40690c8c86bcc43be52dc1360cbc444e65194bc64224f49c488a8958c2d24577

Sharing

Copy URL

Twitter E-mail

General

Target

40690c8c86bcc43be52dc1360cbc444e65194bc64224f49c488a8958c2d24577
Size

2.3MB
MD5

37ad110f7a516a07f3596051964a0626
SHA1

587dd8c6dd5ca3c41f06566abfdbb011adcd6242
SHA256

40690c8c86bcc43be52dc1360cbc444e65194bc64224f49c488a8958c2d24577
SHA512

50abac665ef4e42a2ff6687649e0a04fd80f0e79b114b1c921158874732598882e9cf5e225d9816dd7202f0a1f952272842cadf9883712b427ce862e5ff806b9
SSDEEP

49152:UEuAHYRzu54bzfRfBqJKSymLD6U/BorldPs1vuA33qM+Y:HuA4RAYRfBqwSymLD6U/65dPs1v133q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40690c8c86bcc43be52dc1360cbc444e65194bc64224f49c488a8958c2d24577

Files

40690c8c86bcc43be52dc1360cbc444e65194bc64224f49c488a8958c2d24577
.dll windows:6 windows x86 arch:x86

a2d3dd77bae0819b4fa2c5d21a2b9442

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetOEMCP
GetCPInfo
FileTimeToSystemTime
GetACP
SetErrorMode
CreateFileA
DeleteFileA
FindClose
FindFirstFileA
FlushFileBuffers
GetFileSize
GetFullPathNameA
GlobalReAlloc
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
lstrcmpiA
GetVolumeInformationA
FileTimeToLocalFileTime
GetFileAttributesA
GetFileAttributesExA
GetFileSizeEx
GetFileTime
SystemTimeToTzSpecificLocalTime
lstrcpyA
GetCurrentDirectoryA
FindResourceExW
GetWindowsDirectoryA
VerSetConditionMask
VerifyVersionInfoA
GetTempPathA
GetTickCount
GetProfileIntA
SearchPathA
Sleep
GetTempFileNameA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
ResetEvent
WaitForSingleObjectEx
CreateEventW
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetSystemDefaultUILanguage
VirtualProtect
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
ResumeThread
SetThreadPriority
SetEvent
lstrcmpA
GetVersionExA
GetCurrentThread
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryA
LoadLibraryExW
GetLocaleInfoW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
SetLastError
EncodePointer
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
FindResourceW
LoadResource
LockResource
SizeofResource
OutputDebugStringA
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
CloseHandle
WaitForSingleObject
WideCharToMultiByte
MultiByteToWideChar
GlobalFlags
GetUserDefaultUILanguage
LocalReAlloc
LocalAlloc
InitializeCriticalSection
GlobalHandle
OutputDebugStringW
CompareStringW
LCMapStringW
GetStringTypeW
RtlUnwind
InterlockedFlushSList
CreateFileW
GetFileType
GetSystemInfo
VirtualAlloc
VirtualQuery
SetStdHandle
GetCommandLineA
GetCommandLineW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
HeapQueryInformation
QueryPerformanceFrequency
ExitProcess
GetStdHandle
GetDateFormatW
GetTimeFormatW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetFilePointerEx
ReadConsoleW
GetFileAttributesExW
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
LockFile
WriteConsoleW

