cc8a741caeb9b0fe81a934100d94ee9ef5a655599044d2d5e06f9b823bba7c64

Sharing

Copy URL

Twitter E-mail

General

Target

cc8a741caeb9b0fe81a934100d94ee9ef5a655599044d2d5e06f9b823bba7c64
Size

2.3MB
MD5

bc3469c125c71fe0d189af3f4ab0298e
SHA1

c4b43155bbd6358d8726c25a2f80549550b479b7
SHA256

cc8a741caeb9b0fe81a934100d94ee9ef5a655599044d2d5e06f9b823bba7c64
SHA512

4b6beb540b47253d8743999a07b2c65a3cd52cd5666bb3a1b0b1a87e5812009e900dcd460d3053a260c00c6e20fad718cf4242b677423884a94092f271606c86
SSDEEP

24576:tbF5BmBHf4BZCn2/rOfTnTHTDkF7IZww5ssGW1+V0HbiK08PjJ/degsNWw:tJSpSOLnT5ZwDs9kmH97LegsNP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cc8a741caeb9b0fe81a934100d94ee9ef5a655599044d2d5e06f9b823bba7c64

Files

cc8a741caeb9b0fe81a934100d94ee9ef5a655599044d2d5e06f9b823bba7c64
.exe windows:4 windows x86

653e28755f89e57e8aabdfa166663b8b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadWritePtr
CompareStringA
GetDriveTypeA
IsBadReadPtr
GetModuleFileNameA
IsBadCodePtr
IsValidLocale
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
CreateFileA
GetOEMCP
InterlockedExchange
GetProfileStringA
GlobalAddAtomA
FindResourceA
GetModuleHandleA
GetCurrentThreadId
lstrcmpA
ExitProcess
LeaveCriticalSection
EnterCriticalSection
CreateThread
GetThreadPriority
SetThreadPriority
DeleteCriticalSection
InitializeCriticalSection
SetEvent
WinExec
GetTickCount
ResumeThread
MapViewOfFile
UnmapViewOfFile
SetFilePointer
VirtualAlloc
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetStartupInfoA
GetStdHandle
SetHandleCount
GetCommandLineA
GetCommandLineW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetFileType
SetStdHandle
HeapReAlloc
HeapSize
ExitThread
HeapAlloc
HeapFree
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
RaiseException
GetLocalTime
GetSystemTime
GetTimeZoneInformation
TerminateProcess
RtlUnwind
GetProcessVersion
GlobalFlags
SetErrorMode
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
ReadFile
GetCurrentProcess
DuplicateHandle
LCMapStringA
WaitForSingleObject
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSize
SuspendThread
lstrcmpiA
GetCurrentThread
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrlenA
GetVersion
LoadResource
LockResource
SizeofResource
GetACP
Sleep
LocalFree
FreeLibrary
GetLastError
CloseHandle
ReleaseMutex
FindClose
LoadLibraryA
SetUnhandledExceptionFilter
MulDiv
SetLastError
GetThreadLocale
InterlockedDecrement
InterlockedIncrement
GlobalDeleteAtom

advapi32

RegCloseKey

user32

RedrawWindow
GetWindowRect
GetClientRect
GetSystemMenu
PostQuitMessage
DrawIcon
GetSystemMetrics
IsIconic
SetTimer
KillTimer
UpdateWindow
GetAsyncKeyState
SetRect
DrawEdge
FillRect
CopyRect
GetSysColor
DestroyIcon
DrawIconEx
GetDesktopWindow
GetMenuItemCount
GetMenuState
GetMenuItemID
CreatePopupMenu
CreateMenu
GetSysColorBrush
GetSubMenu
IsWindow
GetFocus
InvalidateRect
SetWindowRgn
DrawFocusRect
ReleaseCapture
SetCapture
GetParent
GetKeyState
DestroyCursor
IsMenu
GetNextDlgTabItem
SetCursor
GetActiveWindow
WindowFromPoint
ClientToScreen
InflateRect
GetWindowTextLengthA
HideCaret
GetDC
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
SetWindowsHookExA
SendMessageA
GetClassNameA
SetParent
LockWindowUpdate
GetDCEx
SetRectEmpty
DestroyMenu
WaitMessage
MapDialogRect
SetWindowContextHelpId
MessageBeep
TranslateMessage
ValidateRect
EndPaint
BeginPaint
GetWindowDC
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SendDlgItemMessageA
MapWindowPoints
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
ReleaseDC
ShowCaret
MessageBoxA
GetCursorPos
ScreenToClient
DestroyWindow
ShowWindow
SetMenu
GetMenu
SetForegroundWindow
GetNextDlgGroupItem
GetCapture
PtInRect
IsRectEmpty
FrameRect
OffsetRect
IsWindowEnabled
GetDlgItem
SetActiveWindow
EndDialog
GetWindowPlacement
IntersectRect
SetWindowPos
GetWindow
GetForegroundWindow
GetLastActivePopup
GetMessagePos
GetMessageTime
UnhookWindowsHookEx
IsWindowVisible
GetDlgCtrlID
CallNextHookEx
TrackPopupMenu
IsChild
GetTopWindow
GetScrollPos
GetScrollRange
GetScrollInfo

