f3b3c91f14dcf90549dcca40ea58969d5f266ad3064d094425b180aa4c65abbb

Sharing

Copy URL

Twitter E-mail

General

Target

f3b3c91f14dcf90549dcca40ea58969d5f266ad3064d094425b180aa4c65abbb
Size

684KB
MD5

003f20ecb022d0ef4addf2a894834d45
SHA1

7a2e574910faedbaaf31b3525d830f0f11215a93
SHA256

f3b3c91f14dcf90549dcca40ea58969d5f266ad3064d094425b180aa4c65abbb
SHA512

f63c1b429347fb1d18b57223403fb289abab3205178a9e6b4b9f900ab633d328fc5e018a3107a68a6718b43a8f9c717bb8505c6840876de83ffb1b576845d46f
SSDEEP

6144:6g8e1898E15W1VTAE5GE+/0jTd2YxFyl2XcGUjG/LCNrNn:6g8e18912lAEMZ0jpFxFzEJT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3b3c91f14dcf90549dcca40ea58969d5f266ad3064d094425b180aa4c65abbb

Files

f3b3c91f14dcf90549dcca40ea58969d5f266ad3064d094425b180aa4c65abbb
.exe windows:4 windows x86 arch:x86

360bc88a1bd30a72bb439f88c703f29a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
CompareStringW
SetEnvironmentVariableA
IsBadCodePtr
GetProfileStringA
IsBadReadPtr
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetTimeZoneInformation
GetACP
HeapReAlloc
HeapSize
TerminateProcess
ExitProcess
GetCommandLineA
GetStartupInfoA
RaiseException
RtlUnwind
HeapAlloc
HeapFree
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
DuplicateHandle
GetOEMCP
GetThreadLocale
WritePrivateProfileStringA
SizeofResource
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetProcessVersion
GlobalFlags
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
FreeLibrary
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
GetModuleFileNameA
GlobalAlloc
GlobalDeleteAtom
GlobalFree
lstrcmpA
GetCurrentThreadId
lstrcpynA
FormatMessageA
LocalFree
GlobalLock
GlobalUnlock
MulDiv
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
Sleep
GetLocalTime
GetModuleHandleA
GetProcAddress
CreateToolhelp32Snapshot
Process32First
lstrcmpiA
Process32Next
GetCurrentThread
GetLastError
GetCurrentProcess
CloseHandle
GetVersionExA
FindResourceA
LoadResource
LockResource
GetCPInfo
lstrlenW
lstrlenA
GetVersion
CompareStringA

user32

LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
OffsetRect
IsIconic
GetWindowPlacement
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetLastActivePopup
MessageBoxA
SetCursor
ShowOwnedPopups
PostMessageA
PostQuitMessage
EndDialog
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
MoveWindow
GetDlgItem
IsWindowEnabled
UnhookWindowsHookEx
SetWindowLongA
PtInRect
GetWindowRect
IsWindow
InvalidateRect
SetRectEmpty
GetClientRect
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
SendMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
InflateRect
IntersectRect
EndPaint
BeginPaint
GetWindowDC
GetSysColor
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetMenuItemInfoA
PostThreadMessageA
ClientToScreen
ScreenToClient
DestroyMenu
IsMenu
EnableWindow
GrayStringA
TabbedTextOutA
GetSubMenu
DeleteMenu
LoadBitmapA
GetSysColorBrush
GetMenuStringA
CreateMenu
CreatePopupMenu
GetMenuItemID
GetMenuState
SetDlgItemTextA
IsDialogMessageA
GetNextDlgTabItem
SetWindowTextA
ModifyMenuA
GetMenuItemCount
AppendMenuA
GetSystemMetrics
GetDC
DrawTextA
ReleaseDC
DrawIconEx
DestroyIcon
CopyRect
FillRect
DrawEdge
SystemParametersInfoA
SetRect
RegisterClipboardFormatA
LockWindowUpdate
GetDCEx
InvertRect
SetCapture
GetTabbedTextExtentA
FindWindowA
CharUpperA
MessageBeep
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
WindowFromPoint
KillTimer
SetTimer
GetClassNameA
LoadStringA
GetSystemMenu
IsRectEmpty
SetParent
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
LoadCursorA
DestroyCursor
GetWindowLongA
ShowWindow

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
CreateRectRgn
SetTextColor
GetWindowExtEx
CreatePatternBrush
GetMapMode
CreateBitmap
SetRectRgn
CombineRgn
CreateRectRgnIndirect
DPtoLP
StretchDIBits
GetCharWidthA
CreateFontA
GetObjectA
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
GetTextMetricsA
GetTextColor
GetBkColor
LPtoDP
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetROP2
GetTextFaceA
GetWindowOrgEx
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
GetStockObject
RestoreDC
SaveDC
StartDocA
Escape
Rectangle
ExtTextOutA
TextOutA
RectVisible
PtVisible
PatBlt
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
Ellipse
GetTextExtentPoint32A
GetTextExtentPoint32W
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
CreateSolidBrush
CreatePen
CreateFontIndirectA
GetBkMode
GetViewportExtEx
CreateDIBitmap
GetTextExtentPointA
GetDeviceCaps

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA
CommDlgExtendedError
PrintDlgA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

LookupPrivilegeValueA
OpenProcessToken
OpenThreadToken
SetFileSecurityA
GetFileSecurityA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
AdjustTokenPrivileges

shell32

DragQueryFileA
DragFinish
ShellExecuteA

comctl32

ImageList_Draw
ImageList_GetIcon
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_Create
ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringLen

Sections

.text
Size: 232KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 376KB - Virtual size: 389KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

360bc88a1bd30a72bb439f88c703f29a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 232KB - Virtual size: 229KB

.rdata Size: 56KB - Virtual size: 55KB

.data Size: 376KB - Virtual size: 389KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 232KB - Virtual size: 229KB

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 376KB - Virtual size: 389KB

.rsrc
Size: 16KB - Virtual size: 16KB