def3712a9e345683c254d7c4fa

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 444KB - Virtual size: 441KB

.rdata Size: 92KB - Virtual size: 88KB

.data Size: 32KB - Virtual size: 47KB

.rsrc Size: 232KB - Virtual size: 230KB

.text
Size: 444KB - Virtual size: 441KB

.rdata
Size: 92KB - Virtual size: 88KB

.data
Size: 32KB - Virtual size: 47KB

.rsrc
Size: 232KB - Virtual size: 230KB