33fe63979d43d961f26eb1a8532bb0d63566d1f5cffe8779feec0da5412661a1

Sharing

Copy URL Twitter E-mail

General

Target

33fe63979d43d961f26eb1a8532bb0d63566d1f5cffe8779feec0da5412661a1
Size

524KB
MD5

a202458600455f0e955d11e4402ba288
SHA1

c7967e8619db912be054cc2920b811794e9655a9
SHA256

33fe63979d43d961f26eb1a8532bb0d63566d1f5cffe8779feec0da5412661a1
SHA512

73c05a54a9c383b28c3e62b2d474d633070b17cd90c083346c188b07a58a9c7bbdef4d9caebcaad3de8532256f873b73b70341a503a3255005ca7d1b97d485e6
SSDEEP

12288:csSkS4tbCPdNUzwaQXrGnT0sV6oZ4/1DN+:coWbaQ7GnT0Z1s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33fe63979d43d961f26eb1a8532bb0d63566d1f5cffe8779feec0da5412661a1

Files

33fe63979d43d961f26eb1a8532bb0d63566d1f5cffe8779feec0da5412661a1
.exe windows:4 windows x86 arch:x86

9b2c03c7826605a19702b1252a6aead8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
GetTimeZoneInformation
GetSystemTime
GetLocalTime
FatalAppExitA
VirtualFree
VirtualAlloc
IsBadWritePtr
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
TerminateProcess
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
ExitThread
GetProfileStringA
CreateThread
HeapSize
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapFree
HeapAlloc
HeapReAlloc
RtlUnwind
CopyFileA
GlobalSize
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenW
SetErrorMode
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetShortPathNameA
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
DuplicateHandle
GetThreadLocale
SizeofResource
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetLastError
lstrcmpA
GetCurrentThread
GetModuleFileNameA
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
WaitForSingleObject
FormatMessageA
LocalFree
lstrcpynA
GlobalLock
GlobalUnlock
MulDiv
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetVersion
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GetProcAddress
lstrcmpiA
lstrcatA
WinExec
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
GlobalAlloc
GlobalReAlloc
FindResourceA
LoadResource
LockResource
GlobalFree
GetFileSize
ReadFile
CreateFileMappingA
MapViewOfFile
VirtualProtect
UnmapViewOfFile
CreateFileA
WriteFile
CloseHandle
GetFileAttributesA
Sleep
lstrlenA
GetFileType
lstrcpyA

user32

WaitMessage
wvsprintfA
GetDesktopWindow
GetSysColorBrush
GetWindowThreadProcessId
DeleteMenu
GetDialogBaseUnits
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
CharUpperA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
RegisterClipboardFormatA
PostThreadMessageA
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
UnhookWindowsHookEx
DefWindowProcA
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
IntersectRect
GetWindowPlacement
GetCursorPos
EqualRect
GetMenu
AdjustWindowRect
SetWindowPos
GetPropA
CallWindowProcA
BeginDeferWindowPos
MapWindowPoints
DeferWindowPos
EndDeferWindowPos
GetDlgItem
SetWindowLongA
MapDialogRect
SetPropA
InsertMenuA
DrawEdge
LoadMenuA
RemoveMenu
GetWindow
GetClassNameA
TranslateMessage
IsIconic
DrawIcon
GetSystemMenu
LoadIconA
GetWindowLongA
FrameRect
FillRect
DrawFocusRect
GetActiveWindow
WindowFromPoint
GetIconInfo
RedrawWindow
LoadImageA
DestroyIcon
DestroyCursor
MessageBeep
CopyIcon
GetWindowRect
GetDC
ReleaseDC
IsWindow
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuStringA
ModifyMenuA
GetMenuState
LoadBitmapA
GetTabbedTextExtentA
DrawStateA
SystemParametersInfoA
UpdateWindow
CreatePopupMenu
AppendMenuA
SendMessageA
IsDlgButtonChecked
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
GetParent
ClientToScreen
DrawTextA
GetMessageA
GetCapture
SetCapture
DispatchMessageA
ReleaseCapture
GetCursor
SetCursor
GetFocus
IsChild
SetTimer
InflateRect
SetWindowContextHelpId
EndDialog
CreateDialogIndirectParamA
ShowOwnedPopups
PostQuitMessage
RemovePropA
LoadStringA
GetSystemMetrics
SetRect
OffsetRect
DrawFrameControl
CopyRect
GetMessagePos
ScreenToClient
PtInRect
KillTimer
InvalidateRect
GetSysColor
LoadCursorA
EnableWindow
GetClientRect
PostMessageA
ValidateRect
DestroyMenu
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
OemToCharA
CharToOemA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
SetWindowTextA
IsDialogMessageA
ScrollWindowEx
SetScrollRange
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
PeekMessageA
SetActiveWindow
SetFocus
AdjustWindowRectEx
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
MoveWindow
GetScrollRange

gdi32

ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
SetViewportExtEx
EnumMetaFile
PlayMetaFile
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
PatBlt
SetRectRgn
CombineRgn
DPtoLP
GetTextMetricsA
GetTextColor
GetBkColor
LPtoDP
CopyMetaFileA
CreateDCA
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
RestoreDC
SaveDC
StartDocA
DeleteDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
SelectObject
GetObjectA
DeleteObject
CreateFontIndirectA
GetTextExtentPoint32A
CreateRectRgnIndirect
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetObjectType
CreateDIBitmap
GetTextExtentPointA
GetStockObject

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA
RegSetValueA
RegEnumKeyA
RegCreateKeyA
RegQueryValueA

shell32

DragQueryFileA
DragFinish
SHGetFileInfoA
DragAcceptFiles
ShellExecuteA
ExtractIconA

comctl32

ImageList_GetImageInfo
ImageList_GetIcon
ImageList_AddMasked
ImageList_SetBkColor
ord17
ord13
ord14
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_Merge
ImageList_Read
ImageList_Draw
ImageList_Write

oledlg

ord8

ole32

CreateBindCtx
CreateStreamOnHGlobal
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
OleRun
CoDisconnectObject
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
OleDuplicateData
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
OleRegGetUserType
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoTreatAsClass
ReleaseStgMedium
CoRegisterMessageFilter
CoRegisterClassObject
CoRevokeClassObject
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysFreeString
LoadTypeLi
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysReAllocStringLen
SysAllocString
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayRedim
SysAllocStringByteLen
SysStringByteLen
VarCyFromStr
VarBstrFromCy
VarDateFromStr
VarBstrFromDate
SafeArrayCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SysStringLen

wsock32

WSAGetLastError
WSASetLastError
WSAStartup
inet_addr
connect
sendto
recvfrom
socket
inet_ntoa
WSAAsyncSelect
send
recv
gethostbyname
closesocket
htonl
htons
bind
ioctlsocket
accept
getsockname
getpeername
ntohs
WSACleanup

wininet

InternetCloseHandle
InternetReadFile
InternetOpenUrlA
InternetOpenA

Sections

.text
Size: 316KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b2c03c7826605a19702b1252a6aead8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

wininet

Sections

.text Size: 316KB - Virtual size: 312KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 24KB - Virtual size: 38KB

.rsrc Size: 104KB - Virtual size: 101KB

.text
Size: 316KB - Virtual size: 312KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 24KB - Virtual size: 38KB

.rsrc
Size: 104KB - Virtual size: 101KB