0aef3d0f0c94aae0f07711a88e985250

Sharing

Copy URL

Twitter E-mail

General

Target

0aef3d0f0c94aae0f07711a88e985250
Size

1.3MB
MD5

0aef3d0f0c94aae0f07711a88e985250
SHA1

60318275d90eddff885cfb26ecefe756ba4a32af
SHA256

84d62471a183eca3218c50db8e3a0fd10641968bcc562b50bb46a9190d975fef
SHA512

56ff8d8f14b6be9c78615e59594715113e10489f03379b3327e77c4624572b2dec433455533daba731df9811b4f2e9a2560b0e0b3627b13e7cf8fe6253c947a8
SSDEEP

24576:vY4PKtwx7uhyfFlRrz5zS+aZEbjEH6njD8aJKVv:vY4dpuEFlJzFXOGz8aJu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0aef3d0f0c94aae0f07711a88e985250

Files

0aef3d0f0c94aae0f07711a88e985250
.exe windows:5 windows x86 arch:x86

102b4d18b5340137665b8c44e6d0f95c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipCloneImage
GdipLoadImageFromStream
GdipDisposeImage
GdipCreateFromHDC
GdipAlloc
GdipFree
GdiplusShutdown
GdiplusStartup
GdipGetImageHeight
GdipDrawImageI
GdipDeleteGraphics
GdipImageGetFrameCount
GdipGetImageWidth
GdipDrawImageRectRect
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipImageSelectActiveFrame

kernel32

FindResourceExW
lstrcmpiW
CompareStringW
GetTickCount
LoadLibraryW
FormatMessageW
LocalFree
InterlockedIncrement
InterlockedDecrement
GetModuleHandleW
MultiByteToWideChar
GetModuleFileNameW
InitializeCriticalSection
DeleteCriticalSection
GetTempPathW
Sleep
GetLocalTime
SizeofResource
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
CreateEventA
CreateSemaphoreA
DuplicateHandle
ReleaseSemaphore
CloseHandle
WaitForSingleObject
SetEvent
HeapAlloc
GetProcessHeap
HeapFree
GetSystemTimeAsFileTime
GlobalSize
GetProcessTimes
LockResource
WideCharToMultiByte
LoadResource
OpenProcess
SetUnhandledExceptionFilter
TerminateProcess
InterlockedExchangeAdd
GetShortPathNameW
GetLongPathNameW
SetFilePointerEx
GetFileSizeEx
FormatMessageA
FindNextFileW
FindFirstFileW
FindResourceW
CreateSemaphoreW
FindClose
CreateWaitableTimerA
SystemTimeToFileTime
ResumeThread
CreateMutexA
SetEnvironmentVariableA
CompareStringA
CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
IsValidCodePage
GetOEMCP
GetACP
GetConsoleMode
GetConsoleCP
GetStringTypeA
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetTimeZoneInformation
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
SetLastError
MulDiv
RaiseException
lstrcpyW
lstrlenW
GetCurrentProcess
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
FlushInstructionCache
GetLastError
GetFileAttributesW
GetProcAddress
FreeLibrary
LoadLibraryExW
FileTimeToSystemTime
GetSystemTime
ExitThread
CreateThread
GetModuleFileNameA
GetStdHandle
ExitProcess
HeapCreate
VirtualProtect
GetSystemDirectoryW
WaitForMultipleObjects
SetEndOfFile
VirtualQuery
ReadProcessMemory
QueryDosDeviceW
lstrcmpA
lstrcmpW
UnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoW
GetStringTypeW
LCMapStringW
GetCPInfo
GetFileSize
RtlUnwind
CreateDirectoryW
SetFileAttributesW
DeleteFileW
CopyFileW
GetSystemDefaultLangID
ProcessIdToSessionId
GetCurrentProcessId
CreateProcessW
lstrlenA
CreateWaitableTimerW
SetWaitableTimer
CancelWaitableTimer
LocalAlloc
InterlockedExchange
LoadLibraryA
HeapDestroy
HeapReAlloc
HeapSize
InterlockedCompareExchange
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
ReleaseMutex
CreateMutexW
ResetEvent
CreateEventW
SetFilePointer
WriteFile
CreateFileW
OutputDebugStringW
GetSystemInfo
GetVersionExW
GetCurrentThread
GetCommandLineW
ReadFile
FlushFileBuffers
LCMapStringA

