ND-Premium-991393[.]zip

Resubmissions

05/01/2024, 15:34

240105-sz6c5agad5 7

05/01/2024, 15:24

240105-ss5g9aeghm 7

05/01/2024, 15:20

240105-sq8f5afhg6 3

Sharing

Copy URL Twitter E-mail

General

Target

ND-Premium-991393.zip
Size

20.2MB
MD5

9ced1477ab2127802c27aa949d8b1993
SHA1

ddf8a12a03b07a927164e9fb5ef8dce874340174
SHA256

e83268b69cb5b7c74774e81c0267fe96af626fe5cae17aa8549239c30484770a
SHA512

178253c87a75e1de865347fb3dd0076627a43618d72730479bf9014179abf32e3439a368328644c3361d1dd5d26113d86edfc7b7bfafd060dff7444683e30949
SSDEEP

393216:LAN+98fOvWAcJcc2izg7TbJWqXWUBrkellWO9+v2IuA6bxKPHvQJMwCSPnRiyQG4:LnFRcWTVkmj9AV6b4HmxnI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Install_01025.exe

Files

ND-Premium-991393.zip
.zip
Install_01025.exe
.exe windows:4 windows x86 arch:x86

602eb8c5dbe89a9bad49aae2fe99d808

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GlobalDeleteAtom
CreateProcessW
GetFileSize
MoveFileW
GetStdHandle
SetFilePointer
ResetEvent
TryEnterCriticalSection
GetThreadLocale
CompareStringA
FindFirstFileA
SizeofResource
IsDebuggerPresent
GetConsoleCP
GetCommandLineW
GetLocalTime
TlsGetValue
GetExitCodeThread
LockResource
WriteFile
GetVersionExA
GetTickCount
FindResourceA
CreateThread
SetEvent
EnumResourceNamesA
FreeEnvironmentStringsW
GetFullPathNameW
EnterCriticalSection
GetCurrentThread
MultiByteToWideChar
Process32NextW
GetModuleFileNameA
VirtualFree
GlobalAddAtomA
ReadFile
PeekNamedPipe
GetDateFormatA
GetSystemInfo
IsBadReadPtr
GetModuleHandleA
CloseHandle
MulDiv
CreateDirectoryW
Sleep
LoadLibraryA
GlobalReAlloc
GetOEMCP
DeleteCriticalSection
SetEndOfFile
GetDateFormatW
GetLocaleInfoW
GetModuleFileNameW
CreateMutexA
GetEnvironmentStringsW
FindNextFileA
TlsSetValue
OpenThread
GetExitCodeProcess
GetUserDefaultLCID
GetLastError
GlobalAlloc
FreeResource
GetCurrentProcessId
GetWindowsDirectoryA
LocalAlloc
GetCurrentDirectoryW
HeapAlloc
RaiseException
TlsAlloc
FindClose
VirtualProtect
FindResourceExA
EnumCalendarInfoA
ExitProcess
RtlUnwind
GlobalLock
GetCurrentProcess
GetProcessHeap
FileTimeToLocalFileTime
LeaveCriticalSection
HeapFree
InitializeCriticalSection
GetConsoleMode
GetDriveTypeA
LocalFree
GetTimeZoneInformation
LoadLibraryW
GetACP
DeviceIoControl
GetTickCount64
ResumeThread
GlobalSize
FileTimeToDosDateTime
TerminateThread
ReadProcessMemory
CompareStringW
GetLocaleInfoA
SetLastError
GetCPInfo
GetThreadPriority
FreeLibrary
FindFirstFileExW
ExitThread
GlobalUnlock
FindNextFileW
VirtualAlloc
EnumResourceTypesA
FormatMessageA
WideCharToMultiByte
SetThreadLocale
Process32FirstW
SuspendThread
GetCommandLineA
GetCurrentThreadId
CreateEventA
CreateFileA
GetStartupInfoA
FormatMessageW
CreateToolhelp32Snapshot
SetThreadPriority
WaitForSingleObject
CreateFileW
GetProcAddress
GetConsoleOutputCP
GetFileAttributesW
LoadResource
EnumResourceLanguagesA

