e7b0d9cef65b4078b9662f41d235bfa0ac59fc19ecac23995e11074d32b4e125

Sharing

Copy URL Twitter E-mail

General

Target

e7b0d9cef65b4078b9662f41d235bfa0ac59fc19ecac23995e11074d32b4e125
Size

5.5MB
MD5

d188acb15d076f9f655fc6b805e1b3b0
SHA1

bcb28287d911abd99c2d7e21885e8b5520386c2d
SHA256

e7b0d9cef65b4078b9662f41d235bfa0ac59fc19ecac23995e11074d32b4e125
SHA512

15b47614fc752ea7667c13fd41fc16163ba1e545b36dddbf470885ef015abb86332666a670a4cff15264f8642bc89796bec9a3b28ab752e46da65e2a34b52d8c
SSDEEP

98304:xi9/Ab+AWerPuiQ+6C0SFLOAkGkzdnEVomFHKnP:z+DCN6oFLOyomFHKnP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e7b0d9cef65b4078b9662f41d235bfa0ac59fc19ecac23995e11074d32b4e125

Files

e7b0d9cef65b4078b9662f41d235bfa0ac59fc19ecac23995e11074d32b4e125
.exe windows:6 windows x64 arch:x64

704a22d641b198af59d87e9efa15f6fa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

avcodec-58

av_codec_set_pkt_timebase
av_packet_alloc
av_packet_free
av_packet_ref
av_packet_unref
avcodec_alloc_context3
avcodec_close
avcodec_find_decoder
avcodec_free_context
avcodec_open2
avcodec_parameters_copy
avcodec_parameters_to_context
avcodec_receive_frame
avcodec_send_packet

avformat-58

av_find_default_stream_index
av_interleaved_write_frame
av_read_frame
av_register_all
av_seek_frame
av_write_trailer
avformat_alloc_output_context2
avformat_close_input
avformat_find_stream_info
avformat_network_init
avformat_new_stream
avformat_open_input
avformat_write_header
avio_open

avutil-56

av_buffer_create
av_frame_alloc
av_frame_free
av_free
av_freep
av_get_bytes_per_sample
av_get_channel_layout_nb_channels
av_get_default_channel_layout
av_log
av_log_set_level
av_mallocz
av_pix_fmt_desc_get
av_rescale
av_rescale_q
av_rescale_q_rnd
av_rescale_rnd
av_samples_alloc
av_samples_alloc_array_and_samples
av_samples_get_buffer_size

swresample-3

swr_alloc_set_opts
swr_convert
swr_free
swr_get_delay
swr_init

libcurl

curl_easy_cleanup
curl_easy_perform
curl_easy_setopt
curl_easy_init

wininet

InternetGetConnectedState

libcef

cef_string_multimap_free
cef_string_multimap_alloc
cef_string_utf16_set
cef_string_utf16_clear
cef_string_userfree_utf16_free
cef_string_list_alloc
cef_string_list_free
cef_execute_process
cef_initialize
cef_string_multimap_append
cef_quit_message_loop
cef_enable_highdpi_support
cef_api_hash
cef_browser_host_create_browser
cef_string_map_alloc
cef_string_map_free
cef_string_utf16_cmp
cef_string_list_size
cef_string_list_value
cef_string_list_append
cef_string_map_size
cef_string_map_key
cef_string_map_value
cef_string_map_append
cef_string_multimap_size
cef_string_multimap_key
cef_string_multimap_value

opengl32

glTexParameteri
glTexImage2D
glGenTextures
glDrawArrays
glBindTexture
glViewport
glShadeModel
glGetString
glEnable
glClearColor
glClear
wglMakeCurrent
wglCreateContext

glew32

__glewUseProgram
__glewUniformMatrix4fv
__glewEnableVertexAttribArray
__glewDeleteProgram
__glewCreateShader
glewInit
__glewCreateProgram
__glewCompileShader
__glewUniform1i
__glewShaderSource
__glewLinkProgram
__glewGetUniformLocation
__glewGetShaderiv
__glewGetProgramiv
__glewActiveTexture
__glewVertexAttribPointer
__glewAttachShader
__glewGetAttribLocation