user32

DefWindowProcW
SetWindowLongW
GetClientRect
EndPaint
MonitorFromPoint
DestroyMenu
LoadMenuW
CreateDialogParamW
EnableMenuItem
SetMenuInfo
TrackPopupMenu
SetForegroundWindow
IsWindowVisible
LoadIconW
GetSubMenu
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
ClientToScreen
LoadBitmapW
SetTimer
KillTimer
DrawIconEx
DestroyIcon
EnableWindow
AdjustWindowRectEx
GetMenu
GetWindowDC
FillRect
CharNextW
GetFocus
GetSysColor
GetClassNameW
DrawTextW
OffsetRect
ReleaseDC
ScreenToClient
GetCursorPos
SetFocus
PtInRect
ReleaseCapture
GetDlgCtrlID
GetCapture
SetCapture
UpdateWindow
DrawFocusRect
DestroyWindow
CreateWindowExW
IsWindow
SetRectEmpty
IsDialogMessageW
InvalidateRect
MessageBoxW
ShowWindow
GetDC
SystemParametersInfoW
GetSystemMetrics
MonitorFromWindow
GetMonitorInfoW
GetWindowRect
MapWindowPoints
PostQuitMessage
PostMessageW
GetWindow
SetWindowPos
IsWindowEnabled
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
GetDlgItem
SendMessageW
RegisterClassExW
UnregisterClassA
CharPrevW
GetMessageA
IsWindowUnicode
DispatchMessageA
MsgWaitForMultipleObjectsEx
wsprintfW
GetWindowLongW
CallWindowProcW
GetParent
LoadCursorW
SetCursor
LoadImageW
GetClassInfoExW
BeginPaint

gdi32

BitBlt
SetViewportOrgEx
SetTextAlign
SelectClipRgn
GetCurrentObject
CreateRectRgn
TextOutW
StretchBlt
GetTextExtentPoint32W
CreateCompatibleBitmap
CreateCompatibleDC
SetTextColor
CreateFontIndirectW
SelectObject
GetObjectW
CreateFontW
GetDeviceCaps
CreateSolidBrush
DeleteObject
DeleteDC
GetStockObject
SetBkMode
SetBkColor

ole32

OleLoadFromStream
GetHGlobalFromStream
OleSaveToStream
CoCreateGuid
StringFromGUID2
StringFromIID
CoUninitialize
StringFromCLSID
CLSIDFromString
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateInstance
CreateStreamOnHGlobal
CoInitializeEx

oleaut32

VarBstrFromDate
SysFreeString
SystemTimeToVariantTime
VariantTimeToSystemTime
VarUI4FromStr
VariantClear
VariantInit
SysStringByteLen
SysAllocStringByteLen
VariantCopyInd
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreateVector
SafeArrayUnlock
SafeArrayPtrOfIndex
SafeArrayLock
SafeArrayCreate

comctl32

ImageList_Add
ImageList_GetImageInfo
ImageList_GetIconSize
InitCommonControlsEx
ImageList_Draw
_TrackMouseEvent
ImageList_Destroy
ImageList_Create

rpcrt4

UuidCreateSequential

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 1.2MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

102b4d18b5340137665b8c44e6d0f95c

Headers

DLL Characteristics

File Characteristics

Imports

gdiplus

kernel32

user32

gdi32

ole32

oleaut32

comctl32

rpcrt4

iphlpapi

Sections

.text Size: 1.2MB - Virtual size: 1.3MB

.rsrc Size: 37KB - Virtual size: 44KB

.text
Size: 1.2MB - Virtual size: 1.3MB

.rsrc
Size: 37KB - Virtual size: 44KB