64abf3ca4e39f2a2c146cf1ff8353048

Sharing

Copy URL

Twitter E-mail

General

Target

64abf3ca4e39f2a2c146cf1ff8353048
Size

760KB
MD5

64abf3ca4e39f2a2c146cf1ff8353048
SHA1

743c429438f6e4ea8e5d93aded55b3e4a7aca977
SHA256

786255286218602233501498e90fcffdc31ff64588266054127dcf576a72f374
SHA512

4c0794e46a231a1eba3959fbf9f2bebb1a53d01dfc28ffe662a0f725e61e54061407c0d14f5f31b293d8df513ee71bc2a83352b5e098b35f844139414a818d98
SSDEEP

12288:5x+y7YLXHBH3unXLahUNmnP20nPLOXFSGGr:5xq9+nXKUNmnDnzOXdG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64abf3ca4e39f2a2c146cf1ff8353048

Files

64abf3ca4e39f2a2c146cf1ff8353048
.exe windows:4 windows x86 arch:x86

8f5b8490faa802725b4d91dcab46e5e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

CryptReleaseContext
RegDeleteValueA
RegOpenKeyA
CloseServiceHandle
ControlService
QueryServiceStatus
OpenServiceA
OpenSCManagerA
StartServiceA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumValueA
RegFlushKey
ChangeServiceConfigA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegQueryValueExA
RegCloseKey
RegCreateKeyA
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptAcquireContextA

kernel32

GetTimeFormatA
GetDateFormatA
FormatMessageA
CreateMutexA
WideCharToMultiByte
ResumeThread
ReleaseMutex
FindClose
FindFirstFileA
TerminateThread
SetLastError
GlobalAlloc
FlushInstructionCache
LockResource
FindNextFileA
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
DuplicateHandle
OpenProcess
GlobalFree
lstrlenA
MulDiv
LocalReAlloc
GlobalLock
GlobalUnlock
InterlockedIncrement
HeapDestroy
IsDBCSLeadByte
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
GetModuleFileNameA
GetShortPathNameA
WinExec
GetVersionExA
OpenEventA
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetComputerNameA
HeapCreate
GetSystemInfo
GetCurrentThreadId
GetUserDefaultLCID
GetSystemDefaultLCID
LoadLibraryA
FileTimeToSystemTime
lstrcatA
lstrcmpiA
SetEndOfFile
SetFilePointer
ReadFile
GetLocalTime
HeapFree
lstrcpynA
MultiByteToWideChar
GetTickCount
Sleep
CreateThread
lstrcmpA
lstrcpyA
SetEvent
WriteFile
GetTempPathA
GetTempFileNameA
CreateFileA
GetLastError
WaitForSingleObject
CloseHandle
DeleteFileA
CreateEventA
FreeLibrary
GetProcAddress
LocalAlloc
LocalFree
InterlockedDecrement
GlobalHandle
lstrlenW
ResetEvent
HeapReAlloc
HeapAlloc
DebugBreak
GetCommandLineA
ExitProcess
GetStartupInfoA
GetModuleHandleA
FreeResource
GetCurrentProcess
GetSystemDirectoryA
GetStringTypeExA
SetErrorMode
SetPriorityClass
GetFileAttributesA
QueryPerformanceCounter
QueryPerformanceFrequency
RtlUnwind
GetPriorityClass
CreateDirectoryA

gdi32

PatBlt
GetTextExtentPointA
CreateDIBSection
GetSystemPaletteUse
GetSystemPaletteEntries
GetMapMode
StretchBlt
SetBkColor
ExtTextOutA
CreatePalette
CreatePen
MoveToEx
LineTo
SelectPalette
RealizePalette
SetBkMode
SetTextColor
GetTextMetricsA
GetTextExtentPoint32A
GetObjectA
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CreateDCA
LPtoDP
SaveDC
SetMapMode
SetWindowOrgEx
SetViewportOrgEx
DeleteDC
RestoreDC
CreateRectRgnIndirect
GetDeviceCaps
CreateFontIndirectA
CreateSolidBrush
GetStockObject
SelectObject
DeleteObject

