2a2ac5eb659f165cbe92713e4d5282a8

Sharing

Copy URL

Twitter E-mail

General

Target

2a2ac5eb659f165cbe92713e4d5282a8
Size

35KB
MD5

2a2ac5eb659f165cbe92713e4d5282a8
SHA1

a57a710abb3dd27084be4db71e18e84e95e84319
SHA256

8cee0aa437d36444bd4867ccc7457a1d0b95161c847ca25d1e3181196bcf7329
SHA512

0cfe14594702b046e2022a174f9920c9722822bd219f1c355380b67c8181db7b1da3832190a4f912767e2a642b2ff894875d476e97ac1f9866538fa7a25e1fb1
SSDEEP

384:wFwNNtTeGZxvi2JS/RTNedKFwNoK1j/HjVYYhX1r7vSNnJtp+bMkIWNHWR9+EMQY:Qwvt6Qg/Ry+wVjLKsX1vqbYY4Y9l2D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a2ac5eb659f165cbe92713e4d5282a8

Files

2a2ac5eb659f165cbe92713e4d5282a8
.exe windows:5 windows x86 arch:x86

15eedf6d7ae89e2e3d5612620a45c7d4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
lstrcatA
GetWindowsDirectoryA
LoadLibraryW
GetProcAddress
VirtualAlloc

msvcrt

memcpy
memset

user32

GetUpdateRect
AdjustWindowRect
AllowSetForegroundWindow
BeginPaint
BringWindowToTop
BroadcastSystemMessageW
CallMsgFilter
CallMsgFilterA
CallWindowProcA
CallWindowProcW
ChangeDisplaySettingsExW
ChangeMenuA
CharLowerBuffW
CharPrevA
CharToOemA
CharToOemBuffW
CharUpperBuffW
CheckRadioButton
CopyImage
CreateCursor
CreateDialogIndirectParamA
CreateIconFromResource
CreateWindowExA
CreateWindowStationA
DdeAccessData
DdeAddData
DdeEnableCallback
DdeGetLastError
DdeKeepStringHandle
DdeReconnect
DefDlgProcA
DefDlgProcW
DefFrameProcA
DefMDIChildProcW
DefWindowProcA
DeleteMenu
DeregisterShellHookWindow
DestroyAcceleratorTable
DialogBoxIndirectParamW
DialogBoxParamA
DispatchMessageA
DlgDirListComboBoxA
DrawAnimatedRects
DrawEdge
DrawFrameControl
DrawMenuBar
DrawTextExA
DrawTextExW
EditWndProc
EndDialog
EndPaint
EnumDesktopWindows
EnumDisplayDevicesW
EnumDisplaySettingsExW
EnumPropsA
EnumWindowStationsA
EnumWindowStationsW
EqualRect
ExcludeUpdateRgn
FreeDDElParam
GetAltTabInfoA
GetAltTabInfoW
GetCaretBlinkTime
GetClassInfoA
GetClassInfoW
GetClassLongW
GetClipboardData
GetCursorPos
GetDesktopWindow
GetDialogBaseUnits
GetDlgItemTextW
GetGUIThreadInfo
GetInputState
GetKeyboardLayoutList
GetKeyboardState
GetMenuItemID
GetMenuStringW
GetMessageTime
GetMonitorInfoA
GetProcessDefaultLayout
GetPropA
GetPropW
GetQueueStatus
GetScrollBarInfo
GetSubMenu
GetSystemMenu
GetTabbedTextExtentA
GetTabbedTextExtentW
GetSysColor
GetUpdateRgn
GetUserObjectInformationA
GetWindow
GetWindowInfo
GetWindowModuleFileNameW
GetWindowRect
GetWindowTextLengthW
GetWindowWord
IMPGetIMEW
IMPQueryIMEA
IMPSetIMEA
ImpersonateDdeClientWindow
InSendMessageEx
InflateRect
InvalidateRgn
IsCharUpperW
IsClipboardFormatAvailable
IsDlgButtonChecked
IsHungAppWindow
IsWindow
LoadAcceleratorsW
LoadCursorA
LoadCursorFromFileA
LoadImageA
LoadKeyboardLayoutA
MapVirtualKeyExW
MenuItemFromPoint
MessageBoxExW
MessageBoxIndirectA
MonitorFromWindow
MoveWindow
MsgWaitForMultipleObjects
NotifyWinEvent
OemKeyScan
OemToCharA
OemToCharW
OpenIcon
PeekMessageW
PostQuitMessage
RealChildWindowFromPoint
RealGetWindowClass
RealGetWindowClassW
RegisterClassExW
RegisterDeviceNotificationA
RegisterShellHookWindow
ReleaseCapture
RemovePropW
ScreenToClient
ScrollWindow
SendDlgItemMessageA
SendMessageTimeoutA
SendMessageTimeoutW
SendNotifyMessageW
SetActiveWindow
SetCaretPos
SetClassLongA
SetClassWord
SetDlgItemTextA
SetDlgItemTextW
SetDoubleClickTime
SetMenuDefaultItem
SetMenuInfo
SetProcessWindowStation
SetPropW
SetScrollRange
SetSystemCursor
SetTimer
ShowOwnedPopups
SwapMouseButton
SwitchToThisWindow
SystemParametersInfoA
TileChildWindows
ToUnicode
TranslateAccelerator
TranslateAcceleratorA
TranslateMessage
UnhookWinEvent
UnpackDDElParam
UnregisterClassA
UpdateWindow
ValidateRgn
VkKeyScanExW
WINNLSGetEnableStatus
WINNLSGetIMEHotkey
WinHelpA
wsprintfA

