2cc34bca2d9c8d058c46f1e80641b403772ccbb71538a32210b80370fd6e4799

Sharing

Copy URL Twitter E-mail

General

Target

2cc34bca2d9c8d058c46f1e80641b403772ccbb71538a32210b80370fd6e4799
Size

2.1MB
MD5

6c7b3119401aeae2b7708e1e98053f9f
SHA1

0318aacc323e438dd92064e4b66820d7fdbd768d
SHA256

2cc34bca2d9c8d058c46f1e80641b403772ccbb71538a32210b80370fd6e4799
SHA512

0989bff5adf7fedeb8b904d5faf88efc419be128c301bf01d4a248f460cdf7f8022a2b5abd1d346fb5d52466cc547db2db399863ac11d78d1a8915247609e816
SSDEEP

49152:v33NhzJn78mXnOY2QMnaV8cDbMY0dCYVDMS1MFNcoGKE:vnJpXgQuaV8cDbR0oY6S1T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cc34bca2d9c8d058c46f1e80641b403772ccbb71538a32210b80370fd6e4799

Files

2cc34bca2d9c8d058c46f1e80641b403772ccbb71538a32210b80370fd6e4799
.exe windows:5 windows x86 arch:x86

d113741be2575fac4e3f22fbe31b0728

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
CreateFileA
GetProcessHeap
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringA
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
VirtualFree
HeapCreate
GetStartupInfoA
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
ExitProcess
GetFileType
SetStdHandle
RaiseException
RtlUnwind
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapFree
GetSystemTimeAsFileTime
HeapAlloc
ExitThread
GetStartupInfoW
FindResourceExW
VirtualProtect
GetProfileIntW
SearchPathW
GetTempPathW
GetTempFileNameW
lstrcpyW
GetCurrentDirectoryW
SetErrorMode
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
lstrlenA
GlobalGetAtomNameW
ReleaseMutex
ResumeThread
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetThreadLocale
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GetCurrentProcessId
GetModuleHandleA
SetLastError
GlobalSize
MulDiv
QueryPerformanceCounter
QueryPerformanceFrequency
LocalAlloc
GetVersionExW
FreeLibrary
FreeResource
GetPrivateProfileStringW
CreateMutexW
GetPrivateProfileIntW
LocalFree
GetCommandLineW
SetWaitableTimer
CreateWaitableTimerW
InterlockedDecrement
InterlockedIncrement
GetProcAddress
LoadLibraryW
MultiByteToWideChar
WideCharToMultiByte
FormatMessageW
CreateDirectoryW
GetFileAttributesW
CopyFileW
MoveFileW
lstrcmpiW
lstrlenW
GetModuleHandleW
FindClose
FindNextFileW
FindFirstFileW
GetFileSize
GlobalFree
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalAlloc
GetTickCount
GetOverlappedResult
CancelIo
GetLocalTime
OutputDebugStringW
GetLastError
WaitForSingleObject
WriteFile
ReadFile
CreateFileW
CreateThread
GetModuleFileNameW
DeleteFileW
WritePrivateProfileStringW
FindResourceW
LoadResource
LockResource
SizeofResource
WaitForMultipleObjects
CreateSemaphoreW
CreateEventW
ReleaseSemaphore
CloseHandle
SetEvent
Sleep
LCMapStringW

user32

SetWindowContextHelpId
MapDialogRect
MessageBeep
IsZoomed
PostQuitMessage
GetKeyNameTextW
CharUpperW
LoadMenuW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetWindowTextLengthW
GetForegroundWindow
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
ValidateRect
DefWindowProcW
GetMenu
IntersectRect
DrawStateW
GetWindowPlacement
IsRectEmpty
GetWindowThreadProcessId
IsWindowEnabled
EndPaint
BeginPaint
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
MapVirtualKeyW
SetWindowPos
UpdateWindow
ReleaseCapture
ClientToScreen
SetCapture
SetWindowRgn
GetWindowDC
OffsetRect
TrackPopupMenu
CreatePopupMenu
GetLastActivePopup
RegisterDeviceNotificationW
DrawIcon
IsIconic
SetForegroundWindow
AppendMenuW
FindWindowW
PostMessageW
MessageBoxW
InvalidateRect
IsWindow
GetSystemMenu
UnregisterDeviceNotification
LoadIconW
LoadImageW
GetDoubleClickTime
SystemParametersInfoW
RedrawWindow
DrawEdge
InflateRect
GetSysColor
CreateWindowExW
CallWindowProcW
DestroyWindow
GetWindowTextW
SetRectEmpty
TrackMouseEvent
SetWindowLongW
GetWindowLongW
TranslateMessage
GetMessageW
ShowOwnedPopups
GetMenuItemInfoW
DestroyMenu
WindowFromPoint
GetSysColorBrush
WaitMessage
DeleteMenu
PostThreadMessageW
CopyAcceleratorTableW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
KillTimer
ReleaseDC
CopyRect
SetTimer
GetSystemMetrics
GetWindowRect
SetCursor
LoadCursorW
ScreenToClient
GetCursorPos
PtInRect
GetAsyncKeyState
DestroyAcceleratorTable
LoadAcceleratorsW
CreateAcceleratorTableW
NotifyWinEvent
SetParent
SetClassLongW
GetDlgCtrlID
IsMenu
GetClientRect
SetRect
FillRect
IsWindowVisible
FrameRect
GetParent
EnableWindow
SendMessageW
GetFocus
SetFocus
GetDC
BringWindowToTop
LockWindowUpdate
EnumChildWindows
GetWindow
RegisterClipboardFormatW
DestroyCursor
GetWindowRgn
CreateMenu
GetIconInfo
SubtractRect
CopyIcon
CharUpperBuffW
GetUpdateRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
IsClipboardFormatAvailable
MapVirtualKeyExW
IsCharLowerW
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
SetCursorPos
DrawFocusRect
DrawFrameControl
DrawIconEx
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
UnregisterClassW
GetNextDlgGroupItem
InvalidateRgn
CharNextW
EmptyClipboard
CloseClipboard
SetClipboardData
DestroyIcon
CopyImage
SystemParametersInfoA
OpenClipboard