user32

KillTimer
SetCursor
MessageBeep
IsDialogMessageA
LoadBitmapA
IsWindowVisible
MessageBoxA
GetDoubleClickTime
GetLastActivePopup
CharUpperBuffA
MsgWaitForMultipleObjects
PeekMessageA
SetTimer
CheckDlgButton
MoveWindow
CreateDialogParamA
SetForegroundWindow
DrawTextA
SetRect
LoadImageA
GetSystemMetrics
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
GetWindowPlacement
IsWindowEnabled
IsDlgButtonChecked
GetScrollPos
GetDlgCtrlID
RemoveMenu
CharLowerA
InSendMessage
ModifyMenuA
GetMenuItemID
GetMenuItemCount
DrawIconEx
FindWindowExA
DrawEdge
GetTopWindow
SetParent
CheckRadioButton
ExitWindowsEx
LoadStringW
CheckMenuItem
TrackPopupMenuEx
GetForegroundWindow
GetSystemMenu
SetWindowPlacement
SendMessageTimeoutA
SystemParametersInfoA
GetMenu
DeleteMenu
InsertMenuItemA
CloseClipboard
SetClipboardData
AppendMenuA
GetWindowTextA
GetDesktopWindow
InvalidateRgn
DefWindowProcA
FindWindowA
DestroyWindow
RegisterClassA
RegisterWindowMessageA
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
GetWindowTextLengthA
GetDlgItemTextA
GetWindowLongA
DestroyIcon
LoadMenuA
GetSubMenu
GetMenuItemInfoA
EnableMenuItem
InsertMenuA
MapWindowPoints
GetWindowRect
TrackPopupMenu
DestroyMenu
GetCursorPos
SetCursorPos
SetFocus
TranslateAcceleratorA
CopyAcceleratorTableA
LoadAcceleratorsA
CharUpperA
CharToOemA
wsprintfA
ShowWindow
GetClientRect
InvalidateRect
UpdateWindow
GetDC
FrameRect
FillRect
ReleaseDC
LoadIconA
LoadStringA
SetDlgItemTextA
GetParent
PostMessageA
SetWindowLongA
EndDialog
SendMessageA
DialogBoxParamA
GetDlgItem
EnableWindow
SendDlgItemMessageA
CharNextA
SetCapture
ReleaseCapture
CreateAcceleratorTableA
GetClassNameA
RedrawWindow
BeginPaint
EndPaint
GetKeyState
PostThreadMessageA
SetWindowTextA
GetWindow
GetClassInfoExA
LoadCursorA
RegisterClassExA
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
SetWindowPos
IsWindow
GetFocus
IsChild
CallWindowProcA
UnionRect
PtInRect
EmptyClipboard
OpenClipboard
SetMenuItemInfoA
GetSysColor
GetIconInfo
GetSysColorBrush
GetMessagePos
AdjustWindowRectEx
GetClassInfoA
WinHelpA

winmm

waveOutReset
waveInAddBuffer
waveInUnprepareHeader
waveOutPrepareHeader
waveInGetNumDevs
waveOutGetDevCapsA
waveInGetDevCapsA
waveOutClose
waveOutOpen
waveInClose
waveInOpen
PlaySoundA
mixerGetLineInfoA
mixerGetDevCapsA
mixerOpen
mixerGetNumDevs
mixerGetID
mixerGetLineControlsA
mixerSetControlDetails
mixerGetControlDetailsA
mmioClose
mmioAscend
mmioRead
mmioDescend
mmioOpenA
waveInStart
mmioSeek
waveOutWrite
mixerClose
waveInReset
waveOutUnprepareHeader
waveInPrepareHeader
waveOutGetNumDevs

wsock32

gethostbyname
gethostname
inet_addr
ioctlsocket
WSAStartup
WSACleanup
getsockname
WSAGetLastError

comctl32

PropertySheetA
ImageList_ReplaceIcon
ord6
ord8
ImageList_DrawEx
ImageList_Destroy
InitCommonControlsEx
ImageList_Create
CreateToolbarEx
ImageList_AddMasked

ole32

IsAccelerator
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitializeEx
CoTaskMemRealloc
CoRegisterClassObject
CoRevokeClassObject
WriteClassStm
OleSaveToStream
OleRegEnumVerbs
OleRegGetUserType
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CLSIDFromProgID
CLSIDFromString
StringFromCLSID
OleLockRunning
OleRegGetMiscStatus
CreateOleAdviseHolder

oleaut32

LoadTypeLi
RegisterTypeLi
SysAllocString
VarUI4FromStr
SysAllocStringLen
SysFreeString
VariantClear
VariantChangeType
SysStringByteLen
LoadRegTypeLi
SysStringLen
OleCreatePropertyFrame
OleCreateFontIndirect

shlwapi

StrChrA
StrCmpNIA

shell32

ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetFileInfoA
Shell_NotifyIconA

crypt32

CertOpenSystemStoreA
CertCloseStore
CertFreeCertificateContext
CertGetIssuerCertificateFromStore
CertFindCertificateInStore
CertNameToStrA
CertCreateCertificateContext
CertOpenStore
CertEnumCertificatesInStore

nmas

CreateASObject
StartStopOldWB

mst120

T120_CreateAppletSAP
T120_CloseApplet
T120_CreatePluggableTransport
T120_LoadApplet
T120_QueryApplet

netapi32

Netbios

Sections

.text
Size: 296KB - Virtual size: 296KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 420KB - Virtual size: 420KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f5b8490faa802725b4d91dcab46e5e5

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

winmm

wsock32

comctl32

ole32

oleaut32

shlwapi

shell32

crypt32

nmas

mst120

netapi32

Sections

.text Size: 296KB - Virtual size: 296KB

.data Size: 4KB - Virtual size: 7KB

.CRT Size: 4KB - Virtual size: 8B

.rsrc Size: 420KB - Virtual size: 420KB

.text
Size: 296KB - Virtual size: 296KB

.data
Size: 4KB - Virtual size: 7KB

.CRT
Size: 4KB - Virtual size: 8B

.rsrc
Size: 420KB - Virtual size: 420KB