55d5df90719fd3808928cb96007e72decff77f057f746771d191c6bc61518d38

Sharing

Copy URL Twitter E-mail

General

Target

55d5df90719fd3808928cb96007e72decff77f057f746771d191c6bc61518d38
Size

6.8MB
MD5

c0c345ae48371b5f9442197c4feec28e
SHA1

af91937d8b82f33330e943908a495490444e7b8b
SHA256

55d5df90719fd3808928cb96007e72decff77f057f746771d191c6bc61518d38
SHA512

f56256df1a943707814f2e741cf4dab6fcf4e565d289b2c0ad30332f100f8ebfa8206331a03c42add7f3b9551015d08b897f48d6df53c32c6962138fcbbec733
SSDEEP

196608:+SRiQcGdSEYkXiNjH4or1QmtSNTKNEo/A7V2:+MRAf8tP7V2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55d5df90719fd3808928cb96007e72decff77f057f746771d191c6bc61518d38

Files

55d5df90719fd3808928cb96007e72decff77f057f746771d191c6bc61518d38
.exe windows:6 windows x86

ab14fbe35c7902d9c3f4987ab2718d71

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

IsValidCodePage
FindNextFileW
FindFirstFileExW
GetDriveTypeW
GetStringTypeW
ReadConsoleW
DeleteFileW
LCMapStringW
CompareStringW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
QueryPerformanceFrequency
FreeEnvironmentStringsW
GetFullPathNameW
GetFileType
SetStdHandle
FreeLibraryAndExitThread
ExitThread
VirtualQuery
VirtualAlloc
GetSystemInfo
GetModuleHandleExW
ExitProcess
GetTimeZoneInformation
GetCommandLineW
GetCommandLineA
GetLocalTime
RtlUnwind
OutputDebugStringW
GetEnvironmentStringsW
SetEnvironmentVariableW
HeapQueryInformation
WriteConsoleW
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceW
CreateSemaphoreA
CreateThread
CloseHandle
WaitForSingleObject
ReleaseSemaphore
GetTickCount
ReleaseMutex
Sleep
lstrcpynA
MultiByteToWideChar
QueryFullProcessImageNameA
GetCurrentProcess
GetModuleFileNameA
GetCurrentDirectoryA
GetModuleHandleA
FindResourceA
OutputDebugStringA
GetTickCount64
WritePrivateProfileStringA
GetPrivateProfileIntA
GetLastError
FormatMessageA
WriteConsoleA
AttachConsole
GetStdHandle
FreeConsole
LoadLibraryW
GetProcAddress
FreeLibrary
CreateMutexA
GetPrivateProfileStringA
LoadLibraryA
HeapFree
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
HeapSize
HeapReAlloc
RaiseException
GetCurrentDirectoryW
HeapAlloc
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
CreateEventW
WaitForSingleObjectEx
ResetEvent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetProfileIntA
SearchPathA
GetTempPathA
FindResourceExW
GetWindowsDirectoryA
SetErrorMode
DecodePointer
DeleteCriticalSection
CreateFileW
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExA
VerifyVersionInfoA
lstrcpyA
VerSetConditionMask
GetCPInfo
GetOEMCP
VirtualProtect
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalFlags
GetACP
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
SystemTimeToTzSpecificLocalTime
FindNextFileA
FileTimeToLocalFileTime
InitializeCriticalSectionAndSpinCount
ReplaceFileA
GetTempFileNameA
SetFileTime
GetFileTime
GetFileAttributesA
GetDiskFreeSpaceA
ResumeThread
SetThreadPriority
SetEvent
GetCurrentThread
GetStringTypeExA
MoveFileA
lstrcmpiA
GetShortPathNameA
LoadLibraryExA
DuplicateHandle
GetVolumeInformationA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
CreateFileA
GetVersionExA
GetThreadLocale
SystemTimeToFileTime
FileTimeToSystemTime
GetCurrentProcessId
lstrcmpA
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
GetModuleHandleW
GetModuleFileNameW
SetLastError
CopyFileA
MulDiv
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
GetProcessHeap