gdi32

SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
CreateBitmap
GetObjectType
RestoreDC
CreateHatchBrush
GetDCOrgEx
CreateRectRgnIndirect
PatBlt
SetRectRgn
GetMapMode
DPtoLP
GetTextMetricsW
OffsetRgn
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
GetTextColor
SetDIBColorTable
GetBkColor
Ellipse
Polygon
Rectangle
RoundRect
CreatePalette
GetPaletteEntries
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
LPtoDP
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
SaveDC
CopyMetaFileW
GetDeviceCaps
GetTextExtentPoint32W
RemoveFontResourceW
AddFontResourceW
CreateFontIndirectW
CreateRectRgn
Polyline
CreateSolidBrush
CreatePolygonRgn
GetDIBits
RealizePalette
SelectPalette
GetStockObject
StretchBlt
DeleteDC
DeleteObject
CombineRgn
SelectObject
CreateDIBSection
GetObjectW
SetPixel
PtInRegion
GetPixel
CreateEllipticRgn
CreateFontW
CreateCompatibleBitmap
CreatePen
BitBlt
CreateCompatibleDC

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegOpenKeyExW
RegQueryValueExW
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
RegOpenKeyW
RegCreateKeyExW
RegSetValueExW
RegEnumKeyExW
RegCloseKey
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegDeleteValueW

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetSpecialFolderPathW
SHBrowseForFolderW
CommandLineToArgvW
Shell_NotifyIconW
ShellExecuteExW
DragQueryFileW
DragFinish
ShellExecuteW
SHAppBarMessage
SHGetFileInfoW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

StrStrIW
PathRemoveFileSpecW
PathFindExtensionW
PathRemoveExtensionW
PathStripToRootW
PathIsUNCW
PathFileExistsW
PathFindFileNameW

oledlg

OleUIBusyW

ole32

CoTaskMemAlloc
OleDuplicateData
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleLockRunning
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleGetClipboard
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
ReleaseStgMedium
PropVariantClear
CreateStreamOnHGlobal
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitialize
RegisterDragDrop
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
CoLockObjectExternal

oleaut32

SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocString
OleCreateFontIndirect
SysFreeString
SysStringLen

urlmon

URLDownloadToFileW

gdiplus

GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipFillRectangleI
GdipSetSmoothingMode
GdipDrawImageRectI
GdiplusShutdown
GdiplusStartup
GdipIsVisiblePathPointI
GdipSetPenColor
GdipFillPath
GdipDrawRectangle
GdipDrawPath
GdipDeletePen
GdipCreatePen1
GdipAddPathLineI
GdipAddPathArcI
GdipDeletePath
GdipCreatePath
GdipCloneBitmapAreaI
GdipFree
GdipDisposeImage
GdipAlloc
GdipCloneImage
GdipCreateFromHDC
GdipDeleteGraphics
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectRect
GdipCreateBitmapFromFile
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipDrawImageRect
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipFillRectangle

setupapi

SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces

hid

HidD_SetFeature
HidD_GetFeature
HidD_GetHidGuid
HidD_GetPreparsedData
HidD_GetAttributes
HidP_GetCaps
HidD_FreePreparsedData
HidD_GetProductString
HidP_GetSpecificButtonCaps
HidP_GetSpecificValueCaps

wininet

DeleteUrlCacheEntryW

imm32

ImmGetVirtualKey
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW
timeBeginPeriod
timeGetDevCaps
timeEndPeriod
timeKillEvent

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 356KB - Virtual size: 355KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d113741be2575fac4e3f22fbe31b0728

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

gdiplus

setupapi

hid

wininet

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 356KB - Virtual size: 355KB

.data Size: 27KB - Virtual size: 158KB

.rsrc Size: 37KB - Virtual size: 36KB

.reloc Size: 166KB - Virtual size: 166KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 356KB - Virtual size: 355KB

.data
Size: 27KB - Virtual size: 158KB

.rsrc
Size: 37KB - Virtual size: 36KB

.reloc
Size: 166KB - Virtual size: 166KB