aeecaaeccaeecaeecaaecaaeccaaeccaeecaaeccaeecaaeecaeecaaeea[.]aeecaaeccaeecaeecaaecaaeccaaeccaeecaaeccaeecaaeecaeecaaeea

Sharing

Copy URL Twitter E-mail

General

Target

aeecaaeccaeecaeecaaecaaeccaaeccaeecaaeccaeecaaeecaeecaaeea.aeecaaeccaeecaeecaaecaaeccaaeccaeecaaeccaeecaaeecaeecaaeea
Size

7.3MB
MD5

7664b570c3bfdc09536d34305e6ab05c
SHA1

7e5666aaa50517f2fb65cbd0b3a9a762aca34d12
SHA256

9189ec2825bec742e774ff8a34734edd43d75ab7dd06a5cb27f833c451e578d8
SHA512

7d914685b1321493b95c49fc6d88f08163e47222cddc9cf48c765f333ef052f7ed14541cba08cc763bb0d578cc2f64c45f4d37c560a24e8571cf2185df787f39
SSDEEP

196608:CxU0xpKoVGTWro/KTi7nnUjFM6A2WpD1KLn2:fGTGTWioiIBM47T2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aeecaaeccaeecaeecaaecaaeccaaeccaeecaaeccaeecaaeecaeecaaeea.aeecaaeccaeecaeecaaecaaeccaaeccaeecaaeccaeecaaeecaeecaaeea

Files

aeecaaeccaeecaeecaaecaaeccaaeccaeecaaeccaeecaaeecaeecaaeea.aeecaaeccaeecaeecaaecaaeccaaeccaeecaaeccaeecaaeecaeecaaeea
.dll windows:5 windows x86

d19addfba2678c7a8e8b7e68f7b7ae2f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindFirstFileA
GetLastError
lstrcmpiA
VirtualAlloc
FindClose
OpenMutexA
GetModuleFileNameA
FindNextFileA
lstrcmpiW
VirtualProtect
CloseHandle
lstrcpyA
GetConsoleOutputCP
WriteConsoleW
HeapSize
FlushFileBuffers
HeapReAlloc
GetProcessHeap
SetEndOfFile
GetConsoleMode
GetConsoleCP
lstrlenW
LoadLibraryW
VerifyVersionInfoA
GlobalAlloc
GetUserDefaultLangID
VerSetConditionMask
lstrlenA
lstrcmpA
GetStringTypeW
HeapAlloc
MultiByteToWideChar
ReadFile
WideCharToMultiByte
SetFilePointer
GetCurrentThreadId
DecodePointer
GetCommandLineA
RaiseException
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
GetProcAddress
SetStdHandle
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
GetFileType
SetHandleCount
GetStdHandle
GetStartupInfoW
DeleteCriticalSection
HeapFree
IsProcessorFeaturePresent
CreateFileA
CreateFileW
ExitProcess
WriteFile
GetModuleFileNameW
HeapCreate
HeapDestroy
LCMapStringW
Sleep
RtlUnwind
SetEnvironmentVariableA
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
CompareStringW

user32

IsCharAlphaA
GetSubMenu
LoadStringA
IsClipboardFormatAvailable
SendMessageA
GetMenu
LoadStringW
CreatePopupMenu
DestroyMenu
FindWindowA
GetClipboardOwner
GetParent

gdi32

Escape
CreateCompatibleDC

advapi32

RegEnumKeyA
ImpersonateNamedPipeClient
RegOpenKeyExA
GetUserNameW
RegCloseKey

shlwapi

PathCombineA
PathRemoveFileSpecA
PathStripPathA

Exports

Exports

JHhlLrvbDvnZLDBh
ewaxtqsxfvg
htechjrkwixym
ntnbtetszrfgtla
qnersvtmnbmqjvbr
suvcttpijnrhm
tnfnnvigrtz
zuapfeltvrhvxgl

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7.2MB - Virtual size: 7.2MB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d19addfba2678c7a8e8b7e68f7b7ae2f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shlwapi

Exports

Exports

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 15KB - Virtual size: 15KB

.data Size: 5KB - Virtual size: 14KB

.reloc Size: 7KB - Virtual size: 6KB

.rsrc Size: 7.2MB - Virtual size: 7.2MB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 15KB - Virtual size: 15KB

.data
Size: 5KB - Virtual size: 14KB

.reloc
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 7.2MB - Virtual size: 7.2MB