26c3360b0157bb526b263b413248a1a2

Sharing

Copy URL Twitter E-mail

General

Target

26c3360b0157bb526b263b413248a1a2
Size

622KB
MD5

26c3360b0157bb526b263b413248a1a2
SHA1

a387c1201588b002291bc2c032a10396f506c18b
SHA256

e0826de3f146693d422c7d8750783e835232ca1d49aa050b93f9c9bc474e0d25
SHA512

23551e81b00f5342c029b431fcca441e7210b8d611a1cab89f840792389e89eee38f7c4d21f199f1239ced86d2b6061b4933ddb762b92014030e139fd7238482
SSDEEP

6144:dr2f0kjQFMInaoRMFwqW+CZfZ4TcBCkyTpj72Fk8/OnGhLfWPfjBBfR/ej:dri0kjQMInaBFwqLkfmPimD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26c3360b0157bb526b263b413248a1a2

Files

26c3360b0157bb526b263b413248a1a2
.exe windows:4 windows x86 arch:x86

9af276dd31dbfb4fc6921f55774a68af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Merge
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
ord14
ImageList_Write
ImageList_Read
ord13
ImageList_GetImageInfo
ImageList_Draw
ord17

comdlg32

GetSaveFileNameA
GetOpenFileNameA
ReplaceTextA
FindTextA
PageSetupDlgA
PrintDlgA
CommDlgExtendedError
GetFileTitleA

ole32

WriteClassStg
CoDisconnectObject
OleRegGetUserType
CoTaskMemFree
OleDuplicateData
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoTreatAsClass
CreateBindCtx
CoTaskMemAlloc
ReleaseStgMedium
SetConvertStg
CoCreateInstance
StringFromGUID2
CLSIDFromString
WriteFmtUserTypeStg

oleaut32

VariantChangeType
VariantInit
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayRedim
VariantCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCopy
SafeArrayGetElement
VariantClear
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocString
SysReAllocStringLen
VarDateFromStr
VarBstrFromDec
VarDecFromStr
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
SysStringByteLen
SysAllocStringByteLen
SafeArrayPtrOfIndex
SysFreeString
SysStringLen

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

shlwapi

PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathFindExtensionA
PathRemoveExtensionA

shell32

SHGetSpecialFolderLocation
DragQueryFileA
DragFinish
SHGetFileInfoA
ExtractIconA
SHGetPathFromIDListA

kernel32

Sleep
GetCommandLineA
CloseHandle
CreateFileA
GetSystemTimeAsFileTime
CompareFileTime
GetFileTime
LocalFree
FormatMessageA
RemoveDirectoryA
DeleteFileA
GetWindowsDirectoryA
GetSystemDirectoryA
CreateThread
LoadLibraryA
lstrcpyA
EnumResourceLanguagesA
ConvertDefaultLocale
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
lstrcmpA
GlobalDeleteAtom
FreeLibrary
GlobalAlloc
GlobalLock
GetCurrentThreadId
GetCurrentThread
lstrcpynA
GlobalUnlock
GlobalSize
MulDiv
CopyFileA
GlobalFree
SetLastError
GlobalAddAtomA
SetThreadPriority
ResumeThread
WaitForSingleObject
SetEvent
SuspendThread
CreateEventA
FreeResource
InterlockedDecrement
lstrcmpW
lstrcatA
GlobalFindAtomA
GlobalGetAtomNameA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetCurrentDirectoryA
InterlockedIncrement
GlobalFlags
RaiseException
InitializeCriticalSection
DeleteCriticalSection
LocalAlloc
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
MoveFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetShortPathNameA
FileTimeToSystemTime
SystemTimeToFileTime
GetCPInfo
GetOEMCP
SetErrorMode
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SetFileTime
SetFileAttributesA
GetFileAttributesA
LocalUnlock
LocalLock
GetTempFileNameA
GetDiskFreeSpaceA
GetStartupInfoA
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
ExitProcess
TerminateProcess
ExitThread
HeapReAlloc
HeapSize
GetDriveTypeA
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
SetCurrentDirectoryA
IsBadReadPtr
IsBadCodePtr
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeExW
GetExitCodeProcess
CreateProcessA
SetConsoleCtrlHandler
GetLocaleInfoW
SetEnvironmentVariableA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
GetLastError
SizeofResource
LockResource
LoadResource
FindResourceA
GetVersion
lstrcmpiA
lstrlenW
lstrcmpiW
lstrlenA
CompareStringA
CompareStringW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetStringTypeExA
SetStdHandle

