4310ae197e7692727d3550de2294ad60[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

4310ae197e7692727d3550de2294ad60.exe
Size

3.9MB
MD5

4310ae197e7692727d3550de2294ad60
SHA1

48beb7c25c80b8974f6a7d8ca6065be38b9e298d
SHA256

347f029b0483511d570f53eb4db216760fbe5c1769f536d37bbec0fa8fb60bcc
SHA512

a6e2ae6c9dbaba65547b9a874c91abe5372ba31e4a6535d797d89755da47f8e2b42b582dd582e3d721660ff8e815e92ff70c7b99a1f3e77c68d1f1756918747c
SSDEEP

49152:DL7mEUKVvSnb5JprkoGXYulAwOY3VLbhxROEJErMa6m:7mEub5IoGXJtlj8H6m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4310ae197e7692727d3550de2294ad60.exe

Files

4310ae197e7692727d3550de2294ad60.exe
.exe windows:4 windows x86 arch:x86

ba211022ec48bc87a1a7dce6a6782b04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
SetHandleCount
LCMapStringW
GetSystemTimeAsFileTime
InterlockedExchange
LCMapStringA
CompareStringW
CompareStringA
FatalAppExitA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
HeapSize
GetFileType
SetStdHandle
TerminateProcess
HeapReAlloc
ExitThread
CreateThread
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapAlloc
HeapFree
RtlUnwind
lstrcpyW
GlobalSize
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
GlobalFlags
GetProcessVersion
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDiskFreeSpaceA
GetFileTime
SetFileTime
lstrlenW
GetCurrentDirectoryA
GetCurrentThread
GetProfileIntA
SuspendThread
SetThreadPriority
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SetLastError
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
DuplicateHandle
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
GetCurrentThreadId
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalGetAtomNameA
GlobalAddAtomA
GetVersionExA
lstrlenA
WriteProfileStringA
TerminateThread
GetShortPathNameA
ResumeThread
GetTickCount
GetExitCodeThread
SetEvent
CreateEventA
GetProfileStringA
GetTempFileNameA
Sleep
GetACP
lstrcatA
FormatMessageA
LocalFree
GetSystemDirectoryA
lstrcmpA
lstrcmpiA
CreateProcessA
WaitForSingleObject
lstrcpynA
GetVersion
WriteFile
GetLastError
FindResourceA
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
GetModuleFileNameA
lstrcpyA
CloseHandle
SetCurrentDirectoryA
GetTempPathA
GetWindowsDirectoryA
DeleteFileA
GetFullPathNameA
GetFileAttributesA
CopyFileA
LoadLibraryA
GetProcAddress
FreeLibrary
MulDiv
CreateFileA
GetFileSize
GlobalAlloc
GlobalLock
ReadFile
GlobalUnlock
GlobalFree

