4e6a06d055d2f63a662d9fba6583f563b847b75cd62784ed733bd4cc78e2cb1c

Sharing

Copy URL Twitter E-mail

General

Target

4e6a06d055d2f63a662d9fba6583f563b847b75cd62784ed733bd4cc78e2cb1c
Size

2.1MB
MD5

c6194b42ae9f225e2f53296d6e8f7a2f
SHA1

473b1e9e9f0f48b5215ad52e2208180f70234ce2
SHA256

4e6a06d055d2f63a662d9fba6583f563b847b75cd62784ed733bd4cc78e2cb1c
SHA512

b3bcdd1debfa0ec5813e8fc473cdc37bc5c3f46be7bfb80e0425aba17a6e97e7ba0972423b0f4117146ce5d6f4e77f3cdba3b370613d38839ce3b38bfea8831d
SSDEEP

49152:wYyHnhas3P1b4OLvxcVBNN3/P7T2Q+8PpV0EQwGD9Na1tLkM+j5tXUqWL:+has/17LvxiNN3X7Tp+8PpaDNa1NkM+7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4e6a06d055d2f63a662d9fba6583f563b847b75cd62784ed733bd4cc78e2cb1c

Files

4e6a06d055d2f63a662d9fba6583f563b847b75cd62784ed733bd4cc78e2cb1c
.exe windows:5 windows x86

e5a691f929318b77444fad7a58eaee75

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

hid

HidD_GetFeature
HidD_SetFeature
HidP_GetCaps
HidD_GetPreparsedData
HidD_FreePreparsedData
HidD_GetAttributes
HidD_GetHidGuid

kernel32

IsValidCodePage
GetTimeZoneInformation
LCMapStringW
WriteConsoleW
GetDriveTypeW
SetEnvironmentVariableA
GetLocalTime
OpenEventW
CreateEventW
WaitForSingleObject
SizeofResource
LockResource
LoadResource
FindResourceW
SetEvent
GetModuleFileNameW
GetStringTypeW
GetLastError
CreateFileW
CloseHandle
ReadFile
WriteFile
Sleep
CreateMutexW
ReleaseMutex
GetPrivateProfileStringW
GlobalAlloc
GlobalLock
GlobalUnlock
CreateDirectoryW
GlobalSize
DeleteFileW
GetOEMCP
CreateThread
GetTickCount
MultiByteToWideChar
WideCharToMultiByte
MulDiv
lstrlenW
LocalFree
FormatMessageW
CopyFileW
GlobalFree
SetLastError
DeactivateActCtx
CreateActCtxW
ReleaseActCtx
ActivateActCtx
GetConsoleMode
GetConsoleCP
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
HeapQueryInformation
ExitThread
ExitProcess
GetFileType
SetStdHandle
RaiseException
InterlockedDecrement
GetACP
GetCPInfo
IsProcessorFeaturePresent
RtlUnwind
DecodePointer
FreeLibrary
InterlockedExchange
GetProcAddress
EncodePointer
HeapAlloc
HeapFree
HeapReAlloc
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
VirtualProtect
SearchPathW
GetProfileIntW
InitializeCriticalSectionAndSpinCount
GetNumberFormatW
GetWindowsDirectoryW
GetTempPathW
GetTempFileNameW
SetErrorMode
GlobalFlags
GetCurrentDirectoryW
GetFileTime
GetFileSizeEx
GetFileAttributesW
GetFileAttributesExW
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GlobalGetAtomNameW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileW
lstrlenA
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
GetModuleHandleW
FlushFileBuffers
SetFilePointer
lstrcmpiW
GetThreadLocale
GlobalFindAtomW
GetVersionExW
CompareStringW
GetCurrentProcessId
GlobalAddAtomW
SuspendThread
ResumeThread
SetThreadPriority
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcpyW
FreeResource
lstrcmpA
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
LoadLibraryW
lstrcmpW