kernel32

FormatMessageW
OutputDebugStringA
EncodePointer
GetSystemDirectoryW
GetModuleHandleExW
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomW
GlobalFindAtomW
CreateActCtxW
ActivateActCtx
DeactivateActCtx
FindActCtxSectionStringW
QueryActCtxW
CompareStringW
GetCurrentProcessId
FileTimeToLocalFileTime
GetFileAttributesExW
GlobalAlloc
GetFileTime
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
SetEvent
CreateEventW
SetThreadPriority
ResumeThread
GetCurrentThread
lstrcmpA
VerSetConditionMask
lstrcpyW
VerifyVersionInfoW
FindClose
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
DuplicateHandle
GetCurrentProcess
lstrcmpiW
GetThreadLocale
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GlobalGetAtomNameW
GlobalFlags
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetCurrentDirectoryW
SetErrorMode
FindResourceExW
GetWindowsDirectoryW
SearchPathW
LocalFree
GetTempFileNameW
GetUserDefaultLCID
ResetEvent
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
SetLastError
GetTickCount
CopyFileW
GetLocalTime
WriteFile
CreateFileW
GetExitCodeThread
TerminateThread
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
FindNextFileW
FindFirstFileW
InitializeCriticalSection
Sleep
GetTempPathW
GetFileAttributesW
CreateDirectoryW
LoadLibraryW
GetProcAddress
FreeLibrary
GetCurrentThreadId
CreateMutexW
GetModuleHandleW
CreateWaitableTimerW
SetWaitableTimer
WaitForSingleObject
CloseHandle
GetVersionExW
GetSystemInfo
DeleteFileW
MulDiv
GetModuleFileNameW
CreateThread
WideCharToMultiByte
MultiByteToWideChar
FindResourceW
SizeofResource
LockResource
LoadResource
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
RaiseException
DecodePointer
GlobalFree
GlobalLock
GlobalUnlock
GetProfileIntW
GlobalSize
OutputDebugStringW
LCMapStringEx
GetStringTypeW
GetCPInfo
RtlUnwindEx
RtlPcToFileHeader
ExitProcess
QueryPerformanceFrequency
ExitThread
FreeLibraryAndExitThread
GetCommandLineA
GetCommandLineW
RtlUnwind
VirtualAlloc
VirtualQuery
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetTimeZoneInformation
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetDriveTypeW
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
WriteConsoleW
GetFileSizeEx

user32

LoadAcceleratorsW
CreateAcceleratorTableW
DestroyAcceleratorTable
SetCursorPos
SetParent
BringWindowToTop
LockWindowUpdate
SetClassLongPtrW
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
GetDoubleClickTime
GetIconInfo
CopyIcon
GetUpdateRect
HideCaret
InvertRect
GetKeyNameTextW
FrameRect
DrawIcon
CharUpperBuffW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsClipboardFormatAvailable
SubtractRect
CreateMenu
GetComboBoxInfo
DestroyCursor
GetWindowRgn
GetSysColorBrush
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
IsIconic
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
MapDialogRect
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
GetSysColor
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetMenuState
MapVirtualKeyW
TrackMouseEvent
LoadBitmapW
LoadStringW
MessageBoxA
PostThreadMessageW
GetMessageW
LoadIconW
CheckMenuRadioItem
GetWindowThreadProcessId
FindWindowExW
FindWindowW
ScreenToClient
UpdateWindow
DeleteMenu
ModifyMenuW
GetSubMenu
LoadMenuW
DestroyWindow
IsWindow
UnregisterHotKey
RegisterHotKey
DrawFrameControl
KillTimer
SetTimer
MoveWindow
ShowWindow
PtInRect
EqualRect
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetSystemMetrics
wsprintfW
SetWindowLongW
GetWindowLongW
SetLayeredWindowAttributes
SystemParametersInfoW
OffsetRect
CopyRect
FillRect
ReleaseDC
GetWindowRect
InvalidateRect
GetDC
SendMessageW
GetClientRect
EnableWindow
PostMessageW
GetParent
UnregisterClassW
SetWindowContextHelpId
RegisterClipboardFormatW
SetCursor
ShowOwnedPopups
PostQuitMessage
TranslateMessage
GetCursorPos
DrawStateW
SetRectEmpty
SendDlgItemMessageA
IntersectRect
InflateRect
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
GetNextDlgGroupItem
SetRect
InvalidateRgn
CopyAcceleratorTableW
CharNextW
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
SetMenuDefaultItem
GetMenuDefaultItem
IsWindowEnabled
CheckDlgButton
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongPtrW
SetWindowLongPtrW
GetWindowLongPtrW
MapWindowPoints
MessageBoxW
AdjustWindowRectEx
CreatePopupMenu
NotifyWinEvent
MessageBeep
GetSystemMenu
ReleaseCapture
SetCapture
IsZoomed
LoadImageW
DestroyIcon
GetAsyncKeyState
CopyImage
RealChildWindowFromPoint
WindowFromPoint
CharUpperW
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetMenuItemInfoW
DestroyMenu
WaitMessage
DrawIconEx
IsRectEmpty
DrawFocusRect
SetWindowRgn
DrawEdge
EnumDisplayMonitors
GetMenuStringW
GetPropW
LoadCursorW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetClassInfoW
GetScrollPos

