3ab64dca28366eb4dd909c4ea431cf09

Sharing

Copy URL Twitter E-mail

General

Target

3ab64dca28366eb4dd909c4ea431cf09
Size

220KB
MD5

3ab64dca28366eb4dd909c4ea431cf09
SHA1

da0b3cb70b51aaa62deb49e6cc77f68855b8e2c8
SHA256

75f94a58a69d94942f05336551f3e6200096ef380e8748975e239d60622f7890
SHA512

285eeb99e376c3c7762cddf5e39b2acdeaa1bc4e6a0d0b0fb3394a9d741e9cfc6e61c8719600d9133786dd2dfd3f05a88169f4a63f51811b6f49eb11c0d8948a
SSDEEP

3072:ygSJEjHJ34Eh7b7ZlTeCGPpekxNSSCYWUbtcMn8kKoKEW30LnkHlIDiw:ygSmqEh7b9lTGRTAYWUhcQ80O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ab64dca28366eb4dd909c4ea431cf09

Files

3ab64dca28366eb4dd909c4ea431cf09
.exe windows:4 windows x86 arch:x86

9f5ccf3f930ac0d0c4268215a048fe07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetLengthSid
RegQueryValueA
RegEnumKeyExA
RegDeleteKeyA
RegQueryInfoKeyA
RegDeleteKeyA
RegQueryValueExA
RegDeleteValueA
RegEnumValueA
RegDeleteKeyA
RegQueryValueA
RegQueryInfoKeyA
RegOpenKeyExA

msvcrt

sprintf
clock
tolower
rand
_acmdln
strlen
acos
sprintf
sin
memmove
atan
wcscspn
malloc
memcmp
log10
strncmp
tan
cos
memmove

shlwapi

SHSetValueA
SHStrDupA
PathGetCharTypeA
PathIsContentTypeA
SHQueryValueExA
SHSetValueA
SHEnumValueA
SHDeleteValueA
PathFileExistsA
SHQueryInfoKeyA
SHDeleteKeyA
PathFileExistsA
SHQueryValueExA
SHStrDupA
SHEnumValueA
SHGetValueA
SHGetValueA
SHDeleteKeyA
PathIsContentTypeA
SHStrDupA
SHEnumValueA
SHSetValueA
SHDeleteKeyA
PathIsContentTypeA
SHQueryValueExA
SHQueryInfoKeyA

kernel32

LoadLibraryExA
GetOEMCP
ExitThread
GetModuleHandleA
LocalAlloc
IsBadReadPtr
lstrlenW
ExitProcess
GetCommandLineA
VirtualAlloc
LoadLibraryA
GetLastError
GetModuleHandleW
GetCommandLineW
GetProcAddress
FormatMessageA

comdlg32

ChooseColorA
FindTextA
GetSaveFileNameA
GetOpenFileNameA
GetSaveFileNameA
FindTextA
ChooseColorA
GetFileTitleA
GetSaveFileNameA
ChooseColorA
GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA
ChooseColorA
FindTextA
GetOpenFileNameA
GetSaveFileNameA
FindTextA
GetFileTitleA
ChooseColorA

oleaut32

GetErrorInfo
VariantCopyInd
SafeArrayUnaccessData
SysReAllocStringLen
SafeArrayGetElement
OleLoadPicture
GetErrorInfo
RegisterTypeLib
SafeArrayGetUBound
GetErrorInfo
SysStringLen
SafeArrayPtrOfIndex
RegisterTypeLib
VariantCopyInd
SafeArrayGetElement
VariantChangeType
OleLoadPicture
SafeArrayCreate