user32

ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
RegisterClassA
TrackPopupMenu
SetWindowPlacement
GetWindowTextA
DestroyWindow
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetForegroundWindow
SetForegroundWindow
SystemParametersInfoA
GetWindowPlacement
GetLastActivePopup
IsIconic
GetDlgItem
UnpackDDElParam
ReuseDDElParam
WinHelpA
GetClassInfoA
ShowWindow
GetDesktopWindow
IsWindowEnabled
PeekMessageA
GetCapture
LoadAcceleratorsA
AdjustWindowRectEx
RedrawWindow
SetWindowLongA
DefMDIChildProcA
TranslateAcceleratorA
TranslateMDISysAccel
DefFrameProcA
CreateWindowExA
BringWindowToTop
LoadImageA
DrawStateA
FrameRect
DrawFocusRect
TrackPopupMenuEx
WindowFromPoint
GetActiveWindow
EndDeferWindowPos
DestroyIcon
DestroyCursor
DestroyMenu
GetCaretPos
DrawTextA
SendMessageTimeoutA
IsWindow
SetWindowTextW
GetWindowTextLengthA
GetWindowTextW
LoadIconA
ShowScrollBar
GetMessageA
TranslateMessage
DispatchMessageA
GetClipboardData
GetMessagePos
GetCursorPos
OpenClipboard
EmptyClipboard
LoadMenuIndirectA
LookupIconIdFromDirectory
CreateIconFromResource
LoadStringA
CharUpperA
GetWindowDC
SendMessageA
ReleaseDC
IsDialogMessageA
GetDC
SetActiveWindow
BeginDeferWindowPos
DeferWindowPos
MapWindowPoints
SendDlgItemMessageA
MessageBoxW
MessageBoxA
SetMenuItemBitmaps
AppendMenuA
SetClipboardData
CloseClipboard
RegisterWindowMessageA
GetFocus
SetFocus
SetScrollRange
KillTimer
SetTimer
UpdateWindow
CheckMenuItem
InsertMenuA
LoadMenuA
DeleteMenu
SetMenu
FindWindowA
SetWindowPos
GetSystemMetrics
InsertMenuItemA
DrawMenuBar
GetMenu
CheckDlgButton
CheckRadioButton
SetDlgItemTextA
IsDlgButtonChecked
GetWindowLongA
IsWindowVisible
GetWindowRect
OffsetRect
InflateRect
EqualRect
GetMenuItemID
GetMenuStringA
ModifyMenuA
CreatePopupMenu
PostMessageA
HideCaret
CreateCaret
SetCaretPos
wsprintfA
EnumChildWindows
SetMenuItemInfoA
GetMenuItemInfoA
GetMenuItemCount
GetSubMenu
SetWindowTextA
GetDlgCtrlID
SetRectEmpty
IsRectEmpty
IntersectRect
GetClientRect
PtInRect
SetRect
InvalidateRect
GetParent
GetSysColor
SetCursor
LoadCursorA
CreateAcceleratorTableA
LoadBitmapA
CopyRect
WindowFromDC
ClientToScreen
GetKeyState
UnregisterClassA
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
IsCharAlphaNumericA
DestroyCaret
TrackMouseEvent
InvalidateRgn
EnumClipboardFormats
GetCursor
DrawFrameControl
FindWindowExA
ScrollDC
CopyIcon
MapVirtualKeyA
GetKeyNameTextA
DrawEdge
ReleaseCapture
SetCapture
ScreenToClient
EnableWindow
ShowCaret
BeginPaint
EndPaint
TabbedTextOutA
MoveWindow
GetNextDlgTabItem
FillRect
EnableMenuItem
GrayStringA
GetTabbedTextExtentA
MessageBeep
GetNextDlgGroupItem
RemoveMenu
LockWindowUpdate
GetDCEx
GetClassNameA
GetSysColorBrush
ClipCursor
CopyAcceleratorTableA
PostThreadMessageA
CreateMenu
SetCursorPos
GetMenuState
CheckMenuRadioItem
GetMenuCheckMarkDimensions
InSendMessage
wvsprintfA
RegisterClipboardFormatA
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
IsClipboardFormatAvailable
IsZoomed
EndDialog
CreateDialogIndirectParamA
InvertRect
UnionRect
CharNextA
ValidateRect
GetSystemMenu
GetWindow
SetParent

gdi32

GetClipBox
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
PolyBezierTo
GetClipRgn
SelectClipPath
GetObjectType
GetViewportExtEx
GetWindowExtEx
ExtCreatePen
PtVisible
ExtTextOutA
Escape
GetMapMode
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
DPtoLP
StretchDIBits
GetCharWidthA
GetTextMetricsA
AbortDoc
SetAbortProc
DeleteMetaFile
CloseMetaFile
CreateMetaFileA
LPtoDP
CopyMetaFileA
Rectangle
GetTextAlign
CreateBitmap
GetStockObject
GetTextColor
GetBkColor
RectVisible
CreateDCA
StartDocA
StartPage
EndPage
EndDoc
TextOutA
BeginPath
PolyBezier
EndPath
StrokeAndFillPath
SetTextColor
SetBkColor
GetTextExtentPoint32A
GetBitmapDimensionEx
GetObjectA
CreateFontIndirectA
CreateRectRgn
SetViewportOrgEx
BitBlt
GetDIBits
SetDIBitsToDevice
CreatePen
CreatePatternBrush
UnrealizeObject
SetBrushOrgEx
GetDeviceCaps
CreateCompatibleDC
Ellipse
RealizePalette
CreatePalette
GetDIBColorTable
CreateHalftonePalette
EnumFontFamiliesA
CreateDIBitmap
EnumFontFamiliesExA
CreateDIBSection
FillPath
StrokePath
SetMiterLimit
CloseFigure
WidenPath
ExtEscape
GetOutlineTextMetricsA
TextOutW
GetRegionData
GetFontData
GetTextFaceA
CreateBrushIndirect
GetROP2
CreateCompatibleBitmap
SelectObject
CreateSolidBrush
DeleteObject
CreateFontA
GetTextExtentPointA
InvertRgn
Polyline
CreatePolygonRgn
Polygon
DeleteDC

