2a18783ebddd9ae7629c70ff9253118c

Sharing

Copy URL Twitter E-mail

General

Target

2a18783ebddd9ae7629c70ff9253118c
Size

15.4MB
MD5

2a18783ebddd9ae7629c70ff9253118c
SHA1

041eb8edbe5952c429659da7c221bae6d7c3e0d8
SHA256

3ac012293d40a447a4054bdb7c5aff8e9b50de1a00c9578ba3f08627d7d8d4cc
SHA512

c871058690a95aba482e011a645729c63a91b099212690021c18cbfd1cadf3ea8a170b679b963a953338dfe8c58eb13cd7972c65e2221aeda4676e3829d9a6fb
SSDEEP

196608:C+Fwnm7L4DtZHaUhtOZdIlm0A+4ebd3ABV7kMKRuIojDIg9Cbk/Vgb6wlYe:pFsm7L4Dz6U7EenArDi+wKe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a18783ebddd9ae7629c70ff9253118c

Files

2a18783ebddd9ae7629c70ff9253118c
.exe windows:6 windows x86 arch:x86

7022d26b692e727f0e7de46110ef8daf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHAppBarMessage
SHAddToRecentDocs
ExtractIconA
ShellExecuteA
SHGetKnownFolderPath
FindExecutableA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetFolderPathA
SHGetMalloc
SHGetFileInfoA
SHGetSpecialFolderLocation
DragFinish
DragQueryFileA

kernel32

GetCommandLineA
GetFileInformationByHandle
GetVolumeInformationA
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetCurrentDirectoryA
HeapCreate
HeapDestroy
HeapAlloc
HeapFree
SetEvent
ResumeThread
GetModuleHandleA
DecodePointer
RaiseException
HeapReAlloc
HeapSize
GetProcessHeap
InitializeCriticalSectionEx
DeleteCriticalSection
EncodePointer
GetSystemDirectoryW
GetModuleFileNameW
GetModuleHandleW
LoadLibraryExW
LoadLibraryW
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomA
GlobalFindAtomA
GlobalGetAtomNameA
CompareStringA
GetThreadLocale
GetCurrentProcessId
CreateEventA
SetThreadPriority
SuspendThread
GetVersionExA
FileTimeToLocalFileTime
FindNextFileA
VirtualProtect
VerSetConditionMask
VerifyVersionInfoA
GetFileSize
InitializeCriticalSectionAndSpinCount
FlushFileBuffers
GetFullPathNameA
LockFile
SetEndOfFile
SetFilePointer
UnlockFile
DeleteFileW
LoadLibraryExA
lstrcmpiA
GetStringTypeExA
GetTickCount
GetProfileIntA
lstrcmpA
GetCurrentThread
GetPrivateProfileIntA
GetDiskFreeSpaceA
GetFileTime
SetFileTime
ReplaceFileA
SystemTimeToFileTime
GetUserDefaultLCID
GetFileSizeEx
LocalFileTimeToFileTime
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LocalReAlloc
GlobalFlags
GetACP
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GetOEMCP
GetCPInfo
FindResourceExW
SetErrorMode
SearchPathA
Sleep
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
ResetEvent
WaitForSingleObjectEx
CreateEventW
IsDebuggerPresent
GetStartupInfoW
GetSystemTimeAsFileTime
InitializeSListHead
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
LocalUnlock
LocalLock
LocalAlloc
DuplicateHandle
OutputDebugStringW
LCMapStringEx
WritePrivateProfileStringA
GetPrivateProfileStringA
GetWindowsDirectoryA
GetCurrentThreadId
SetLastError
CreateDirectoryA
GetSystemDefaultLangID
GetLocaleInfoA
FormatMessageA
LocalFree
LoadLibraryA
GetProcAddress
GetModuleFileNameA
FreeLibrary
GetCurrentProcess
CreateMutexA
WaitForSingleObject
GetTempPathA
GlobalSize
GlobalReAlloc
GetShortPathNameA
GetFileAttributesExA
QueryPerformanceFrequency
QueryPerformanceCounter
lstrcpynA
GlobalAlloc
MoveFileA
lstrlenA
GetTempFileNameA
WriteFile
ReadFile
FindFirstFileA
GlobalHandle
FindClose
DeleteFileA
CreateFileA
CreateProcessA
TerminateProcess
CloseHandle
GlobalFree
GlobalLock
GlobalUnlock
FindResourceA
MultiByteToWideChar
GetFileAttributesW
CopyFileA
GetLastError
WideCharToMultiByte
lstrcpyA
MulDiv
FindResourceW
SizeofResource
LockResource
LoadResource
GetFileAttributesA
GetStringTypeW
RtlUnwind
GetDriveTypeW
GetFullPathNameW
SetEnvironmentVariableW
SetCurrentDirectoryW
GetCurrentDirectoryW
IsValidCodePage
CreateFileW
GetFileType
PeekNamedPipe
CreateDirectoryW
GetStdHandle
GetModuleHandleExW
WriteConsoleW
GetSystemInfo
VirtualAlloc
VirtualQuery
CreateThread
ExitThread
FreeLibraryAndExitThread
GetCommandLineW
HeapQueryInformation
SetStdHandle
ExitProcess
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
ReadConsoleW
GetTimeZoneInformation
GetFileAttributesExW
FindFirstFileExW
FindNextFileW
GetEnvironmentStringsW
OutputDebugStringA
FreeEnvironmentStringsW