gdi32

GdiFlush
SelectPalette
RealizePalette
CreatePalette
StretchDIBits
CreateDIBitmap
CreatePatternBrush
GetViewportOrgEx
SetViewportOrgEx
SetDIBitsToDevice
GetDIBits
SetBkColor
SetTextColor
CreateBitmap
GetWindowExtEx
GetViewportExtEx
LPtoDP
GetSystemPaletteEntries
GetMapMode
DPtoLP
GetTextExtentPointA
ExtTextOutA
SetRectRgn
CreateRectRgnIndirect
SetTextAlign
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetTextColor
GetClipBox
GetBkColor
ExtCreateRegion
GetRgnBox
CreateRectRgn
CombineRgn
GetRegionData
StretchBlt
Rectangle
PatBlt
GetPixel
SetPixel
CreateDIBSection
DeleteObject
DeleteDC
Ellipse
BitBlt
Escape
RectVisible
PtVisible
CreateCompatibleBitmap
GetStockObject
GetDeviceCaps
GetBkMode
CreatePen
CreateSolidBrush
CreateCompatibleDC
SelectObject

shell32

SHGetMalloc
SHGetSpecialFolderLocation

winmm

timeGetTime
timeBeginPeriod
timeGetDevCaps
timeEndPeriod
waveOutOpen
waveOutClose
waveOutUnprepareHeader
waveOutReset
waveOutWrite
waveOutPrepareHeader

ws2_32

WSAGetLastError
WSAStartup
WSACleanup
recv
gethostbyname
htons
inet_addr
closesocket
socket
connect
inet_ntoa

wininet

InternetCrackUrlW
InternetCanonicalizeUrlW
InternetQueryOptionW
InternetOpenUrlW
InternetSetFilePointer
InternetQueryDataAvailable
DeleteUrlCacheEntry
InternetErrorDlg
InternetReadFile
HttpQueryInfoW
HttpSendRequestW
HttpOpenRequestW
InternetConnectW
InternetCloseHandle
InternetOpenW
InternetGetLastResponseInfoW
InternetWriteFile
InternetSetStatusCallback

imagehlp

MakeSureDirectoryPathExists

fmod

_FSOUND_GetVersion@0
_FSOUND_SetOutput@4
_FSOUND_GetDriverName@4
_FSOUND_GetNumDrivers@0

d3d9

Direct3DCreate9

comctl32

ImageList_Create
ImageList_Destroy
ord17
FlatSB_EnableScrollBar
_TrackMouseEvent
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_GetIcon
ImageList_GetImageCount
ImageList_Draw
InitializeFlatSB

ole32

OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleInitialize
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
OleFlushClipboard
CreateILockBytesOnHGlobal
OleIsCurrentClipboard
CoTaskMemFree

olepro32

ord253

oleaut32

SysStringLen
VariantTimeToSystemTime
VariantChangeType
VariantCopy
SysAllocStringLen
SysFreeString
SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
VariantInit
SysAllocString
VariantClear

urlmon

URLDownloadToFileW

wsock32

sendto
recvfrom
inet_ntoa
WSAAsyncSelect
send
htonl
bind
accept
WSASetLastError

winspool.drv

ClosePrinter

Exports

Exports

?interfaceMap@CCustomControlSite@@1UAFX_INTERFACEMAP@@B

Sections

.text
Size: 696KB - Virtual size: 693KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 288KB - Virtual size: 567KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

��/�u�
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

653e28755f89e57e8aabdfa166663b8b

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

shell32

winmm

ws2_32

wininet

imagehlp

fmod

d3d9

comctl32

ole32

olepro32

oleaut32

urlmon

wsock32

winspool.drv

Exports

Exports

Sections

.text Size: 696KB - Virtual size: 693KB

.rdata Size: 132KB - Virtual size: 131KB

.data Size: 288KB - Virtual size: 567KB

.rsrc Size: 1.2MB - Virtual size: 1.2MB

��/�u� Size: 20KB - Virtual size: 20KB

.text
Size: 696KB - Virtual size: 693KB

.rdata
Size: 132KB - Virtual size: 131KB

.data
Size: 288KB - Virtual size: 567KB

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

��/�u�
Size: 20KB - Virtual size: 20KB