advapi32

RegOpenKeyExA

ole32

BindMoniker
CLIPFORMAT_UserFree
CLIPFORMAT_UserUnmarshal
CLSIDFromProgID
CLSIDFromString
CoAddRefServerProcess
CoAllowSetForegroundWindow
CoCancelCall
CoCreateInstance
CoCreateInstanceEx
CoCreateObjectInContext
CoDeactivateObject
CoDisableCallCancellation
CoDisconnectObject
CoFileTimeNow
CoFileTimeToDosDateTime
CoFreeAllLibraries
CoFreeUnusedLibraries
CoGetApartmentID
CoGetCallContext
CoGetCancelObject
CoGetClassObject
CoGetClassVersion
CoGetCurrentLogicalThreadId
CoGetInstanceFromIStorage
CoGetInterfaceAndReleaseStream
CoGetMalloc
CoGetMarshalSizeMax
CoGetObjectContext
CoGetPSClsid
CoGetStandardMarshal
CoGetStdMarshalEx
CoImpersonateClient
CoInitialize
CoInitializeWOW
CoInstall
CoIsHandlerConnected
CoIsOle1Class
CoLoadLibrary
CoLockObjectExternal
CoMarshalHresult
CoMarshalInterThreadInterfaceInStream
CoMarshalInterface
CoQueryAuthenticationServices
CoQueryClientBlanket
CoQueryProxyBlanket
CoQueryReleaseObject
CoReactivateObject
CoRegisterChannelHook
CoRegisterClassObject
CoRegisterMallocSpy
CoRegisterMessageFilter
CoRegisterSurrogate
CoRegisterSurrogateEx
CoReleaseMarshalData
CoReleaseServerProcess
CoRevertToSelf
CoRevokeClassObject
CoRevokeMallocSpy
CoSetCancelObject
CoSetProxyBlanket
CoSuspendClassObjects
CoTaskMemAlloc
CoTaskMemRealloc
CoTestCancel
CoTreatAsClass
CoUninitialize
CoUnloadingWOW
CoUnmarshalHresult
CoWaitForMultipleHandles
CreateAntiMoniker
CreateBindCtx
CreateClassMoniker
CreateDataAdviseHolder
CreateDataCache
CreateFileMoniker
CreateItemMoniker
CreateObjrefMoniker
CreatePointerMoniker
CreateStdProgressIndicator
CreateStreamOnHGlobal
DcomChannelSetHResult
DllDebugObjectRPCHook
DllGetClassObjectWOW
DoDragDrop
FmtIdToPropStgName
FreePropVariantArray
GetClassFile
GetConvertStg
GetDocumentBitStg
GetHGlobalFromILockBytes
GetHGlobalFromStream
GetHookInterface
GetRunningObjectTable
HACCEL_UserFree
HACCEL_UserMarshal
HACCEL_UserSize
HACCEL_UserUnmarshal
HBITMAP_UserFree
HBITMAP_UserMarshal
HBITMAP_UserSize
HBITMAP_UserUnmarshal
HBRUSH_UserMarshal
HBRUSH_UserUnmarshal
HDC_UserFree
HDC_UserMarshal
HDC_UserSize
HDC_UserUnmarshal
HENHMETAFILE_UserFree
HENHMETAFILE_UserMarshal
HENHMETAFILE_UserSize
HENHMETAFILE_UserUnmarshal
HGLOBAL_UserFree
HGLOBAL_UserMarshal
HGLOBAL_UserSize
HICON_UserFree
HICON_UserMarshal
HICON_UserSize
HICON_UserUnmarshal
HMENU_UserFree
HMENU_UserMarshal
HMENU_UserUnmarshal
HMETAFILEPICT_UserFree
HMETAFILEPICT_UserMarshal
HMETAFILEPICT_UserSize
HMETAFILEPICT_UserUnmarshal
