668627da3890175224fb25633bcf2667

Sharing

Copy URL Twitter E-mail

General

Target

668627da3890175224fb25633bcf2667
Size

452KB
MD5

668627da3890175224fb25633bcf2667
SHA1

35a9d977f83aeaf4ddb2056e9473cba0d489b1e9
SHA256

0083cd267d8cb5561501d5a243e31752c26b8ea5893b5b79d7a742868091e3e0
SHA512

afc0ccfc1d9e8d36a0140b6ef2dae38a128122e9d8dcc2a862261c347b7b33c51a460d672ab8975acdd5f706cb5445ad24bdae5f9ca7f241388f85cdb8e78caa
SSDEEP

12288:sAOeYCJFk0fAJwj+MjqLIrpymZs9ELXqs76GK:sAOeO0/joIpymC0R76GK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
668627da3890175224fb25633bcf2667

Files

668627da3890175224fb25633bcf2667
.exe windows:4 windows x86 arch:x86

44c6e847b659a7a001784453d67ce5a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

shell32

Shell_NotifyIconA

msacm32

acmStreamSize
acmFormatSuggest
acmStreamOpen
acmStreamUnprepareHeader
acmStreamPrepareHeader
acmStreamConvert
acmStreamClose

winmm

mmioAscend
mmioDescend
mmioClose
mmioOpenA
mmioRead
mmioSeek
waveOutGetDevCapsA
waveOutGetNumDevs
timeGetTime
waveOutReset
waveOutClose
waveOutMessage
waveOutOpen
waveOutWrite
waveOutPrepareHeader
waveOutGetVolume
waveOutSetVolume
waveOutUnprepareHeader
waveOutRestart
waveOutPause
waveOutGetPosition
midiOutClose
midiOutOpen
midiOutGetNumDevs
midiOutShortMsg

kernel32

WideCharToMultiByte
MultiByteToWideChar
HeapDestroy
lstrcatA
WriteFile
GetUserDefaultLCID
IsBadReadPtr
GetLocalTime
CreateThread
TlsSetValue
ExitThread
HeapFree
HeapAlloc
HeapReAlloc
GetStartupInfoA
GetVersion
ExitProcess
GetCPInfo
GetACP
GetOEMCP
TlsAlloc
SetProcessWorkingSetSize
InitializeCriticalSection
GetTickCount
Sleep
lstrlenW
GetLastError
GetModuleHandleA
IsBadWritePtr
TlsGetValue
LCMapStringA
LCMapStringW
TerminateProcess
UnhandledExceptionFilter
HeapCreate
VirtualFree
VirtualAlloc
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetStdHandle
GetTimeZoneInformation
LoadResource
LoadLibraryExA
FindResourceA
lstrcpyA
SizeofResource
lstrcpynA
GetSystemTime
GlobalLock
GlobalUnlock
MulDiv
SystemTimeToFileTime
IsBadStringPtrA
CreateEventA
GlobalAlloc
GlobalFree
WaitForMultipleObjects
TerminateThread
SetEvent
LeaveCriticalSection
ResetEvent
EnterCriticalSection
CreateMutexA
GetCommandLineA
GetCurrentThreadId
CloseHandle
WaitForSingleObject
lstrcmpiA
RaiseException
DeleteCriticalSection
RtlUnwind
InterlockedIncrement
InterlockedDecrement
FreeLibrary
GetModuleFileNameA
LoadLibraryA
GetProcAddress
GetCurrentProcess
lstrlenA
SetLastError
SetFilePointer