user32

SetClipboardData
OpenClipboard
CopyImage
GetIconInfo
HideCaret
InvertRect
RegisterClipboardFormatW
LockWindowUpdate
SetCursorPos
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SetClassLongW
DestroyAcceleratorTable
SetParent
UnpackDDElParam
ReuseDDElParam
LoadImageW
LoadAcceleratorsW
InsertMenuItemW
BringWindowToTop
TranslateAcceleratorW
GetMenuDefaultItem
SetMenuDefaultItem
CreatePopupMenu
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsZoomed
GetAsyncKeyState
NotifyWinEvent
RedrawWindow
SetWindowRgn
GetSystemMenu
DestroyMenu
GetMenuItemInfoW
InflateRect
DestroyIcon
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
IntersectRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
OffsetRect
CharNextW
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
KillTimer
SetTimer
RealChildWindowFromPoint
DeleteMenu
WaitMessage
WindowFromPoint
UnregisterClassW
LoadCursorW
LoadMenuW
CharUpperW
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
CloseClipboard
ClientToScreen
GetUpdateRect
DrawTextExW
DrawTextW
TabbedTextOutW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
GetClassNameW
UpdateWindow
FillRect
DrawStateW
GetWindowTextLengthW
GetWindowTextW
GetScrollPos
SetScrollPos
SetFocus
GetWindowThreadProcessId
GetLastActivePopup
MessageBoxW
ShowOwnedPopups
SetCursor
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
IsWindowVisible
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
SetMenuItemBitmaps
EmptyClipboard
FrameRect
CopyIcon
CharUpperBuffW
PostThreadMessageW
GetKeyNameTextW
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
GetWindowRgn
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
DestroyCursor
SubtractRect
MapVirtualKeyExW
IsCharLowerW
GetWindowDC
GetDoubleClickTime
IsWindow
GetDlgItem
IsWindowEnabled
IsClipboardFormatAvailable
CreateMenu
GrayStringW
GetNextDlgTabItem
EndDialog
RegisterWindowMessageW
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
UnhookWindowsHookEx
GetMenuState
GetMenuStringW
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
EndPaint
BeginPaint
GetWindowRect
ReleaseCapture
PtInRect
GetParent
SetCapture
GetCapture
InvalidateRect
CopyRect
ReleaseDC
GetDC
PostQuitMessage
EnableWindow
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
PostMessageW
FindWindowW
GetWindowLongW
SetWindowLongW
SystemParametersInfoW
SendMessageW
LoadIconW
GetSysColorBrush

gdi32

GetStockObject
SetTextColor
SetBkColor
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreateBitmap
CreatePatternBrush
SelectPalette
GetObjectType
CreatePen
GetObjectW
CreateHatchBrush
CreateDIBitmap
CreateFontIndirectW
CreateRectRgnIndirect
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
GetBkColor
GetTextColor
GetRgnBox
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
CreateRoundRectRgn
CreateDIBSection
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
SetDIBColorTable
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetTextFaceW
SetPixelV
CreateSolidBrush
CreateDCW
CopyMetaFileW
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontW
GetTextExtentPoint32W
DeleteObject

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegEnumKeyW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueW
RegEnumValueW
RegEnumKeyExW
RegCloseKey

shell32

DragFinish
SHGetSpecialFolderPathW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
SHAppBarMessage
DragQueryFileW
ShellExecuteW
SHGetFileInfoW
SHBrowseForFolderW

comctl32

ImageList_GetIconSize
InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathRemoveFileSpecW

ole32

OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoUninitialize
CoCreateInstance
CoFreeUnusedLibraries
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
CoTaskMemAlloc
ReleaseStgMedium
OleInitialize
CoInitializeEx
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
CoRevokeClassObject
CoRegisterMessageFilter
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
CoTaskMemFree
CreateStreamOnHGlobal
CoInitialize
OleDuplicateData
RevokeDragDrop

oleaut32

VariantClear
OleCreateFontIndirect
VarBstrFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysStringLen
VariantInit
VariantChangeType
SysAllocStringLen
SysAllocString
SysFreeString

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipFillRectangleI
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectI
GdipSetSmoothingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipDeleteBrush
GdipCreateSolidFill
GdipGetImageFlags
GdipCreateBitmapFromFile
GdipLoadImageFromStream
GdipCloneBitmapAreaI
GdipCloneImage
GdipAlloc
GdipFree
GdipDisposeImage
GdiplusShutdown
GdiplusStartup
GdipDrawImageI

oledlg

OleUIBusyW

setupapi

SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 285KB - Virtual size: 285KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 439KB - Virtual size: 439KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5a691f929318b77444fad7a58eaee75

Headers

DLL Characteristics

File Characteristics

Imports

hid

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

gdiplus

oledlg

setupapi

oleacc

imm32

winmm

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 285KB - Virtual size: 285KB

.data Size: 25KB - Virtual size: 55KB

.rsrc Size: 439KB - Virtual size: 439KB

.reloc Size: 167KB - Virtual size: 167KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 285KB - Virtual size: 285KB

.data
Size: 25KB - Virtual size: 55KB

.rsrc
Size: 439KB - Virtual size: 439KB

.reloc
Size: 167KB - Virtual size: 167KB