33f1d330862b4370eace137071b3f473

Sharing

Copy URL Twitter E-mail

General

Target

33f1d330862b4370eace137071b3f473
Size

339KB
MD5

33f1d330862b4370eace137071b3f473
SHA1

b63a1a5d45d8d92280a3ab83f2a1e2ebef610cde
SHA256

20d474e8702e27dd75e686ee1fb399601877fd00670b76f66df5323937daeb46
SHA512

7efb066c5e405b3ac89153ac8ddf81c4413bbd3f9a34aa48b63f56b6035af0823d0a92cce169e6e8d882e3823c5fc80017f62dcc939e25c9d26ac30776f9aa89
SSDEEP

6144:QIwMTKR9m3zEU5hN8XrbEXSkS8Ud36xdZAPRrY007MeOiLNSO:TjTK9jUbN0bEXSkSVd36FA9v07I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33f1d330862b4370eace137071b3f473

Files

33f1d330862b4370eace137071b3f473
.exe windows:4 windows x86 arch:x86

1053a55c55cbbe807491e9b899cbe87b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsound

DirectSoundCaptureEnumerateW
DirectSoundCaptureCreate8
DllCanUnloadNow
GetDeviceID
DirectSoundCreate
DirectSoundEnumerateA
DllGetClassObject
DirectSoundEnumerateW
DirectSoundFullDuplexCreate
DirectSoundCreate8
DirectSoundCaptureEnumerateA
DirectSoundCaptureCreate

kernel32

RegisterConsoleOS2
UpdateResourceA
Sleep
IsBadHugeReadPtr
VirtualAlloc
LocalAlloc
FreeEnvironmentStringsA
lstrlen
GetLastError

setupapi

SetupInitializeFileLogW
SetupDefaultQueueCallbackW
SetupGetBackupInformationW
SetupPromptForDiskW
CM_Get_Child
SetupGetTargetPathA
CM_Free_Range_List
SetupOpenLog
SetupDiSetDeviceRegistryPropertyA
SetupDiGetHwProfileListExW
CM_Get_Resource_Conflict_DetailsW
SetupInstallFileW
SetupDiSetSelectedDriverW
SetupDiSetDriverInstallParamsA
SetupDiOpenClassRegKeyExA
CM_Get_First_Log_Conf
MyRealloc
SetupQueueCopySectionW
CM_Open_DevNode_Key
SetupCloseFileQueue
CM_Query_Remove_SubTree_Ex
CM_Query_Arbitrator_Free_Size_Ex
SetupDiClassGuidsFromNameW
CM_Get_Class_NameW
CM_Get_Device_IDA
SetupDiSelectBestCompatDrv
SetupQueueDeleteA
SetupDiEnumDeviceInfo
SetupInstallServicesFromInfSectionExW
SetupDiGetDeviceInstallParamsW
SetupGetLineTextW
SetupAddToDiskSpaceListA
SetupDuplicateDiskSpaceListW
CM_Next_Range
SetupDiInstallDeviceInterfaces
SetupAddSectionToDiskSpaceListW
SetupFreeSourceListW
SetupRemoveFromSourceListA
SetupQuerySourceListW
SetupCloseLog
SetupDiDestroyDriverInfoList
SetupDiAskForOEMDisk
CM_Unregister_Device_InterfaceW
SetupDiCreateDeviceInterfaceW
SetupGetLineCountW
CM_Delete_DevNode_Key_Ex
CM_Create_DevNodeW
CM_Query_Arbitrator_Free_Size

msxbde40

DllUnregisterServer
DllRegisterServer

dbnmpntw

ConnectionErrorW
ConnectionClose
ConnectionCheckForData
ConnectionVer
ConnectionRead
ConnectionError
ConnectionOpen
ConnectionServerEnum
ConnectionTransact
ConnectionObjectSize
ConnectionOpenW
ConnectionWriteOOB
ConnectionWrite
ConnectionStatus
ConnectionMode
ConnectionServerEnumW

certcli

CAAccessCheck

serialui

drvCommConfigDialogA
drvCommConfigDialogW
drvGetDefaultCommConfigA
drvSetDefaultCommConfigA
drvSetDefaultCommConfigW
drvGetDefaultCommConfigW

cryptnet

CertDllVerifyCTLUsage
DllRegisterServer
CryptCancelAsyncRetrieval
CryptRetrieveObjectByUrlA
CryptGetObjectUrl
CertDllVerifyRevocation
I_CryptNetGetUserDsStoreUrl
LdapProvOpenStore
CryptFlushTimeValidObject
I_CryptNetGetHostNameFromUrl
CryptUninstallCancelRetrieval
CryptInstallCancelRetrieval
I_CryptNetEnumUrlCacheEntry
CryptRetrieveObjectByUrlW
CryptGetTimeValidObject
DllUnregisterServer

mfc42

DllGetClassObject
DllCanUnloadNow
DllRegisterServer
DllUnregisterServer

d3d8thk

OsThunkDdGetMoCompFormats
OsThunkDdDeleteSurfaceObject
OsThunkDdDestroyMoComp
OsThunkDdGetScanLine
OsThunkDdGetDriverInfo
OsThunkDdResetVisrgn
OsThunkDdGetFlipStatus
OsThunkDdQueryDirectDrawObject
OsThunkDdAlphaBlt
OsThunkDdUnlock
OsThunkDdDestroySurface
OsThunkDdCreateSurface
OsThunkDdCreateDirectDrawObject
OsThunkDdGetDxHandle
OsThunkDdCanCreateSurface
OsThunkDdGetMoCompGuids

d3d9

D3DPERF_SetOptions
D3DPERF_EndEvent
D3DPERF_QueryRepeatFrame
D3DPERF_BeginEvent
D3DPERF_SetRegion
D3DPERF_GetStatus
DebugSetMute
PSGPSampleTexture
PSGPError
D3DPERF_SetMarker
Direct3DCreate9
DebugSetLevel
Direct3DShaderValidatorCreate9

Sections

.text
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1053a55c55cbbe807491e9b899cbe87b

Headers

DLL Characteristics

File Characteristics

Imports

dsound

kernel32

setupapi

msxbde40

dbnmpntw

certcli

serialui

cryptnet

mfc42

d3d8thk

d3d9

Sections

.text Size: 133KB - Virtual size: 132KB

.rsrc Size: 204KB - Virtual size: 204KB

.reloc Size: 512B - Virtual size: 32B

.data Size: - Virtual size: 2.0MB

.text
Size: 133KB - Virtual size: 132KB

.rsrc
Size: 204KB - Virtual size: 204KB

.reloc
Size: 512B - Virtual size: 32B

.data
Size: - Virtual size: 2.0MB