3f68c8b9c903f35c7b28b333146ada7e

Sharing

Copy URL

Twitter E-mail

General

Target

3f68c8b9c903f35c7b28b333146ada7e
Size

1.2MB
MD5

3f68c8b9c903f35c7b28b333146ada7e
SHA1

6c6a96496c141815beccb859b3b76ce019c51326
SHA256

fe179379d7187c000ad2d77dafd8388bdeb286cd18fb67e9966a64c9492e9a8e
SHA512

0485aea17434d1cf41ee565f6f99587faacbc59e7fc23ec7de5990ef07a77baab357f65ac78162236288afcd33c5a7622257e422e2050d2328b13db4c5593053
SSDEEP

24576:eGvY2yd3TiJpBEl12A33i3qemAygVH9kzZ3Q2RtHPVdaY95/LpU2ze:e1zdjiUX3gqemAyE0QE/hzre

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f68c8b9c903f35c7b28b333146ada7e

Files

3f68c8b9c903f35c7b28b333146ada7e
.exe windows:4 windows x86 arch:x86

a4717c021e21520723ddcedd6fdabe1a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winmm

waveOutReset
waveOutClose
waveOutOpen
mmioOpenA
waveOutGetNumDevs
mmioAscend
mmioRead
mmioClose
mmioDescend
waveOutWrite
waveOutPrepareHeader
waveOutUnprepareHeader

kernel32

TerminateProcess
HeapSize
GetACP
ExitThread
GetTimeZoneInformation
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
ExitProcess
CreateThread
UnmapViewOfFile
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapReAlloc
HeapAlloc
GetCommandLineA
GetStartupInfoA
RtlUnwind
HeapFree
RaiseException
WritePrivateProfileStringA
SetErrorMode
TlsGetValue
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
GlobalFlags
TlsAlloc
GetProcessVersion
GetCurrentThread
SetFileTime
SetThreadPriority
CreateEventA
SuspendThread
GetThreadLocale
lstrcmpA
GetShortPathNameA
GetVolumeInformationA
GetStringTypeExA
GetFullPathNameA
UnlockFile
MoveFileA
SetEndOfFile
DuplicateHandle
LockFile
GetCurrentProcess
LockResource
FindResourceA
LoadResource
GlobalGetAtomNameA
GetVersion
GetCurrentThreadId
GlobalFindAtomA
lstrcmpiA
GlobalAddAtomA
SetLastError
GlobalDeleteAtom
lstrcpynA
InterlockedIncrement
InterlockedDecrement
GlobalSize
GlobalHandle
GlobalReAlloc
FreeEnvironmentStringsW
CreateFileMappingA
InterlockedExchange
LoadLibraryA
MapViewOfFile
GetProfileStringA
lstrlenA
lstrcatA
lstrcpyA
WideCharToMultiByte
MultiByteToWideChar
GetWindowsDirectoryA
GetTempPathA
GetModuleHandleA
GetDiskFreeSpaceA
GetDriveTypeA
GetVersionExA
GetFileSize
ReadFile
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
SetEvent
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SetFilePointer
WriteFile
FlushFileBuffers
CreateFileA
GetFileTime
Sleep
WaitForSingleObject
SystemTimeToFileTime
LocalFileTimeToFileTime
GetTempFileNameA
GetCurrentDirectoryA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileAttributesA
CreateSemaphoreA
GetLastError
DeleteFileA
CreateDirectoryA
ResumeThread
CloseHandle
GetEnvironmentStrings
GetEnvironmentStringsW
GetProcAddress
IsDBCSLeadByte
MulDiv
SearchPathA
LocalLock
LocalAlloc
LocalFree
GetModuleFileNameA
FindClose
LocalUnlock
FindNextFileA
FreeLibrary
FindFirstFileA

