51eb61cb08fd223890ba47f7d878938859296ac6f265321ded3d289966d9f6d1

Sharing

Copy URL Twitter E-mail

General

Target

51eb61cb08fd223890ba47f7d878938859296ac6f265321ded3d289966d9f6d1
Size

636KB
MD5

5f2a4b6b7216fde902cede83355f90ed
SHA1

530bc671a3623173d53ac2bb52aab5b11b0ed325
SHA256

51eb61cb08fd223890ba47f7d878938859296ac6f265321ded3d289966d9f6d1
SHA512

ec01db3ad470f142fcd4c6240189570656d0a72c24bfbcf4fa323317eb42dc8e40badd1315876ab5e50f3413cd9f9dbcb77e47047c730c07b06d6297a5d59229
SSDEEP

12288:4nuFOfno9BTuXcn+Dj2cUK4iSIgUWgR8wxaA9W6/eKxs:DHl+Dj2cU3Zlk8w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51eb61cb08fd223890ba47f7d878938859296ac6f265321ded3d289966d9f6d1

Files

51eb61cb08fd223890ba47f7d878938859296ac6f265321ded3d289966d9f6d1
.exe windows:4 windows x86 arch:x86

9553db761ae2b8ac4afc3c552a536f26

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
GetFileType
SetStdHandle
ExitThread
CreateThread
RaiseException
GetCommandLineA
GetStartupInfoA
HeapFree
TerminateProcess
ExitProcess
HeapAlloc
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GlobalFlags
lstrlenW
FindNextFileA
SetLastError
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
MulDiv
GetLastError
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
GetCurrentThread
lstrcmpA
FormatMessageA
LocalFree
lstrlenA
InterlockedDecrement
InterlockedIncrement
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
LockResource
FindResourceA
LoadResource
GetTempFileNameA
GetWindowsDirectoryA
WideCharToMultiByte
ExpandEnvironmentStringsA
GetTempPathA
GetLogicalDrives
GetDriveTypeA
UnmapViewOfFile
CloseHandle
FlushViewOfFile
ReleaseMutex
CreateFileMappingA
MapViewOfFile
CreateMutexA
CreateFileA
GetFileSize
lstrcpynA
GetSystemDefaultLangID
GetFileAttributesA
CreateDirectoryA
WritePrivateProfileStringA
GetSystemDirectoryA
SetEvent
GetTickCount
GetLocalTime
MoveFileA
CopyFileA
SetFileAttributesA
WaitForSingleObject
GlobalHandle
ResetEvent
Sleep
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetPrivateProfileIntA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
DeleteFileA
GetDiskFreeSpaceExA
GetVersionExA
GetPrivateProfileStringA
GetStringTypeA
GetModuleFileNameA

user32

ShowOwnedPopups
PostQuitMessage
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
GetDlgItemInt
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
EnableMenuItem
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
RegisterClassA
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetCursorPos
GetWindow
SetWindowLongA
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
LoadBitmapA
GetScrollRange
SetScrollRange
SetScrollPos
GetScrollPos
KillTimer
GetSystemMetrics
PtInRect
ClipCursor
LoadCursorA
RedrawWindow
LoadMenuA
GetDC
ReleaseDC
FillRect
DrawStateA
CopyRect
FrameRect
InflateRect
EnableWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
UpdateWindow
GetClassInfoA
SetParent
RegisterClipboardFormatA
GetSysColor
OffsetRect
DrawFocusRect
GetWindowRect
TrackPopupMenuEx
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
GetWindowLongA
DestroyIcon
DestroyCursor
DestroyMenu
GetDlgCtrlID
GetKeyState
ValidateRect
TranslateMessage
GetMessageA
SetWindowContextHelpId
MapDialogRect
PostThreadMessageA
SetForegroundWindow
GetClientRect
GetMenu
ModifyMenuA
GetSubMenu
CheckMenuRadioItem
CheckMenuItem
DeleteMenu
PostMessageA
SendMessageA
LoadImageA
MessageBoxA
FindWindowA
SetWindowPos
LoadIconA
LockWindowUpdate
GetDCEx
GetTabbedTextExtentA
MessageBeep
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
GetMenuStringA
InsertMenuA
GetSysColorBrush
GetClassNameA
LoadStringA
SetCursorPos
SetCapture
UnionRect
IsRectEmpty
IsZoomed
SetTimer
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
CharUpperA
SetRect
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
IsIconic
SetRectEmpty

gdi32

RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
CreateRectRgn
SaveDC
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateRectRgnIndirect
StretchDIBits
GetCharWidthA
GetTextExtentPoint32A
GetTextMetricsA
GetMapMode
SetRectRgn
CombineRgn
CreateFontIndirectA
LPtoDP
GetTextColor
GetBkColor
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
CreateDCA
SetAbortProc
StartDocA
StartPage
EndPage
EndDoc
AbortDoc
GetViewportOrgEx
CreatePen
DPtoLP
Rectangle
PatBlt
GetDeviceCaps
GetClipBox
StretchBlt
GetObjectA
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
GetStockObject
CreateFontA
DeleteObject
CreateDIBitmap
GetTextExtentPointA
CreateDIBSection

comdlg32

GetOpenFileNameA
GetSaveFileNameA
PrintDlgA
CommDlgExtendedError
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCreateKeyA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegSetValueA
RegCreateKeyExA
GetFileSecurityA
SetFileSecurityA

shell32

SHGetFileInfoA
ShellExecuteExA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
DragQueryFileA
DragFinish
ShellExecuteA
ExtractIconA

comctl32

ImageList_AddMasked
ImageList_GetImageCount
ImageList_ReplaceIcon
_TrackMouseEvent
ord17
ImageList_Destroy
ImageList_Create

oledlg

ord8

ole32

OleIsCurrentClipboard
CreateStreamOnHGlobal
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard

olepro32

ord253

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
SysStringLen

gdiplus

GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageGetFrameDimensionsCount
GdipImageRotateFlip
GdipLoadImageFromFile
GdipSetInterpolationMode
GdipReleaseDC
GdiplusStartup
GdipGetImageDecodersSize
GdipGetImageDecoders
GdiplusShutdown
GdipCreateBitmapFromFileICM
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipSetImagePalette
GdipBitmapLockBits
GdipCreateFromHDC
GdipImageSelectActiveFrame
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipDeleteGraphics
GdipCreateHBITMAPFromBitmap
GdipGetImageThumbnail
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipDrawImageRectI
GdipGraphicsClear
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCreateBitmapFromHICON
GdipCreateBitmapFromScan0
GdipSaveAddImage
GdipSetPropertyItem
GdipSaveImageToFile
GdipBitmapSetResolution
GdipBitmapUnlockBits

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

Sections

.text
Size: 384KB - Virtual size: 380KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9553db761ae2b8ac4afc3c552a536f26

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

gdiplus

version

Sections

.text Size: 384KB - Virtual size: 380KB

.rdata Size: 84KB - Virtual size: 82KB

.data Size: 24KB - Virtual size: 49KB

.rsrc Size: 140KB - Virtual size: 138KB

.text
Size: 384KB - Virtual size: 380KB

.rdata
Size: 84KB - Virtual size: 82KB

.data
Size: 24KB - Virtual size: 49KB

.rsrc
Size: 140KB - Virtual size: 138KB