3944b11a17eadc3be17dec6319041156

Sharing

Copy URL

Twitter E-mail

General

Target

3944b11a17eadc3be17dec6319041156
Size

173KB
MD5

3944b11a17eadc3be17dec6319041156
SHA1

7c196501fdd090e2c083a199ce2d40813051e060
SHA256

4da3d1a3e7fab4ae16d0cc86bb8a4b3983b629d1f186a711cb8aa3e3f3a30364
SHA512

e33f9a11594bed7b12d16b5d56be0527fa51b84702d97982e2f5e58f026e8cd91b982b826f0cf5bff966f48836e37178eae7a4fee10df34bca5ffd5d07ee04a7
SSDEEP

3072:obndtoC3Uz5xfYv68JF7zCC6LG/zWjvLi/cZZ5gB1CH:yvPUzPf0uCcQWjvLiUc1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3944b11a17eadc3be17dec6319041156

Files

3944b11a17eadc3be17dec6319041156
.exe windows:4 windows x86 arch:x86

8b0575fd9c245bcde5b87e4c6df45952

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetACP
GetCPInfo
HeapDestroy
HeapCreate
VirtualAlloc
VirtualFree
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapSize
HeapReAlloc
TlsSetValue
GlobalReAlloc
IsBadWritePtr
IsBadCodePtr
GetLocaleInfoA
SetStdHandle
GetLocaleInfoW
CloseHandle
MulDiv
InterlockedDecrement
GlobalFree
RaiseException
GetModuleHandleA
ExitProcess
GetStartupInfoA
RtlUnwind
HeapAlloc
HeapFree
SetErrorMode
GetFullPathNameA
FindClose
GetVolumeInformationA
FindFirstFileA
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
WritePrivateProfileStringA
GetVersionExA
FreeLibrary
LoadLibraryA
GetProcAddress
GetProcessVersion
GetLastError
SetLastError
LocalReAlloc
GlobalFlags
TlsGetValue
LCMapStringW
GetStringTypeA
EnterCriticalSection
FindResourceA
LoadResource
LeaveCriticalSection
GetStringTypeW
LockResource
GetCurrentThreadId
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
IsBadReadPtr
LCMapStringA
GetFileAttributesA
GlobalGetAtomNameA
GetModuleFileNameA
GetCommandLineA
GetVersion
GlobalAddAtomA
lstrcatA
GlobalUnlock
lstrcpynA
GlobalLock
lstrlenA
lstrcpyA

user32

SetWindowTextA
IsDialogMessageA
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
IsZoomed
OffsetRect
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
ValidateRect
TranslateMessage
GetMessageA
LoadStringA
PostQuitMessage
ShowOwnedPopups
MessageBoxA
GetClassNameA
PtInRect
ClientToScreen
GetSysColorBrush
FindWindowA
FillRect
KillTimer
WindowFromPoint
SetRect
DeleteMenu
CharUpperA
InflateRect
GetDCEx
LockWindowUpdate
SetCapture
IntersectRect
SetParent
AppendMenuA
GetSystemMenu
InvertRect
AdjustWindowRectEx
DeferWindowPos
GetClientRect
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
SetScrollInfo
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
RegisterClassA
IsRectEmpty
SetTimer
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
BringWindowToTop
IsWindowVisible
IsIconic
GetFocus
EqualRect
CopyRect
GetDlgItem
SetWindowLongA
wsprintfA
GetKeyState
SetWindowPos
GetDlgCtrlID
GetMenuItemCount
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
GetMenu
GetClassInfoA
DestroyMenu
SetFocus
GetParent
GetActiveWindow
ShowWindow
GetWindowLongA
IsWindow
GetWindow
IsWindowEnabled
SetCursor
PeekMessageA
PostMessageA
GetCapture
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
LoadMenuA
GetSubMenu
GetCursorPos
GetMenuItemID
LoadIconA
InvalidateRect
LoadImageA
ReleaseDC
GetWindowRect
ScreenToClient
GetDesktopWindow
GetDC
LoadCursorA
UpdateWindow
EnableWindow
SetForegroundWindow
SendMessageA
GetNextDlgTabItem
EndDialog
GetSystemMetrics
CreateDialogIndirectParamA
SendDlgItemMessageA
SystemParametersInfoA
MapWindowPoints
GetSysColor
DestroyWindow
CallNextHookEx
DispatchMessageA
CreateWindowExA
GetForegroundWindow
UnhookWindowsHookEx
SetWindowsHookExA
UnregisterClassA

gdi32

DeleteObject
GetDeviceCaps
BitBlt
RealizePalette
CreateCompatibleDC
CreateHalftonePalette
DeleteDC
CreatePalette
GetDIBColorTable
SelectObject
SetTextColor
SetBkColor
CreateBitmap
GetTextExtentPointA
GetTextMetricsA
SaveDC
RestoreDC
GetStockObject
SelectPalette
SetBkMode
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
GetClipBox
IntersectClipRect
SetTextAlign
CreateRectRgn
CreatePatternBrush
CreateSolidBrush
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
CreateFontIndirectA
CreateRectRgnIndirect
PatBlt
CombineRgn
SetRectRgn
GetObjectA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA

shell32

DragQueryFileA
DragFinish

comctl32

ord17
ImageList_Destroy

Sections

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jgd
Size: 1B - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8b0575fd9c245bcde5b87e4c6df45952

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 108KB - Virtual size: 108KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 15KB - Virtual size: 28KB

.rsrc Size: 16KB - Virtual size: 16KB

.jgd Size: 1B - Virtual size: 3KB

.text
Size: 108KB - Virtual size: 108KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 15KB - Virtual size: 28KB

.rsrc
Size: 16KB - Virtual size: 16KB

.jgd
Size: 1B - Virtual size: 3KB