user32

CheckMenuItem
ModifyMenuA
LoadBitmapA
GetMenuCheckMarkDimensions
wvsprintfA
CreateDialogIndirectParamA
ValidateRect
LoadAcceleratorsA
TranslateAcceleratorA
GetDesktopWindow
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
IsZoomed
GetNextDlgTabItem
SetMenuItemBitmaps
DestroyCursor
FillRect
LoadStringA
GetClassNameA
GetSysColorBrush
DestroyIcon
GetTabbedTextExtentA
GetDCEx
LockWindowUpdate
SetParent
PostQuitMessage
ShowOwnedPopups
GetMenuItemID
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
RegisterWindowMessageA
GetWindowPlacement
IsWindowEnabled
GetWindowTextLengthA
GetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
InflateRect
GetWindowDC
GetMessageA
TranslateMessage
DispatchMessageA
IsDlgButtonChecked
DestroyWindow
GetSubMenu
GetSysColor
CreateWindowExA
RegisterClassA
UnregisterClassA
ShowWindow
CheckDlgButton
MoveWindow
LoadIconA
GetForegroundWindow
DialogBoxParamA
FindWindowA
GetKeyState
SetWindowLongA
PeekMessageA
BringWindowToTop
SetForegroundWindow
EndDialog
GetDlgItem
SystemParametersInfoA
SetWindowTextA
IsIconic
SetFocus
EnableMenuItem
GetSystemMenu
GetMenuState
DestroyMenu
LoadCursorA
SetCursor
ClipCursor
GetClipCursor
InSendMessage
ReplyMessage
MessageBeep
GetScrollRange
SetScrollPos
GetScrollPos
ChildWindowFromPointEx
SetActiveWindow
GetSystemMetrics
PostMessageA
GetCursorPos
ScreenToClient
PtInRect
BeginPaint
EndPaint
IsWindowVisible
SetRect
GetWindow
GetDlgCtrlID
SendNotifyMessageA
KillTimer
SetTimer
CopyRect
IsRectEmpty
GrayStringA
DrawTextA
TabbedTextOutA
GetActiveWindow
GetCapture
SetCapture
ClientToScreen
WindowFromPoint
ReleaseCapture
GetWindowLongA
InvalidateRect
UpdateWindow
GetClientRect
EnableWindow
GetWindowRect
GetParent
SetRectEmpty
GetDC
ReleaseDC
SendMessageA
OffsetRect
CharUpperA
MapWindowPoints
AdjustWindowRectEx
GetFocus
IsWindow
BeginDeferWindowPos
EqualRect
DeferWindowPos
GetScrollInfo
EndDeferWindowPos
ScrollWindow
SetScrollRange
SetScrollInfo
ShowScrollBar
WinHelpA
GetTopWindow
IsChild
GetMenu
wsprintfA
GetClassInfoA
DefWindowProcA
GetMenuItemCount
SetWindowPos
CallWindowProcA
IntersectRect
ShowCursor
MessageBoxA

gdi32

CreateCompatibleDC
CreateCompatibleBitmap
DeleteObject
CreateFontIndirectA
DeleteDC
BitBlt
SelectObject
CreateDIBSection
SetDIBitsToDevice
GetBkColor
DPtoLP
GetMapMode
LPtoDP
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextMetricsA
CreateSolidBrush
Rectangle
CreatePen
LineTo
MoveToEx
SelectClipRgn
CreateRectRgnIndirect
GetStockObject
SetROP2
CreateDIBitmap
StretchBlt
Ellipse
Polyline
GetTextExtentPoint32A
LineDDA
ExtCreatePen
EndPath
BeginPath
SetTextColor
SetBkMode
ExtSelectClipRgn
CreatePolygonRgn
CombineRgn
GetClipRgn
CreateRectRgn
StretchDIBits
GetDeviceCaps
SetStretchBltMode
CreateICA
StartDocA
CreateDCA
GetObjectA
AbortDoc
StartPage
EndDoc
SaveDC
RestoreDC
EndPage
SetBkColor
SetPolyFillMode
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
IntersectClipRect
GetClipBox
SetTextAlign
GetCurrentPositionEx
GetViewportExtEx
CreatePatternBrush
GetWindowExtEx
CreateBitmap
PatBlt
GetCharWidthA
SetRectRgn
GetViewportOrgEx
SetAbortProc
GetTextColor
GetStretchBltMode
GetNearestColor
GetTextAlign
GetBkMode
GetPolyFillMode
GetTextFaceA
GetWindowOrgEx
GetROP2

comdlg32

GetSaveFileNameA
GetFileTitleA
PrintDlgA
GetOpenFileNameA

winspool.drv

GetPrinterDriverA
OpenPrinterA
ClosePrinter
DocumentPropertiesA
GetPrinterA
EnumPrintersA

advapi32

RegCreateKeyExA
GetFileSecurityA
RegSetValueA
RegCreateKeyA
GetUserNameA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegOpenKeyA
RegQueryValueA
RegDeleteKeyA
SetFileSecurityA
RegEnumKeyA

shell32

SHGetPathFromIDListA
SHGetDesktopFolder
ShellExecuteA
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetMalloc
SHGetFileInfoA
DragFinish
ExtractIconA
DragQueryFileA

comctl32

ImageList_DragLeave
ImageList_AddMasked
ImageList_DragMove
ImageList_EndDrag
ImageList_Destroy
ImageList_Create
ImageList_DragEnter
ImageList_BeginDrag
ord17

ole32

CoTaskMemFree

Sections

.text
Size: 1000KB - Virtual size: 998KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.5rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a4717c021e21520723ddcedd6fdabe1a

Headers

File Characteristics

Imports

version

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

Sections

.text Size: 1000KB - Virtual size: 998KB

.rdata Size: 128KB - Virtual size: 124KB

.data Size: 64KB - Virtual size: 260KB

.rsrc Size: 16KB - Virtual size: 14KB

.5rdata Size: 28KB - Virtual size: 28KB

.text
Size: 1000KB - Virtual size: 998KB

.rdata
Size: 128KB - Virtual size: 124KB

.data
Size: 64KB - Virtual size: 260KB

.rsrc
Size: 16KB - Virtual size: 14KB

.5rdata
Size: 28KB - Virtual size: 28KB