gdi32

TextOutW
ExtTextOutW
Polyline
CreateFontW
GetDIBits
GetStockObject
RealizePalette
SelectPalette
CopyMetaFileW
CreateDCW
CreateHatchBrush
CreatePatternBrush
CreateRectRgn
DeleteObject
PtVisible
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
RectVisible
Escape
SwapBuffers
GetDeviceCaps
SetPixelFormat
ChoosePixelFormat
GetObjectW
StretchBlt
FrameRgn
CreateSolidBrush
CreateRoundRectRgn
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
SelectObject
CreatePen
ExcludeClipRect
CreateBitmap
SetBkColor
GetTextFaceW
SetPixelV
GetViewportOrgEx
GetWindowOrgEx
PtInRegion
GetBoundsRect
FillRgn
SetPaletteEntries
ExtFloodFill
LPtoDP
GetSystemPaletteEntries
GetNearestPaletteIndex
EnumFontFamiliesExW
GetPaletteEntries
CreatePalette
RoundRect
OffsetRgn
Rectangle
SetDIBColorTable
SetPixel
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectW
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetTextMetricsW
CreateEllipticRgn
Ellipse
GetBkColor
GetTextColor
GetTextExtentPoint32W
CreatePolygonRgn
Polygon
CreateDIBSection
GetRgnBox
DeleteDC

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
RegEnumKeyExW

shell32

SHGetFileInfoW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
SHGetPathFromIDListW
SHGetMalloc
DragFinish
DragQueryFileW
ShellExecuteExW
SHAppBarMessage
ShellExecuteW
SHBrowseForFolderW

comctl32

InitCommonControlsEx
_TrackMouseEvent

shlwapi

ord12
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW

uxtheme

GetThemePartSize
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemeSysColor
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeText
IsAppThemed
DrawThemeParentBackground

ole32

CoTaskMemFree
CoTaskMemAlloc
OleDuplicateData
ReleaseStgMedium
CoUninitialize
CoInitializeEx
CoCreateInstance
CoCreateGuid
CoInitialize
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CoDisconnectObject
CoGetClassObject
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
DoDragDrop
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop

oleaut32

VariantCopy
OleCreateFontIndirect
SafeArrayDestroy
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
LoadTypeLi
SysStringLen
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipCreateBitmapFromScan0
GdipDrawImageI
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdiplusShutdown
GdipGetImageWidth
GdipGetImageHeight
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImagePointRectI
GdipReleaseDC
GdiplusStartup
GdipAlloc
GdipFree
GdipLoadImageFromStream
GdipCloneImage
GdipDisposeImage
GdipLoadImageFromFile

ws2_32

WSAStartup
WSACleanup
WSASetLastError

msvfw32

DrawDibOpen
DrawDibRealize
DrawDibBegin
DrawDibDraw
DrawDibEnd

netapi32

Netbios

winmm

waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite
PlaySoundW
waveOutOpen
waveOutClose

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 694KB - Virtual size: 694KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 890KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

704a22d641b198af59d87e9efa15f6fa

Headers

DLL Characteristics

File Characteristics

Imports

avcodec-58

avformat-58

avutil-56

swresample-3

libcurl

wininet

libcef

opengl32

glew32

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

msvfw32

netapi32

winmm

oleacc

imm32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 694KB - Virtual size: 694KB

.data Size: 890KB - Virtual size: 1.3MB

.pdata Size: 114KB - Virtual size: 113KB

_RDATA Size: 512B - Virtual size: 244B

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 71KB - Virtual size: 70KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 694KB - Virtual size: 694KB

.data
Size: 890KB - Virtual size: 1.3MB

.pdata
Size: 114KB - Virtual size: 113KB

_RDATA
Size: 512B - Virtual size: 244B

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 71KB - Virtual size: 70KB