comdlg32

ReplaceTextA
PrintDlgA
FindTextA
ChooseFontA
ChooseColorA
CommDlgExtendedError
GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

EnumMonitorsA
EnumPrinterDriversA
ClosePrinter
DocumentPropertiesA
OpenPrinterA
GetPrinterA
EnumPrintersA
SetPrinterA

advapi32

RegCreateKeyA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueA
FreeSid
GetUserNameA
RegEnumKeyExA
RegEnumValueA
RegQueryInfoKeyA
RegCreateKeyExA
RegOpenKeyA
RegEnumKeyA
RegSetValueA
SetFileSecurityA
GetFileSecurityA
RegCloseKey

shell32

SHGetFileInfoA
DragAcceptFiles
DragFinish
ShellExecuteExA
SHChangeNotify
DragQueryFileA
ShellExecuteA
ExtractIconA

comctl32

ImageList_AddMasked
ImageList_GetImageCount
_TrackMouseEvent
ord17
ImageList_Destroy
ImageList_Create
ImageList_GetImageInfo
ImageList_Draw
ImageList_GetIcon

oledlg

ord8

ole32

CreateOleAdviseHolder
CreateGenericComposite
OleSaveToStream
WriteClassStm
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoGetMalloc
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
OleIsRunning
OleRun
CreateItemMoniker
WriteClassStg
GetRunningObjectTable
CreateFileMoniker
OleRegGetMiscStatus
OleRegEnumVerbs
CoDisconnectObject
StringFromCLSID
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
CoRegisterClassObject
OleGetClipboard
ReleaseStgMedium
CoTaskMemFree
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CreateStreamOnHGlobal
CreateDataAdviseHolder
StgOpenStorageOnILockBytes
CoTaskMemAlloc
OleDuplicateData
CreateBindCtx
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
OleLockRunning
CoGetClassObject
OleRegGetUserType

olepro32

ord251
ord253

oleaut32

SysAllocStringByteLen
SysStringLen
VariantCopy
VariantTimeToSystemTime
SysAllocString
VariantClear
VariantChangeType
SysAllocStringLen
SysStringByteLen
SysFreeString

wininet

HttpOpenRequestA
HttpSendRequestExA
HttpQueryInfoA
InternetGetLastResponseInfoA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetOpenA
InternetCloseHandle
InternetOpenUrlA
InternetSetStatusCallback
InternetSetFilePointer
InternetWriteFile
InternetReadFile
InternetQueryDataAvailable
InternetConnectA
FtpSetCurrentDirectoryA
FtpPutFileA

rpcrt4

RpcStringFreeA
UuidCreate
UuidToStringA

msimg32

TransparentBlt
AlphaBlend

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 460KB - Virtual size: 459KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 376KB - Virtual size: 473KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 580KB - Virtual size: 580KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ba211022ec48bc87a1a7dce6a6782b04

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wininet

rpcrt4

msimg32

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rdata Size: 460KB - Virtual size: 459KB

.data Size: 376KB - Virtual size: 473KB

.rsrc Size: 580KB - Virtual size: 580KB

.text
Size: 2.4MB - Virtual size: 2.4MB

.rdata
Size: 460KB - Virtual size: 459KB

.data
Size: 376KB - Virtual size: 473KB

.rsrc
Size: 580KB - Virtual size: 580KB