user32

ReuseDDElParam
GetComboBoxInfo
PostThreadMessageA
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
IsClipboardFormatAvailable
GetUpdateRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
OpenClipboard
SetParent
SetClassLongA
EnumDisplayMonitors
SetLayeredWindowAttributes
NotifyWinEvent
LoadCursorW
InvertRect
HideCaret
EnableScrollBar
MessageBeep
GetIconInfo
DrawIconEx
LoadImageA
IsRectEmpty
DrawFocusRect
WindowFromPoint
ReleaseCapture
SetCapture
GetNextDlgGroupItem
GetMenuDefaultItem
CreatePopupMenu
DeleteMenu
LoadImageW
DestroyIcon
TrackMouseEvent
CharUpperA
IntersectRect
MapDialogRect
GetAsyncKeyState
RealChildWindowFromPoint
LoadCursorA
GetSysColorBrush
CopyImage
InflateRect
GetMenuItemInfoA
DestroyMenu
SetCursor
ShowOwnedPopups
GetCursorPos
TranslateMessage
GetMessageA
PostQuitMessage
MapVirtualKeyA
GetKeyNameTextA
SetRectEmpty
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
GetWindowThreadProcessId
ClientToScreen
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuState
GetMenuStringA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
UnpackDDElParam
IsDialogMessageA
SetWindowTextA
IsWindowEnabled
SendDlgItemMessageA
SetDlgItemTextA
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
EqualRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
BeginPaint
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgItem
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
UnregisterClassA
PostMessageA
GetParent
IsWindowVisible
MessageBoxA
KillTimer
SetTimer
GetKeyState
SetForegroundWindow
SetWindowRgn
OffsetRect
GetFocus
GetDesktopWindow
IsWindow
GetDlgCtrlID
GetWindow
SystemParametersInfoA
PtInRect
GetSystemMetrics
SetRect
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
MonitorFromPoint
UpdateLayeredWindow
UnionRect
DrawIcon
FrameRect
CopyIcon
SetCursorPos
BringWindowToTop
GetSystemMenu
GetWindowRect
GetWindowDC
LoadMenuW
IsZoomed
DrawFrameControl
DrawEdge
DrawStateA
EmptyClipboard
SetClipboardData
CheckMenuItem
ReleaseDC
FillRect
GetClientRect
SendMessageA
LoadBitmapW
InvalidateRect
GetActiveWindow
GetWindowLongA
CopyRect
GetSysColor
EnableWindow
CloseClipboard
CheckDlgButton

gdi32

TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
GetLayout
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CreateFontIndirectA
GetTextExtentPoint32A
CombineRgn
SetRectRgn
DPtoLP
GetTextMetricsA
EnumFontFamiliesExA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
CreateDIBSection
SetDIBColorTable
GetStockObject
CreateCompatibleDC
GetObjectA
StretchBlt
CreateEllipticRgn
Ellipse
GetTextColor
CreateSolidBrush
BitBlt
CreateRoundRectRgn
Rectangle
DeleteDC
SetBkColor
SetTextColor
CreateBitmap
CopyMetaFileA
CreateDCA
GetDeviceCaps
MoveToEx
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
DeleteObject
Escape
ExcludeClipRect
GetClipBox
GetObjectType
CreatePolygonRgn
Polygon
Polyline
LPtoDP
GetRgnBox
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceA
SetLayout
SetMapMode
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SetTextAlign
SetROP2
CreateFontA
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
SetPolyFillMode

msimg32

AlphaBlend
TransparentBlt

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegEnumKeyA
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
SHBrowseForFolderA
SHAppBarMessage
DragFinish
DragQueryFileA
SHGetFileInfoA

comctl32

_TrackMouseEvent

shlwapi

PathFindExtensionA
PathStripToRootA
StrFormatKBSizeA
PathRemoveFileSpecW
PathIsUNCA
PathFindFileNameA

uxtheme

DrawThemeParentBackground
OpenThemeData
GetThemePartSize
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetWindowTheme
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
DrawThemeText

ole32

CoTaskMemAlloc
OleDestroyMenuDescriptor
CoTaskMemFree
IsAccelerator
OleTranslateAccelerator
OleCreateMenuDescriptor
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CoInitializeEx
CreateStreamOnHGlobal
CoDisconnectObject
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocStringByteLen
SysFreeString
VariantChangeType
VariantClear
VariantCopy
VarBstrFromDate
LoadTypeLi
SysAllocString
VariantInit
SysAllocStringLen

gdiplus

GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectI

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

winmm

PlaySoundA

Exports

Exports

AuthManageDlg
ShowBalanceDlg
ShowChooseHealthTypeDlg
ShowConsumeDlg
ShowInputAmtDlg
ShowInputCardDlg
ShowInputPwdDlg
ShowInputScanDlg

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 355KB - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 202KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a2d3dd77bae0819b4fa2c5d21a2b9442

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

Exports

Exports

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 355KB - Virtual size: 354KB

.data Size: 22KB - Virtual size: 50KB

.rsrc Size: 202KB - Virtual size: 202KB

.reloc Size: 139KB - Virtual size: 139KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 355KB - Virtual size: 354KB

.data
Size: 22KB - Virtual size: 50KB

.rsrc
Size: 202KB - Virtual size: 202KB

.reloc
Size: 139KB - Virtual size: 139KB

.rmnet
Size: 56KB - Virtual size: 60KB