oleaut32

VariantInit
VariantClear
SafeArrayGetLBound
SysReAllocStringLen
SafeArrayAccessData
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayRedim
SysFreeString
SafeArrayUnaccessData
VariantCopy
SafeArrayGetElement
SafeArrayGetUBound
SysAllocStringLen
VariantChangeTypeEx
SafeArrayCreate

user32

FillRect
DrawFrameControl
SendMessageA
GetWindowTextW
DrawTextW
SetActiveWindow
SetCapture
CallWindowProcW
GetWindowTextLengthW
SetWindowLongW
CallWindowProcA
CharLowerA
RemoveMenu
RegisterClipboardFormatA
EnumClipboardFormats
SetCaretPos
InflateRect
CharLowerBuffA
SetMenu
SwitchToThisWindow
ScrollWindowEx
DrawMenuBar
DeleteMenu
GetTopWindow
SetTimer
DefWindowProcA
GetWindowThreadProcessId
RedrawWindow
GetDCEx
UnregisterClassA
WindowFromPoint
CreateIconIndirect
ShowOwnedPopups
CreateCaret
HideCaret
EnumThreadWindows
FindWindowExW
RemovePropA
FrameRect
SetFocus
InvalidateRgn
GetClassInfoA
DefWindowProcW
UpdateWindow
SetForegroundWindow
DrawEdge
EnableWindow
IsZoomed
ClientToScreen
SetParent
GetClassNameA
SetCursor
IsIconic
GetClassLongA
SetSysColors
CharToOemA
SetScrollInfo
SetWindowLongA
SetWindowRgn
AdjustWindowRectEx
GetMenuItemInfoA
GetSysColorBrush
DrawIconEx
SetClipboardData
DeferWindowPos
CharUpperA
BeginDeferWindowPos
DispatchMessageW
SystemParametersInfoA
DefMDIChildProcW
MsgWaitForMultipleObjects
GetMenuItemCount
FlashWindowEx
ChildWindowFromPointEx
GetMenuItemInfoW
GetSubMenu
GetDoubleClickTime
SetPropA
GetClipboardFormatNameA
GetMenu
GetDC
IsWindowVisible
ShowWindow
GetClientRect
GetClipboardData
EnumPropsA
MapWindowPoints
DrawFocusRect
IsWindow
GetClassInfoW
EmptyClipboard
GetMenuItemRect
CreateWindowExW
GetWindowRect
MessageBoxW
MessageBeep
CreateWindowExA
GetUpdateRect
CreatePopupMenu
InsertMenuItemW
ShowWindowAsync
GetScrollInfo
EndPaint
CallNextHookEx
GetForegroundWindow
DestroyIcon
ScreenToClient
BeginPaint
GetSysColor
IsWindowEnabled
LoadBitmapA
ReleaseDC
LoadCursorA
EndDeferWindowPos
GetSystemMenu
CreateMenu
CharUpperBuffW
DestroyCursor
KillTimer
DefFrameProcW
IsMenu
GetCapture
IntersectRect
DestroyWindow
GetWindowPlacement
OffsetRect
PeekMessageA
UnregisterClassW
DrawStateW
GetWindowDC
GetCaretPos
SetCursorPos
GetActiveWindow
PeekMessageW
MessageBoxA
CloseClipboard
OpenClipboard
SetMenuItemInfoW
LoadIconA
ReleaseCapture
GetParent
LoadImageA
EnableMenuItem
MoveWindow
SetWindowTextW
GetWindowLongW
SetWindowPlacement
GetWindow
GetCursorPos
EnableScrollBar
GetFocus
GetDesktopWindow
CharLowerBuffW
BringWindowToTop
TranslateMessage
RegisterClassW
SetWindowPos
SendMessageW
WindowFromDC
GetIconInfo
DestroyMenu
SetRect
CharUpperBuffA
PostQuitMessage
TrackPopupMenuEx
RegisterClassA
SetClassLongA
CountClipboardFormats
CopyImage
PostMessageA
GetSystemMetrics
TranslateMDISysAccel
GetWindowLongA
InvalidateRect
GetKeyState
IsClipboardFormatAvailable
ShowScrollBar
ShowCaret
DestroyCaret
GetPropA
GetLastActivePopup