HMETAFILE_UserMarshal
HMETAFILE_UserSize
HMETAFILE_UserUnmarshal
HPALETTE_UserFree
HPALETTE_UserMarshal
HPALETTE_UserSize
HPALETTE_UserUnmarshal
HWND_UserFree
HWND_UserSize
HWND_UserUnmarshal
HkOleRegisterObject
IIDFromString
IsAccelerator
IsEqualGUID
MkParseDisplayName
MonikerCommonPrefixWith
MonikerRelativePathTo
OleConvertIStorageToOLESTREAM
OleConvertIStorageToOLESTREAMEx
OleConvertOLESTREAMToIStorage
OleConvertOLESTREAMToIStorageEx
OleCreate
OleCreateEmbeddingHelper
OleCreateFromData
OleCreateFromFileEx
OleCreateLink
OleCreateLinkEx
OleCreateLinkFromData
OleCreateLinkFromDataEx
OleCreateLinkToFile
OleCreateLinkToFileEx
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleDoAutoConvert
OleDuplicateData
OleFlushClipboard
OleGetAutoConvert
OleGetClipboard
OleGetIconOfClass
OleGetIconOfFile
OleInitialize
OleIsCurrentClipboard
OleIsRunning
OleLoad
OleLoadFromStream
OleLockRunning
OleMetafilePictFromIconAndLabel
OleNoteObjectVisible
OleQueryCreateFromData
OleQueryLinkFromData
OleRegEnumFormatEtc
OleRegEnumVerbs
OleRegGetMiscStatus
OleRegGetUserType
OleRun
OleSave
OleSetAutoConvert
OleSetClipboard
OleSetContainedObject
OleSetMenuDescriptor
OleUninitialize
OpenOrCreateStream
ProgIDFromCLSID
PropVariantCopy
ReadClassStg
ReadOleStg
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
SNB_UserFree
SNB_UserMarshal
SNB_UserSize
SNB_UserUnmarshal
STGMEDIUM_UserFree
STGMEDIUM_UserSize
STGMEDIUM_UserUnmarshal
SetConvertStg
SetDocumentBitStg
StgConvertPropertyToVariant
StgConvertVariantToProperty
StgCreateDocfile
StgCreatePropSetStg
StgCreatePropStg
StgGetIFillLockBytesOnFile
StgGetIFillLockBytesOnILockBytes
StgIsStorageFile
StgIsStorageILockBytes
StgOpenAsyncDocfileOnIFillLockBytes
StgOpenStorage
StgOpenStorageEx
StgPropertyLengthAsVariant
StgSetTimes
StringFromGUID2
UpdateDCOMSettings
UtConvertDvtd16toDvtd32
UtConvertDvtd32toDvtd16
UtGetDvtd16Info
UtGetDvtd32Info
WdtpInterfacePointer_UserFree
WdtpInterfacePointer_UserMarshal
WdtpInterfacePointer_UserSize
WdtpInterfacePointer_UserUnmarshal
WriteClassStg
WriteClassStm
WriteFmtUserTypeStg
WriteOleStg

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

15eedf6d7ae89e2e3d5612620a45c7d4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

ole32

Sections

.text Size: 23KB - Virtual size: 22KB

.data Size: 512B - Virtual size: 76B

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 23KB - Virtual size: 22KB

.data
Size: 512B - Virtual size: 76B

.rsrc
Size: 10KB - Virtual size: 9KB