0de0f5c77fb220c55c1160698b1bbb66

Sharing

Copy URL Twitter E-mail

General

Target

0de0f5c77fb220c55c1160698b1bbb66
Size

241KB
MD5

0de0f5c77fb220c55c1160698b1bbb66
SHA1

b2b0918ab17b2a11df282eadbfdc7fff6cf535c3
SHA256

0ab2f0d872b58e1ed6d5a9f98a80474e6d867676797db25b03e784a2c41a1f3a
SHA512

c2795341292a90e6917330f0a49c0fa40e5eaf70de5d5d67495f99766df300898af7ed270ca8d60f1953ddbf344d824d18270108c59f71d9637ca6a9e55ec1e0
SSDEEP

6144:/iMROW3LHXijhORqZLNVJ6M2mPhLkg87cv:/jROWTS2qZ5VssLhv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Haktek.exe

Files

0de0f5c77fb220c55c1160698b1bbb66
.zip
Haktek.exe
.exe windows:4 windows x86 arch:x86

d7ff7077a602b998f4d9620eeeb87d6e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsW
GetStdHandle
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadWritePtr
SetHandleCount
GetFileType
LCMapStringW
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
FreeEnvironmentStringsW
LCMapStringA
IsBadCodePtr
FreeEnvironmentStringsA
GetEnvironmentStrings
FindClose
FreeLibrary
CloseHandle
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
lstrcmpA
GetFileAttributesA
lstrcpynA
SetFileTime
GetFileTime
GetTempFileNameA
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetDiskFreeSpaceA
GetProfileStringA
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetTimeZoneInformation
HeapSize
HeapReAlloc
GetOEMCP
GetACP
GetCPInfo
TerminateProcess
ExitProcess
RaiseException
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
ExitThread
CreateThread
HeapAlloc
HeapFree
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentDirectoryA
SetErrorMode
SizeofResource
GlobalFlags
GetProcessVersion
GetVersion
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalAlloc
GlobalDeleteAtom
GetCurrentThread
ReleaseMutex
CreateMutexA
GetFullPathNameA
GlobalAddAtomA
lstrcatA
GlobalGetAtomNameA
GetModuleFileNameA
MulDiv
SetLastError
GetThreadLocale
GetShortPathNameA
lstrcmpiA
FindFirstFileA
GetStringTypeExA
GetVolumeInformationA
lstrcpyA
GetTickCount
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
CreateEventA
SuspendThread
GetCurrentThreadId
SetThreadPriority
ResumeThread
WaitForSingleObject
SetEvent
LocalFree
GlobalLock
GetProcAddress
LoadLibraryA
CompareStringA
CompareStringW
SetEnvironmentVariableA

user32

wvsprintfA
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
PostQuitMessage
IsZoomed
ClientToScreen
IntersectRect
SetParent
IsRectEmpty
AppendMenuA
DeleteMenu
GetSystemMenu
WindowFromPoint
LoadStringA
GetSysColorBrush
GetClassNameA
GetTabbedTextExtentA
InsertMenuA
GetMenuStringA
DestroyIcon
InflateRect
SetCapture
InvertRect
GetDCEx
LockWindowUpdate
SetDlgItemTextA
SendDlgItemMessageA
SystemParametersInfoA
MapWindowPoints
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
RegisterClassA
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
CreateWindowExA
SetPropA
GetForegroundWindow
GetPropA
RemovePropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetWindowRect
RegisterWindowMessageA
GetLastActivePopup
BringWindowToTop
EqualRect
CopyRect
SetWindowLongA
SetWindowPos
GetSubMenu
IsDialogMessageA
SetWindowTextA
WinHelpA
SetMenu
GetMenu
LoadIconA
LoadMenuA
DestroyMenu
SetFocus
ShowWindow
GetDesktopWindow
GetWindow
GetCapture
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
GetDlgCtrlID
IsIconic
AdjustWindowRectEx
ScreenToClient
InvalidateRect
PtInRect
GetSysColor
SetRect
OffsetRect
IsChild
GetDC
ReleaseDC
ShowScrollBar
DestroyCursor
MessageBoxA
SetCursor
ShowOwnedPopups
GetMessageA
TranslateMessage
GetKeyState
CallNextHookEx
ValidateRect
GetCursorPos
SetWindowsHookExA
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
IsWindowVisible
KillTimer
WaitMessage
PeekMessageA
DispatchMessageA
PostMessageA
CharUpperA
LoadBitmapA
LoadCursorA
UpdateWindow
EnableWindow
GetClientRect
FillRect
SetTimer
SendMessageA
wsprintfA
UnpackDDElParam
ReuseDDElParam
GetMenuItemID
GetMenuItemCount
GetClassInfoA
SetForegroundWindow
IsWindowUnicode
DefDlgProcA
CharNextA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect

gdi32

BitBlt
CreateBitmap
GetDeviceCaps
PatBlt
Rectangle
DPtoLP
CreatePen
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
StartDocA
SetAbortProc
CreateDCA
DeleteDC
SaveDC
RestoreDC
SelectObject
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
SetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetClipBox
SetWindowExtEx
ExcludeClipRect
IntersectClipRect
SelectClipRgn
MoveToEx
LineTo
SetTextColor
SetTextAlign
GetCurrentPositionEx
SetBkColor
DeleteObject
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextExtentPointA
GetTextMetricsA
StretchDIBits
CreateCompatibleBitmap
CreateFontIndirectA
LPtoDP
GetNearestColor
GetBkColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetCharWidthA
GetWindowOrgEx
CombineRgn
SetRectRgn
CreateRectRgnIndirect
CreateDIBitmap
GetStockObject
GetObjectA
CreateCompatibleDC

comdlg32

PrintDlgA
GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA
CommDlgExtendedError

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegDeleteKeyA
RegSetValueA
RegCreateKeyA
RegEnumKeyA
RegQueryValueA
RegOpenKeyA
SetFileSecurityA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
GetFileSecurityA

shell32

ExtractIconA
DragQueryFileA
DragFinish
SHGetFileInfoA

comctl32

ord17
ImageList_Destroy

wsock32

WSAGetLastError
htonl
gethostbyname
WSAStartup
inet_addr
gethostbyaddr
WSACleanup
ioctlsocket
accept
htons
closesocket
recv
send
WSAAsyncSelect
inet_ntoa
socket
recvfrom
sendto
connect
WSASetLastError
bind

Sections

.text
Size: 230KB - Virtual size: 230KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 308KB - Virtual size: 307KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7ff7077a602b998f4d9620eeeb87d6e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wsock32

Sections

.text Size: 230KB - Virtual size: 230KB

.rdata Size: 50KB - Virtual size: 49KB

.data Size: 19KB - Virtual size: 34KB

.idata Size: 10KB - Virtual size: 10KB

.rsrc Size: 308KB - Virtual size: 307KB

.reloc Size: 30KB - Virtual size: 29KB

.text
Size: 230KB - Virtual size: 230KB

.rdata
Size: 50KB - Virtual size: 49KB

.data
Size: 19KB - Virtual size: 34KB

.idata
Size: 10KB - Virtual size: 10KB

.rsrc
Size: 308KB - Virtual size: 307KB

.reloc
Size: 30KB - Virtual size: 29KB