advapi32

OpenProcessToken
RegEnumKeyExW
OpenSCManagerW
GetTokenInformation
RegEnumValueW
QueryServiceStatus
RegCreateKeyExW
RegQueryValueExW
RegQueryInfoKeyW
GetUserNameA
RegFlushKey
OpenServiceW
RegCloseKey
AdjustTokenPrivileges
RegOpenKeyExW
LookupPrivilegeValueA

gdi32

ExtFloodFill
RectInRegion
GetWindowOrgEx
GetTextExtentPoint32W
SetTextColor
SetTextAlign
ExtTextOutW
SetWindowExtEx
SetPolyFillMode
GetStockObject
SaveDC
GetObjectA
Rectangle
GetRandomRgn
SetTextCharacterExtra
GetTextExtentPointA
GetDIBits
GetRgnBox
Ellipse
CreatePolygonRgn
CreateFontIndirectA
RealizePalette
GetBkColor
OffsetRgn
GetBitmapBits
SetROP2
PolyBezier
GetDeviceCaps
CreateDIBitmap
SelectObject
SelectClipRgn
FillRgn
SetArcDirection
GetTextAlign
CreateDIBSection
GetViewportExtEx
SetBkColor
CombineRgn
CreatePen
RestoreDC
ExtCreateRegion
GetRegionData
StretchBlt
GetTextColor
ExtTextOutA
DeleteDC
DeleteObject
EnumFontFamiliesA
GetPixel
BitBlt
OffsetViewportOrgEx
GetTextMetricsA
CreateRectRgn
TextOutW
Chord
CreatePenIndirect
ExtSelectClipRgn
MoveToEx
CreateFontIndirectW
GetCurrentObject
ExcludeClipRect
SetViewportExtEx
PaintRgn
SetWindowOrgEx
GetViewportOrgEx
SetRectRgn
CreateSolidBrush
GetCharABCWidthsW
SetPixel
CreatePatternBrush
LineTo
LPtoDP
ExtCreatePen
GetClipRgn
GetObjectW
GetCharABCWidthsA
DPtoLP
CreateCompatibleDC
GetMapMode
SetStretchBltMode
GetObjectType
SelectPalette
GetTextExtentExPointW
PatBlt
EqualRgn
RoundRect
GetDCOrgEx
CreateRoundRectRgn
EnumFontFamiliesExW
GetWindowExtEx
GetClipBox
Polyline
CreateBitmap
CreateEllipticRgn
RectVisible
IntersectClipRect
SetBkMode
SetBrushOrgEx
CreateBrushIndirect
Polygon
SetMapMode
MaskBlt
Arc
Pie
CreateCompatibleBitmap
PtInRegion
SetViewportOrgEx
GetROP2

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

shell32

DragFinish
ShellExecuteExW
ShellExecuteW
SHGetKnownFolderPath
DragQueryFileA
SHGetFolderPathW
DragAcceptFiles
DragQueryFileW

ole32

OleInitialize
OleUninitialize

comctl32

ImageList_GetImageCount
ImageList_Add
ImageList_AddMasked
ImageList_Copy
ImageList_DragShowNolock
ImageList_EndDrag
InitCommonControls
_TrackMouseEvent
ImageList_DragEnter
ImageList_Create
ImageList_Replace
ImageList_DrawIndirect
ImageList_Remove
ImageList_Destroy
ImageList_DrawEx
ImageList_DragMove
ImageList_BeginDrag
ImageList_SetImageCount
ImageList_DragLeave

psapi

EnumProcessModules

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 708KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 374KB - Virtual size: 373KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 47KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

602eb8c5dbe89a9bad49aae2fe99d808

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

advapi32

gdi32

version

shell32

ole32

comctl32

psapi

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.data Size: 708KB - Virtual size: 708KB

.rdata Size: 374KB - Virtual size: 373KB

.bss Size: - Virtual size: 47KB

.CRT Size: 512B - Virtual size: 12B

.idata Size: 12KB - Virtual size: 12KB

.rsrc Size: 130KB - Virtual size: 129KB

.reloc Size: 132KB - Virtual size: 132KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.data
Size: 708KB - Virtual size: 708KB

.rdata
Size: 374KB - Virtual size: 373KB

.bss
Size: - Virtual size: 47KB

.CRT
Size: 512B - Virtual size: 12B

.idata
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 130KB - Virtual size: 129KB

.reloc
Size: 132KB - Virtual size: 132KB