user32

EnumDisplayMonitors
GetSysColorBrush
SetLayeredWindowAttributes
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
BringWindowToTop
MapDialogRect
GetMenuItemInfoA
DestroyMenu
MapVirtualKeyA
GetKeyNameTextA
TranslateMessage
GetMessageA
CreateDialogIndirectParamA
IsDialogMessageA
IsWindowEnabled
CheckDlgButton
SetDlgItemTextA
CharNextA
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
GetLastActivePopup
GetClassLongA
MapWindowPoints
RemovePropA
GetPropA
SetPropA
ShowScrollBar
ScrollWindow
ValidateRect
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsMenu
GetClassInfoA
CallWindowProcA
GetMessageTime
DispatchMessageA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
SendDlgItemMessageA
GetWindowTextLengthA
InsertMenuA
GetMenuStringA
CreatePopupMenu
UnregisterClassA
SetCursorPos
DestroyIcon
SetForegroundWindow
AdjustWindowRectEx
MoveWindow
GetClassNameA
FillRect
GetClassInfoExA
GetCaretPos
DrawIconEx
GetCapture
IsIconic
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetWindowTextA
SetWindowTextA
EndDialog
ShowWindow
GetWindowDC
RemoveMenu
ModifyMenuA
GetMenuState
IsChild
GetDesktopWindow
CopyIcon
DestroyCursor
SetWindowRgn
GetMessagePos
EndPaint
BeginPaint
GetFocus
GetDlgCtrlID
RegisterWindowMessageA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
SetWindowLongA
DestroyWindow
CreateWindowExA
RegisterClassA
DefWindowProcA
PostQuitMessage
PeekMessageA
SystemParametersInfoA
EqualRect
GetKeyboardLayout
SetFocus
SetWindowPos
GetWindow
GetTopWindow
IntersectRect
GetNextDlgTabItem
ClipCursor
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
DeleteMenu
SetCapture
GetKeyState
IsClipboardFormatAvailable
EmptyClipboard
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
ScreenToClient
EnableScrollBar
ReleaseCapture
GetDlgItem
IsWindow
SetCaretPos
ShowCaret
HideCaret
CreateCaret
UpdateWindow
GetAsyncKeyState
LoadCursorW
DrawEdge
GetParent
GetCursorPos
GetSystemMetrics
LoadBitmapA
IsRectEmpty
OffsetRect
InflateRect
SetRectEmpty
GetWindowThreadProcessId
EnumWindows
GetWindowLongA
ShowCursor
WindowFromPoint
GetActiveWindow
CopyImage
PtInRect
CopyRect
DrawFrameControl
DrawFocusRect
GetSysColor
DrawStateA
SetRect
MessageBeep
MessageBoxA
LoadImageA
ReleaseDC
GetDC
LoadBitmapW
ClientToScreen
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenu
LoadMenuW
TranslateAcceleratorA
LoadAcceleratorsA
GetClientRect
LoadCursorA
GetCursor
SetCursor
GetNextDlgGroupItem
GetIconInfo
UnionRect
GetWindowRgn
MapVirtualKeyExA
IsCharLowerA
InvertRect
SubtractRect
TranslateMDISysAccel
DefMDIChildProcA
GetWindowRect
InvalidateRect
EnableWindow
KillTimer
SetTimer
PostMessageA
SendMessageA
DefFrameProcA
DrawMenuBar
FrameRect
CharUpperBuffA
EnumChildWindows
CreateMenu
PostThreadMessageA
GetTabbedTextExtentW
SetMenuDefaultItem
GetMenuDefaultItem
GetDoubleClickTime
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
InvalidateRgn
CopyAcceleratorTableA
RealChildWindowFromPoint
UpdateLayeredWindow
DestroyAcceleratorTable
GetComboBoxInfo
LockWindowUpdate
GetUpdateRect
SetParent
SetClassLongA
RegisterClipboardFormatA
WaitMessage
DrawIcon
NotifyWinEvent
GetSystemMenu
TrackMouseEvent
LoadImageW
MonitorFromPoint
IsZoomed
SetWindowContextHelpId
ShowOwnedPopups
RedrawWindow
CharUpperA
AppendMenuA

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance
CreateStreamOnHGlobal
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
CoCreateGuid
CoInitialize
CLSIDFromString
CLSIDFromProgID
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
ReleaseStgMedium
OleDuplicateData
StgOpenStorageOnILockBytes
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoRegisterMessageFilter
CoRevokeClassObject

Sections

.text
Size: 8.4MB - Virtual size: 8.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 205KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

CasingBl
Size: 480KB - Virtual size: 479KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BaseSqua
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7022d26b692e727f0e7de46110ef8daf

Headers

File Characteristics

Imports

shell32

kernel32

user32

ole32

Sections

.text Size: 8.4MB - Virtual size: 8.4MB

.rdata Size: 2.4MB - Virtual size: 2.4MB

.data Size: 205KB - Virtual size: 1.9MB

Size: 3.9MB - Virtual size: 3.9MB

CasingBl Size: 480KB - Virtual size: 479KB

BaseSqua Size: 512B - Virtual size: 3KB

.text
Size: 8.4MB - Virtual size: 8.4MB

.rdata
Size: 2.4MB - Virtual size: 2.4MB

.data
Size: 205KB - Virtual size: 1.9MB

CasingBl
Size: 480KB - Virtual size: 479KB

BaseSqua
Size: 512B - Virtual size: 3KB