user32

SetScrollInfo
GetScrollInfo
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
GetSysColor
GetMenu
ShowScrollBar
SetForegroundWindow
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
TrackPopupMenu
TrackPopupMenuEx
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
GetForegroundWindow
GetWindowTextA
GetWindowTextLengthA
IsChild
SetFocus
SendDlgItemMessageA
RemovePropA
GetPropA
SetPropA
GetClassNameA
GetClassInfoExA
GetClassLongA
CreateWindowExA
GetCapture
WinHelpA
RegisterWindowMessageA
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
IsDialogMessageA
SetWindowTextA
GetClassInfoA
ShowWindow
ScrollWindowEx
SetCapture
WindowFromPoint
LoadCursorA
ReleaseCapture
GetWindowThreadProcessId
WaitMessage
DeleteMenu
GetSysColorBrush
DestroyIcon
GetDialogBaseUnits
InflateRect
GetMenuItemInfoA
DestroyMenu
TranslateAcceleratorA
SetMenu
BringWindowToTop
SetRectEmpty
CreatePopupMenu
InsertMenuItemA
LoadAcceleratorsA
ReuseDDElParam
UnpackDDElParam
LoadMenuA
GetKeyNameTextA
MapVirtualKeyA
IsRectEmpty
UnionRect
IsClipboardFormatAvailable
MessageBeep
GetTabbedTextExtentA
GetDCEx
LockWindowUpdate
GetSystemMenu
SetParent
RemoveMenu
PostQuitMessage
PostMessageA
InvalidateRect
UpdateWindow
GetWindowRect
FillRect
SetRect
EnableWindow
GetSystemMetrics
LoadIconA
KillTimer
SetTimer
GetClientRect
IsIconic
SendMessageA
DrawIcon
wsprintfA
CharUpperW
CharUpperA
CharLowerW
CharLowerA
RegisterClassA
UnregisterClassA
SetWindowPlacement
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
CopyRect
GetWindowPlacement
PtInRect
GetWindow
UnhookWindowsHookEx
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetSubMenu
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
ShowOwnedPopups
SetCursor
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
MoveWindow
GetMenuItemCount
GetFocus

gdi32

EndDoc
AbortDoc
SetAbortProc
EndPage
StartPage
GetBkColor
CreateFontA
GetCharWidthA
StretchDIBits
DPtoLP
PatBlt
CombineRgn
SetRectRgn
CreateRectRgnIndirect
CreateFontIndirectA
GetTextExtentPoint32A
CreateHatchBrush
CreateSolidBrush
ExtCreatePen
CreatePen
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
SelectPalette
CreatePatternBrush
CreateDIBPatternBrushPt
DeleteDC
ExtSelectClipRgn
PolyBezierTo
PolylineTo
PolyDraw
ArcTo
GetCurrentPositionEx
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
RectVisible
PtVisible
StartDocA
GetPixel
GetWindowExtEx
GetViewportExtEx
SelectClipPath
CreateRectRgn
GetClipRgn
SelectClipRgn
DeleteObject
SetColorAdjustment
SetArcDirection
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
MoveToEx
LineTo
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
CreateBitmap
CreateDCA
CopyMetaFileA
GetDeviceCaps
GetTextMetricsA
TextOutA
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
GetMapMode

advapi32

GetFileSecurityA
RegQueryValueExA
RegOpenKeyExA
RegSetValueA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyA
RegCloseKey
SetFileSecurityA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
GetJobA

Sections

.text
Size: 440KB - Virtual size: 440KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 62KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9af276dd31dbfb4fc6921f55774a68af

Headers

File Characteristics

Imports

comctl32

comdlg32

ole32

oleaut32

oleacc

shlwapi

shell32

kernel32

user32

gdi32

advapi32

winspool.drv

Sections

.text Size: 440KB - Virtual size: 440KB

.rdata Size: 84KB - Virtual size: 83KB

.data Size: 16KB - Virtual size: 30KB

.idata Size: 16KB - Virtual size: 15KB

.rsrc Size: 62KB - Virtual size: 82KB

.text
Size: 440KB - Virtual size: 440KB

.rdata
Size: 84KB - Virtual size: 83KB

.data
Size: 16KB - Virtual size: 30KB

.idata
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 62KB - Virtual size: 82KB