777053e0f3ddaad3abdd8902abe2db32728f62775849b5f3f021be2010c6888d

Sharing

Copy URL Twitter E-mail

General

Target

777053e0f3ddaad3abdd8902abe2db32728f62775849b5f3f021be2010c6888d
Size

1.6MB
MD5

9987a9f2b5a75bffcbda1c0c6c45bdc7
SHA1

2add2a29a6759f8391d222b1bccf9aef265941ba
SHA256

777053e0f3ddaad3abdd8902abe2db32728f62775849b5f3f021be2010c6888d
SHA512

f4bc7aa2442249a1e43e4b102f52d7272810589bf632132873da6c22341f92ec0e39f495c647167f9efa0d375cadbf325dffc106bd1737d5c9bd8df042311bcf
SSDEEP

49152:5/qE6ABhu+Tkhu7znBx/hCfIDZe07cbv+UunIHwx2j2t4IIBsG+jioZv0Gef5:5CExBhXLbSJGef5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
777053e0f3ddaad3abdd8902abe2db32728f62775849b5f3f021be2010c6888d

Files

777053e0f3ddaad3abdd8902abe2db32728f62775849b5f3f021be2010c6888d
.exe windows:5 windows x86 arch:x86

a0092b39abb3c19d285e18a6caffe3b5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
GetFileSizeEx
GetFileTime
SetErrorMode
RtlUnwind
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
HeapAlloc
VirtualProtect
GetSystemInfo
VirtualQuery
GetStartupInfoA
HeapReAlloc
SetStdHandle
GetFileType
ExitProcess
HeapSize
GetACP
IsValidCodePage
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetStdHandle
LCMapStringA
LCMapStringW
HeapCreate
SetHandleCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
GetDriveTypeA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoW
GetProcessHeap
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
GetOEMCP
GetCPInfo
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
WaitForSingleObject
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedExchange
LocalAlloc
GetProfileIntA
lstrcmpA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
ReadFile
GetThreadLocale
GetCurrentProcessId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
GetModuleFileNameW
GlobalFree
GlobalAlloc
FormatMessageA
LocalFree
ReleaseSemaphore
CreateSemaphoreA
CreateEventA
SetThreadPriority
SetEvent
WaitForMultipleObjects
GetTickCount
FindFirstFileA
FindClose
EnterCriticalSection
LeaveCriticalSection
CreateDirectoryA
DeviceIoControl
VirtualAlloc
VirtualFree
SetFilePointer
CreateFileA
WriteFile
CloseHandle
FreeResource
OutputDebugStringA
CreateThread
GetCurrentThreadId
GetCommandLineA
LoadLibraryExA
IsDBCSLeadByte
GetModuleHandleW
GetModuleFileNameA
InterlockedDecrement
InterlockedIncrement
lstrcmpiA
DeleteCriticalSection
InitializeCriticalSection
RaiseException
lstrlenW
FreeLibrary
MultiByteToWideChar
GetCurrentDirectoryA
SetCurrentDirectoryA
GlobalSize
GlobalLock
GlobalUnlock
MulDiv
GlobalReAlloc
GetLastError
SetLastError
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetVersionExA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrlenA
DeleteFileA
CopyFileA
WritePrivateProfileStringA
Sleep
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource

user32

CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
RegisterClipboardFormatA
GetDesktopWindow
CreateDialogIndirectParamA
EndDialog
CharUpperA
GetWindowThreadProcessId
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
EnableMenuItem
CheckMenuItem
RegisterWindowMessageA
WinHelpA
IsChild
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
GetTopWindow
DestroyWindow
GetMessageTime
MapWindowPoints
SetMenu
GetScrollPos
SetForegroundWindow
ShowScrollBar
MessageBoxA
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
GetScrollInfo
SetScrollInfo
CallWindowProcA
GetWindowPlacement
EndPaint
BeginPaint
GetWindowDC
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
GetWindowTextLengthA
GetWindowTextA
SetWindowPos
SetFocus
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetDlgItem
CheckRadioButton
GetWindow
GetDoubleClickTime
IsWindowVisible
IsRectEmpty
PeekMessageA
DispatchMessageA
MsgWaitForMultipleObjects
LoadIconA
UpdateWindow
IsIconic
GetSystemMenu
AppendMenuA
DrawIcon
CharNextA
wsprintfA
ReleaseCapture
ClipCursor
GetCursorPos
GrayStringA
DrawTextExA
TabbedTextOutA
GetSystemMetrics
IsClipboardFormatAvailable
IsWindow
GetClassInfoA
DefWindowProcA
GetFocus
SetCapture
GetCapture
InvertRect
IntersectRect
GetKeyState
DrawTextA
LoadCursorA
DrawEdge
SetRect
SystemParametersInfoA
PostThreadMessageA
UnregisterClassA
GetSysColorBrush
GetMessagePos
KillTimer
SetWindowContextHelpId
MapDialogRect
GetMessageA
TranslateMessage
ValidateRect
GetMenu
PostQuitMessage
SetTimer
ScreenToClient
PtInRect
DestroyMenu
DestroyCursor
LoadImageA
GetSysColor
GetSubMenu
TrackPopupMenuEx
PostMessageA
SetCursor
GetWindowLongA
EnableWindow
WindowFromPoint
GetParent
GetNextDlgTabItem
GetActiveWindow
InvalidateRect
ClientToScreen
GetClientRect
GetWindowRect
SendMessageA
DrawFocusRect
FrameRect
FillRect
OffsetRect
InflateRect
CopyRect
DrawStateA
GetIconInfo
CreateIconIndirect
GetDC
ReleaseDC
DestroyIcon

gdi32

GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
GetClipBox
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
GetViewportExtEx
CreateRectRgnIndirect
GetMapMode
GetTextColor
GetRgnBox
SetMapMode
MoveToEx
LineTo
SetBkColor
BitBlt
SetTextColor
DeleteDC
GetStockObject
DeleteObject
SetBkMode
RestoreDC
SaveDC
CopyMetaFileA
GetTextMetricsA
PatBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetBkColor
CreatePen
GetCurrentObject
GetDeviceCaps
GetTextExtentPoint32A
CreateFontA
Rectangle
CreateFontIndirectA
CreateSolidBrush
GetObjectA
CreateCompatibleBitmap
GetPixel
SetPixel
CreateBitmap
CreateCompatibleDC
SelectObject

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegQueryValueA
RegEnumKeyExA
RegOpenKeyA
RegDeleteKeyA
RegQueryInfoKeyA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyA
RegCloseKey

shell32

ShellExecuteA
ShellExecuteExA

comctl32

_TrackMouseEvent

shlwapi

PathIsUNCA
PathRemoveFileSpecW
PathFindExtensionA
UrlUnescapeA
PathStripToRootA
PathFindFileNameA

oledlg

ord8

ole32

CoTaskMemAlloc
CreateStreamOnHGlobal
CoTaskMemRealloc
CoRevokeClassObject
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitializeEx
ReleaseStgMedium
OleDuplicateData
OleGetClipboard
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CLSIDFromProgID
CLSIDFromString
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
CoGetClassObject

oleaut32

SafeArrayDestroy
VariantCopy
SysAllocStringByteLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
VarUI4FromStr
SysAllocString
SysFreeString
SysStringLen
VarUdateFromDate
SystemTimeToVariantTime
OleCreateFontIndirect
VariantTimeToSystemTime

wininet

HttpOpenRequestA
InternetConnectA
HttpSendRequestA
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
HttpQueryInfoA
HttpAddRequestHeadersA
InternetCanonicalizeUrlA
InternetQueryDataAvailable
InternetCrackUrlA

Sections

.text
Size: 602KB - Virtual size: 601KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 883KB - Virtual size: 882KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0092b39abb3c19d285e18a6caffe3b5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

wininet

Sections

.text Size: 602KB - Virtual size: 601KB

.rdata Size: 144KB - Virtual size: 144KB

.data Size: 15KB - Virtual size: 31KB

.rsrc Size: 883KB - Virtual size: 882KB

.text
Size: 602KB - Virtual size: 601KB

.rdata
Size: 144KB - Virtual size: 144KB

.data
Size: 15KB - Virtual size: 31KB

.rsrc
Size: 883KB - Virtual size: 882KB