user32

GetKeyboardLayout
SetPropA
GetDesktopWindow
ShowWindow
OpenClipboard
LoadBitmapA
SetFocus
WaitMessage
ScrollWindow
OffsetRect
GetMenuItemID
SendMessageA
SetScrollInfo
CloseClipboard
GetSystemMetrics
MessageBoxA
SetClipboardData
GetScrollInfo
UnhookWindowsHookEx
GetForegroundWindow
GetWindowDC
RedrawWindow
GetWindowLongA
GetLastActivePopup
SetWindowPos
SetWindowsHookExA
InsertMenuItemA
ReleaseDC
GetWindowTextA
CharLowerA
GetKeyNameTextA
SetMenuItemInfoA
UpdateWindow
SetRect
DrawTextA
DrawIconEx
CharLowerBuffA
IsWindowVisible
EnableWindow
DefMDIChildProcA
IsDialogMessageA
GetMenuStringA
GetWindowPlacement
DeleteMenu
LoadStringA
SetWindowLongA
CallWindowProcA
ChildWindowFromPoint
SetMenu
CallNextHookEx
BeginPaint
GetScrollRange
DefWindowProcA
SetWindowPlacement
CharNextA
GetCursorPos
WindowFromPoint
GetDlgItem
KillTimer
DestroyIcon
ShowOwnedPopups
DestroyMenu
SetClassLongA
DrawAnimatedRects
RemoveMenu
GetWindowRect
IsWindowEnabled
IsZoomed
DrawIcon
SetParent
SetScrollPos
DrawFrameControl
DrawEdge
GetSysColor
GetSubMenu
GetSystemMenu
CreateIcon
wsprintfA
TranslateMessage
RegisterClipboardFormatA
MsgWaitForMultipleObjects
IsWindowUnicode
GetDCEx
CreateMenu
RegisterClassA
CharNextW
GetParent
DispatchMessageA
CheckMenuItem
EnumThreadWindows
IsIconic
CreatePopupMenu
DefFrameProcA
AdjustWindowRectEx
EnumChildWindows
InvalidateRect
MessageBeep
DispatchMessageW
DestroyCursor
ClientToScreen
CharUpperBuffA
PeekMessageW
CharToOemA
LoadCursorA
GetMenuItemInfoA
DrawMenuBar
GetKeyboardLayoutNameA
DestroyWindow
SetWindowLongW
GetTopWindow
GetTopWindow
GetMenu
ReleaseCapture
MessageBeep
MapWindowPoints
CreateIcon
RegisterWindowMessageA
wsprintfA
CreateWindowExA
GetSystemMetrics
CloseClipboard
GetParent
LoadStringA
ChildWindowFromPoint
GetWindowTextA
CharNextA
SetClassLongA
SetWindowsHookExA
GetLastActivePopup
GetWindowThreadProcessId
GetSubMenu
SetFocus
ReleaseDC
GetClassInfoA
DefFrameProcA
GetClassLongA
GetPropA
GetWindowLongA
UpdateWindow
SetWindowTextA
SetClipboardData
GetSysColor
SetMenuItemInfoA
TranslateMessage
UnregisterClassA
SetWindowPos
EnumThreadWindows
InsertMenuItemA
InvalidateRect
GetKeyboardLayoutNameA
RemoveMenu
GetKeyboardType
GetCapture
PostMessageA
InsertMenuA
LoadIconA
CharToOemA
SetWindowPlacement
WaitMessage
GetActiveWindow
ActivateKeyboardLayout
GetKeyboardLayout
PtInRect
MessageBoxA
GetScrollPos
EnableWindow
PeekMessageA
GetMessagePos
DestroyCursor
DefWindowProcA
KillTimer
ShowScrollBar
OemToCharA
ScrollWindow
IsWindowUnicode
UnhookWindowsHookEx
TrackPopupMenu
DefMDIChildProcA
DrawFrameControl
EndPaint
TranslateMDISysAccel
DrawIconEx
FrameRect
IsWindowEnabled
RegisterClipboardFormatA
LoadCursorA
GetDC
CreateMenu
GetForegroundWindow
DrawEdge
ClientToScreen
GetWindowPlacement
GetKeyState
GetSysColorBrush
MoveWindow
GetCursor
AdjustWindowRectEx
GetDCEx
ScreenToClient
CharLowerA
FindWindowA
GetFocus
SetScrollInfo
SetWindowLongW
EmptyClipboard
ShowWindow
RedrawWindow
GetMenuState
GetDlgItem
IsWindow
EnableScrollBar
GetIconInfo
IsZoomed
MsgWaitForMultipleObjects
WindowFromPoint
GetKeyNameTextA
IsDialogMessageA
RemovePropA
SetCursor
GetSystemMenu
GetClientRect
SetRect
OpenClipboard
CharLowerBuffA
DispatchMessageW
EqualRect

shell32

SHGetDesktopFolder
SHFileOperationA
SHGetDiskFreeSpaceA
Shell_NotifyIconA
SHFileOperationA
SHGetDesktopFolder

comctl32

ImageList_Destroy
ImageList_Create

ole32

MkParseDisplayName
CoGetObjectContext
OleRun
GetHGlobalFromStream
CoUninitialize
StgCreateDocfileOnILockBytes
CoCreateInstanceEx
CoDisconnectObject
StgOpenStorage
CoReleaseMarshalData
OleRegGetUserType
CoGetObjectContext
CoUninitialize
CoUninitialize
CreateStreamOnHGlobal
StgOpenStorage
ReleaseStgMedium
StgCreateDocfileOnILockBytes
GetHGlobalFromStream
CoTaskMemFree
WriteClassStm
CLSIDFromString
CoGetContextToken
MkParseDisplayName
CoFreeUnusedLibraries
CoDisconnectObject
OleRun
CoCreateFreeThreadedMarshaler
CoRevokeClassObject
CoGetObjectContext
CoUnmarshalInterface
CLSIDFromProgID
CoGetContextToken
CoDisconnectObject
CoFreeUnusedLibraries
CoCreateGuid
ReleaseStgMedium
WriteClassStm
CoGetMalloc
GetHGlobalFromStream
OleRegGetUserType

version

VerFindFileA
GetFileVersionInfoSizeA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoSizeA
VerInstallFileA
VerQueryValueA
VerFindFileA
GetFileVersionInfoSizeA

gdi32

GetCurrentPositionEx
GetClipBox
SelectObject
GetDIBits
CreateCompatibleDC
CreateBitmap
GetRgnBox
SelectObject
CreateFontIndirectA
GetDIBColorTable
SelectPalette
LineTo
BitBlt
CreateBrushIndirect
SetTextColor
GetPixel
RestoreDC
GetCurrentPositionEx
GetClipBox
GetPixel
CreateCompatibleBitmap
SetPixel
CreateBitmap
SelectPalette

Sections

.text
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 167B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f5ccf3f930ac0d0c4268215a048fe07

Headers

File Characteristics

Imports

advapi32

msvcrt

shlwapi

kernel32

comdlg32

oleaut32

user32

shell32

comctl32

ole32

version

gdi32

Sections

.text Size: 168KB - Virtual size: 165KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 93KB

DATA Size: 4KB - Virtual size: 167B

.hdata Size: 12KB - Virtual size: 8KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 168KB - Virtual size: 165KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 93KB

DATA
Size: 4KB - Virtual size: 167B

.hdata
Size: 12KB - Virtual size: 8KB

.rsrc
Size: 8KB - Virtual size: 7KB