user32

SetClassLongA
SetCursorPos
DestroyAcceleratorTable
CreateAcceleratorTableA
ToAsciiEx
GetKeyboardState
GetKeyboardLayout
IsClipboardFormatAvailable
LoadAcceleratorsW
InvalidateRgn
CopyAcceleratorTableA
CharNextA
PostThreadMessageA
LockWindowUpdate
GetDCEx
SetMenuDefaultItem
GetMenuDefaultItem
SetRect
LoadImageW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
GetComboBoxInfo
LoadMenuW
TrackMouseEvent
MonitorFromPoint
UnionRect
UpdateLayeredWindow
DrawFrameControl
DrawEdge
EnumDisplayMonitors
SetLayeredWindowAttributes
RealChildWindowFromPoint
GetSysColorBrush
SetWindowRgn
DrawIcon
ShowOwnedPopups
TranslateMessage
GetMessageA
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatA
PostQuitMessage
SetParent
DeleteMenu
GetSystemMenu
ReuseDDElParam
UnpackDDElParam
IntersectRect
InsertMenuItemA
CreatePopupMenu
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
DrawStateA
SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
IsZoomed
CharUpperA
GetWindowThreadProcessId
GetWindowDC
TabbedTextOutA
GetDoubleClickTime
DrawTextExA
DrawTextA
GetIconInfo
DrawIconEx
CopyImage
LoadImageA
DestroyIcon
OffsetRect
WindowFromPoint
GetNextDlgGroupItem
ReleaseDC
GetDC
MapVirtualKeyA
GetKeyNameTextA
NotifyWinEvent
LoadCursorW
LoadCursorA
IsRectEmpty
InflateRect
InvertRect
FillRect
DrawFocusRect
ClientToScreen
HideCaret
GetCursorPos
SetCursor
MessageBeep
EnableScrollBar
InvalidateRect
GetSystemMetrics
ReleaseCapture
SetCapture
GetAsyncKeyState
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoA
MonitorFromWindow
TrackPopupMenu
EnableWindow
SendMessageA
GetWindowRect
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
SetMenu
SetWindowsHookExA
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxA
AdjustWindowRectEx
CopyIcon
ModifyMenuA
WaitMessage
FrameRect
CharUpperBuffA
IsCharLowerA
MapVirtualKeyExA
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
GetUpdateRect
SubtractRect
RemovePropA
GetPropA
SetPropA
CreateMenu
DestroyCursor
GetWindowRgn
GrayStringA
GetForegroundWindow
BeginPaint
EndPaint
ValidateRect
RedrawWindow
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
GetCapture
GetKeyState
SetRectEmpty
LoadBitmapW
wsprintfA
KillTimer
IsWindow
IsIconic
SetTimer
GetDlgCtrlID
UpdateWindow
SetActiveWindow
GetClientRect
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
ExitWindowsEx
FindWindowA
PostMessageA
SetForegroundWindow
GetDesktopWindow
UnregisterClassA
GetFocus
GetMenuStringA
GetMenuState
InsertMenuA
AppendMenuA
RemoveMenu
DestroyWindow
CreateDialogIndirectParamA
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
GetWindowLongA
GetParent
ShowWindow
MoveWindow
SetWindowPos
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
GetDlgItemTextA
CheckDlgButton
CheckRadioButton
SendDlgItemMessageA
SetFocus
UnhookWindowsHookEx
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
SetWindowLongA
GetWindow
IsDialogMessageA
RegisterWindowMessageA
DispatchMessageA
PeekMessageA
GetMessagePos
GetMessageTime
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsMenu
IsChild
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible

gdi32

CreateRectRgn
Escape
ExcludeClipRect
GetClipBox
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreatePalette
GetNearestPaletteIndex
CreatePatternBrush
GetSystemPaletteEntries
RealizePalette
CreateCompatibleBitmap
CreateFontA
GetCharWidthA
StretchDIBits
CreateEllipticRgn
Ellipse
CreateDIBSection
DPtoLP
LPtoDP
CombineRgn
GetMapMode
SetRectRgn
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetBkColor
GetTextColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
SetPixel
StretchBlt
SetDIBColorTable
CreateRoundRectRgn
GetRgnBox
EnumFontFamiliesExA
OffsetRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceA
CreatePen
CreateHatchBrush
BitBlt
GetObjectType
DeleteObject
CreateCompatibleDC
PatBlt
GetTextMetricsA
SelectObject
DeleteDC
CopyMetaFileA
CreateDCA
SetBkColor
SetTextColor
GetObjectA
CreateBitmap
CreateFontIndirectA
CreateRectRgnIndirect
CreateSolidBrush
GetStockObject
GetPaletteEntries
GetDeviceCaps
GetTextExtentPoint32A

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegOpenKeyExW
RegDeleteKeyA
RegCreateKeyExA
RegEnumKeyExA
RegEnumValueA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegEnumKeyA
RegDeleteValueA
RegQueryValueExA
OpenProcessToken
RegOpenKeyExA
RegSetValueA
RegDeleteKeyValueA
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegSetValueExA

shell32

DragFinish
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
SHGetFolderPathA
SHGetFileInfoA
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
SHAppBarMessage
ExtractIconA
DragQueryFileA

comctl32

InitCommonControlsEx
ImageList_AddMasked

shlwapi

PathFindExtensionA
PathIsUNCA
PathStripToRootA
StrFormatKBSizeA
PathRemoveFileSpecW
PathFindFileNameA

uxtheme

IsAppThemed
GetThemeSysColor
GetWindowTheme
GetThemePartSize
GetCurrentThemeName
GetThemeColor
CloseThemeData
OpenThemeData
DrawThemeText
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeBackground

ole32

OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoGetClassObject
CreateStreamOnHGlobal
CoDisconnectObject
CLSIDFromProgID
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoCreateGuid
CoInitialize
CoInitializeEx
CoUninitialize
CLSIDFromString
CoCreateInstance
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID

oleaut32

SysAllocStringByteLen
SysAllocStringLen
SysAllocString
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantChangeType
VariantCopy
VarBstrFromDate
LoadTypeLi
OleCreateFontIndirect
VariantInit
VariantClear
SysFreeString

oledlg

ord8

gdiplus

GdipFree
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdipAlloc
GdipDrawImageRectI
GdiplusStartup

ws2_32

htons

oleacc

CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 467KB - Virtual size: 467KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3.1MB - Virtual size: 559.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 891KB - Virtual size: 891KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 182KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab14fbe35c7902d9c3f4987ab2718d71

Headers

DLL Characteristics

File Characteristics

Imports

version

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 2.1MB - Virtual size: 2.1MB

.rdata Size: 467KB - Virtual size: 467KB

.data Size: 3.1MB - Virtual size: 559.7MB

.rsrc Size: 891KB - Virtual size: 891KB

.reloc Size: 182KB - Virtual size: 181KB

.text
Size: 2.1MB - Virtual size: 2.1MB

.rdata
Size: 467KB - Virtual size: 467KB

.data
Size: 3.1MB - Virtual size: 559.7MB

.rsrc
Size: 891KB - Virtual size: 891KB

.reloc
Size: 182KB - Virtual size: 181KB