52bc7a05b8e28df749fd72922703063b

Sharing

Copy URL

Twitter E-mail

General

Target

52bc7a05b8e28df749fd72922703063b
Size

776KB
MD5

52bc7a05b8e28df749fd72922703063b
SHA1

3d0e01a6aac83af104c06f754228a04ca3de7a14
SHA256

44fe839b5fce1fef40122bd2892d4fc8d30a7b762ca3f3e258ca18953c4dc300
SHA512

fb97e5e79114c95cdce7bad00020f2213f9e24397f52cf997ac6f0e5e893e48f3b0a5e81010ad8d9a4f07175a004c90bbb84dad439e5284a5eb3faa807c78cab
SSDEEP

12288:FaOM+U86v0CgHpnfZNFBf56gwiVqxUIgZpBB++8s2gndNPiwUY0/DCIzU1:Fj6v05HNv565up/++d/anY0/O1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
52bc7a05b8e28df749fd72922703063b

Files

52bc7a05b8e28df749fd72922703063b
.exe windows:4 windows x86 arch:x86

1618f3536718700e36d017d771d40c95

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveOutGetVolume
waveOutOpen
mixerClose
mixerOpen
waveOutClose
mixerSetControlDetails

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetFileInfoA
DragFinish
DragAcceptFiles
ShellExecuteA

comctl32

ImageList_SetBkColor
ImageList_Remove
ImageList_GetImageCount
ImageList_LoadImageA
_TrackMouseEvent

kernel32

SetHandleCount
GetThreadLocale
GetSystemTime
MultiByteToWideChar
WriteConsoleW
UnlockFile
SetUnhandledExceptionFilter
TlsFree
FreeLibrary
GetCurrentProcessId
GetTickCount
lstrlenW
WriteFile
GetSystemDirectoryA
WideCharToMultiByte
TlsSetValue
FreeEnvironmentStringsW
FreeEnvironmentStringsA
InterlockedDecrement
GetModuleHandleA
GetFileType
GetTempPathA
GlobalAlloc
GlobalLock
GetProcAddress
GetVersionExA
FindClose
GetEnvironmentVariableW
ExitThread
VirtualAlloc
GlobalFlags
lstrcmpiA
GlobalHandle
TerminateProcess
GetConsoleOutputCP
SizeofResource
VirtualFree
LCMapStringW
GetCPInfo
GetWindowsDirectoryA
HeapDestroy
GetTimeFormatA
RtlUnwind
GetFullPathNameA
CloseHandle
LCMapStringA
HeapReAlloc
HeapCreate
CreateDirectoryA
EnterCriticalSection
UnhandledExceptionFilter
WriteConsoleA
FlushFileBuffers
LocalAlloc
GetSystemTimeAsFileTime
HeapSize
GetEnvironmentStringsW
InterlockedIncrement
IsDebuggerPresent
SetLastError
EnumResourceLanguagesA
CreateMutexA
TlsAlloc
GetTimeZoneInformation
IsValidCodePage
InterlockedCompareExchange
LeaveCriticalSection
lstrlenA
LockFile
HeapFree
Sleep
GetModuleFileNameA
GetStringTypeA
GetLocaleInfoA
GetStringTypeW
GetCurrentThreadId
WaitForSingleObject
HeapAlloc
SetFileTime
LoadLibraryA
CompareStringW
TlsGetValue
FatalAppExitA
IsValidLocale
GetStdHandle
DosDateTimeToFileTime
RaiseException
GetACP
VirtualQuery
GetCommandLineA
QueryPerformanceCounter
ResumeThread
SetThreadPriority
InterlockedExchange
ReadFile
MulDiv
CreateThread
GlobalUnlock
GetFileSize
ExitProcess
SetFileAttributesA
CompareStringA
GetProcessHeap
GetOEMCP
GetLastError
CreateFileA
SetEnvironmentVariableA
SetFilePointer
SetStdHandle
GetStartupInfoA
GetDateFormatA
GetConsoleMode
InitializeCriticalSection
DeleteCriticalSection
UnmapViewOfFile
GetConsoleCP
GetCurrentProcess
LocalFree
GetEnvironmentStrings

gdi32

StartDocA
TextOutA
CreateRoundRectRgn
GetCurrentPositionEx
DeleteObject
StretchDIBits
IntersectClipRect
ResetDCA
RoundRect
OffsetViewportOrgEx
LineTo
CombineRgn
SetPolyFillMode
CreatePalette
SelectClipPath
GetTextColor
GetCurrentObject
GetArcDirection
FillRgn
Polyline
SelectObject
CopyMetaFileA
CreatePolygonRgn
RectVisible
CreateRectRgnIndirect
GetBkColor
DeleteDC
PlayEnhMetaFile
SetMapMode
GetObjectType

mfc42

ord1576

user32

IsWindowVisible
DrawFrameControl
SetForegroundWindow
BringWindowToTop
GetWindowTextLengthA
GetDC
GetParent
SetWindowLongA
IsWindowEnabled
EndDialog
TrackPopupMenu
CreateDialogIndirectParamA
RegisterClassExA
SendMessageA
GetClassNameA
MapWindowPoints
GetDesktopWindow
SetWindowContextHelpId
SetCaretPos
SetScrollRange
ShowWindow
ClientToScreen
GetClientRect
GetClipboardData
LoadIconA
SetRect
CreatePopupMenu
KillTimer
LoadCursorA
GetMenuStringA
CallNextHookEx
IsDialogMessageA
CallWindowProcA
LoadBitmapA
DefWindowProcA
SetMenuDefaultItem
SetWindowTextA
SetCapture
GetWindowTextA
CharNextA
DrawStateA
DestroyWindow
AdjustWindowRectEx
MessageBoxA
GetWindowLongA
IsWindowUnicode
GetScrollRange
SetFocus
CheckMenuItem
GetDlgItemTextA
CopyRect
CopyAcceleratorTableA
SetRectEmpty
RegisterClassA
GetMessageA
GetScrollPos
GetWindowThreadProcessId
SetWindowPos
GetWindow
DrawFocusRect
GetFocus
EnableMenuItem
SetTimer
SetCursor
CharUpperA
WindowFromPoint
EnableWindow
TranslateMessage
IsIconic
CreateWindowExA
RedrawWindow
DrawEdge
LoadStringA
TranslateAcceleratorA
DeferWindowPos

winspool.drv

DocumentPropertiesA
OpenPrinterA
ord204

comdlg32

GetSaveFileNameA
PrintDlgA

wininet

InternetOpenA
InternetSetFilePointer
InternetSetOptionExA
InternetReadFile
InternetQueryDataAvailable
InternetWriteFile

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 480KB - Virtual size: 479KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1618f3536718700e36d017d771d40c95

Headers

File Characteristics

Imports

winmm

shell32

comctl32

kernel32

gdi32

mfc42

user32

winspool.drv

comdlg32

wininet

Sections

.text Size: 116KB - Virtual size: 113KB

.rdata Size: 480KB - Virtual size: 479KB

.data Size: 108KB - Virtual size: 136KB

.rsrc Size: 68KB - Virtual size: 64KB

.text
Size: 116KB - Virtual size: 113KB

.rdata
Size: 480KB - Virtual size: 479KB

.data
Size: 108KB - Virtual size: 136KB

.rsrc
Size: 68KB - Virtual size: 64KB