user32

SystemParametersInfoA
MoveWindow
SetWindowTextA
CreatePopupMenu
SetForegroundWindow
TrackPopupMenu
AppendMenuA
SetMenuItemInfoA
DestroyMenu
GetParent
PtInRect
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
EndDialog
GetCursorPos
UnhookWindowsHookEx
SetWindowsHookExA
LoadImageA
DialogBoxParamA
MessageBoxA
wsprintfA
EnableWindow
GetCapture
ReleaseCapture
GetAsyncKeyState
SetCapture
SendMessageA
GetSystemMetrics
GetWindowRgn
GetClientRect
OffsetRect
ValidateRect
PeekMessageA
RegisterClassExA
DestroyWindow
GetWindowLongA
SetWindowLongA
DefWindowProcA
SetWindowRgn
GetWindowRect
SetRect
SetTimer
IsWindow
SetWindowPos
ShowWindow
BeginPaint
EndPaint
InvalidateRect
UpdateWindow
CopyRect
InflateRect
ScrollDC
FillRect
IsRectEmpty
IsWindowVisible
IsWindowEnabled
GetDC
ReleaseDC
LoadCursorA
RegisterClassA
CreateWindowExA
KillTimer
GetSysColor
SetRectEmpty
LoadStringA
PostMessageA
MapVirtualKeyA
CheckDlgButton
GetDlgItem
CheckRadioButton
ScreenToClient
SendDlgItemMessageA
SetCursor
CharNextA
SetDlgItemTextA
DrawIconEx
FindWindowExA
DrawTextA
GetKeyNameTextA
FindWindowA
GetUpdateRect
EqualRect
ClientToScreen
IsDlgButtonChecked
PostThreadMessageA
WinHelpA

gdi32

TextOutA
SetTextColor
SetBkMode
DeleteObject
CreateSolidBrush
RealizePalette
SelectPalette
SetTextAlign
SelectObject
GetObjectA
FillRgn
FillPath
EndPath
LineTo
MoveToEx
SetPolyFillMode
BeginPath
CreatePen
GetPaletteEntries
RoundRect
CreateRectRgn
GdiFlush
GetNearestPaletteIndex
StretchDIBits
GetRgnBox
BitBlt
SetStretchBltMode
ExtCreateRegion
CombineRgn
GetDeviceCaps
PtInRegion
GetStockObject
CreateCompatibleDC
GetRegionData
SetRectRgn
CreateCompatibleBitmap
CreateFontIndirectA
CreateDIBSection
CreateFontA
CreatePalette
GetSystemPaletteEntries
DeleteDC
SetMapMode
FrameRgn
GetTextExtentPoint32A
GetTextMetricsA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
GetUserNameA
RegSetValueExA
RegQueryInfoKeyA
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegEnumKeyExA

ole32

CoInitialize
CreateStreamOnHGlobal
CoRegisterMessageFilter
CoUninitialize
StringFromGUID2
OleInitialize
GetClassFile
OleUninitialize
CoGetInterfaceAndReleaseStream
CoFreeUnusedLibraries
CoGetMalloc
CoTaskMemRealloc
CoMarshalInterThreadInterfaceInStream
CoTaskMemAlloc
CoTaskMemFree
CoCreateGuid
CoRegisterClassObject
CoRevokeClassObject
CLSIDFromString
CoCreateInstance

oleaut32

VariantInit
VarI4FromStr
SysStringLen
SafeArrayUnaccessData
VariantClear
SafeArrayAccessData
SysFreeString
SysAllocString
VariantChangeType
LoadRegTypeLi
SetErrorInfo
VariantCopy
RegisterTypeLi
LoadTypeLi
SafeArrayCreateVector

Sections

.text
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tc
Size: 198KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

44c6e847b659a7a001784453d67ce5a2

Headers

File Characteristics

Imports

comctl32

shell32

msacm32

winmm

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Sections

.text Size: 184KB - Virtual size: 183KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 17KB - Virtual size: 22KB

.idata Size: 8KB - Virtual size: 7KB

.rsrc Size: 31KB - Virtual size: 30KB

.tc Size: 198KB - Virtual size: 200KB

.text
Size: 184KB - Virtual size: 183KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 17KB - Virtual size: 22KB

.idata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 31KB - Virtual size: 30KB

.tc
Size: 198KB - Virtual size: 200KB