477e59ee70066763bf3844d5cb2d75b0

Sharing

Copy URL

Twitter E-mail

General

Target

477e59ee70066763bf3844d5cb2d75b0
Size

144KB
MD5

477e59ee70066763bf3844d5cb2d75b0
SHA1

6ee6d9fcd91cb6c5f75952f200bb487c587c9feb
SHA256

5fd317efd24c2d9d92ab73464d5ce1be14117b3c4ffbfeeac7e4732997883b02
SHA512

1cd0727ebc5d3f6214c7580257c7d369eb91e7d40e648f884ed4958496d58e4b017c0ec9425610de69c3013433909225858d78223b22f1980e925bf04be815cd
SSDEEP

3072:2543TK/dBHV/amnBUEENYnueELkwiMYKypRf6NyRUuCuTXa3:DTKVBLnBUEFnFEliHKmRf7a3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
477e59ee70066763bf3844d5cb2d75b0

Files

477e59ee70066763bf3844d5cb2d75b0
.exe windows:5 windows x86 arch:x86

df1d64c54b6d09ee5261e5dcb7aef6d0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetWindowExtEx
GetObjectType
SetMapMode
CreateDCW
ArcTo
SetBkColor
SetViewportOrgEx
CreateHatchBrush
DeleteDC
SetTextColor
SelectPalette
MoveToEx
ModifyWorldTransform
SetWindowOrgEx
PolyDraw
SetTextJustification
PolyBezierTo
ExtCreatePen
CreatePen
SelectObject
GetDeviceCaps
DeleteObject
OffsetWindowOrgEx
OffsetViewportOrgEx
GetCurrentPositionEx
SetViewportExtEx
SelectClipPath
GetClipRgn
LineTo
SetRectRgn
CreateBitmap
StartDocW
SetROP2
GetStockObject
ExcludeClipRect
PlayMetaFileRecord
SelectClipRgn
GetObjectW
GetDCOrgEx
ScaleViewportExtEx
GetMapMode
GetClipBox
TextOutW
CreateSolidBrush
SetWindowExtEx
SetColorAdjustment
GetViewportExtEx
GetTextExtentPoint32W
ExtSelectClipRgn
ScaleWindowExtEx
SetWorldTransform
GetTextMetricsW
GetPixel
SetStretchBltMode
PlayMetaFile
ExtTextOutW
DPtoLP
SetTextCharacterExtra
PtVisible
SetBkMode
SetTextAlign
SetArcDirection
CreateCompatibleDC
SetGraphicsMode
RectVisible
Escape
SetMapperFlags
EnumMetaFile
SetPolyFillMode
PolylineTo
CreateRectRgn
CreateFontIndirectW
IntersectClipRect
SaveDC
BitBlt
CreateDIBPatternBrushPt
RestoreDC
PatBlt
CopyMetaFileW
CreatePatternBrush
CombineRgn
CreateRectRgnIndirect
OffsetClipRgn

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

comdlg32

GetFileTitleW

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

shlwapi

PathFindExtensionW
PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathRemoveExtensionW

kernel32

SetLastError
RtlUnwind
GetConsoleMode
GetStringTypeA
lstrlenA
GetStdHandle
FindResourceW
GetStartupInfoA
GlobalReAlloc
VirtualAlloc
LocalReAlloc
GetLastError
SetCurrentDirectoryW
InterlockedIncrement
CloseHandle
IsDebuggerPresent
GetCommandLineW
LocalFileTimeToFileTime
GetShortPathNameW
UnhandledExceptionFilter
ResumeThread
FreeResource
GetPrivateProfileIntW
DeleteCriticalSection
GetFileAttributesW
TlsFree
SetErrorMode
EnumSystemLocalesA
CreateThread
LoadLibraryA
LocalFree
GetThreadLocale
SetConsoleCtrlHandler
DeleteFileW
FreeEnvironmentStringsA
GlobalFindAtomW
LockResource
GetStringTypeW
GetLocaleInfoA
GetFileTime
TerminateProcess
GetVolumeInformationW
GetFileSize
VirtualFree
GetSystemTimeAsFileTime
GlobalDeleteAtom
MultiByteToWideChar
lstrcmpiW
WriteConsoleA
DuplicateHandle
SetFileTime
MulDiv
GetConsoleOutputCP
GlobalGetAtomNameW
CreateFileW
GlobalHandle
GetFullPathNameW
GlobalFree
GetDriveTypeA
WriteFile
HeapFree
GetVersionExA
GetAtomNameW
FormatMessageW
lstrcmpA
GetModuleHandleW
HeapSize
InitializeCriticalSection
GlobalFlags
HeapCreate
GlobalSize
WideCharToMultiByte
ConvertDefaultLocale
FlushFileBuffers
IsValidLocale
CompareStringA
QueryPerformanceCounter
GetEnvironmentStringsW
SystemTimeToFileTime
GetVersionExW
GetPrivateProfileStringW
GetConsoleCP
GetLocaleInfoW
GetTickCount
SetEnvironmentVariableA
SetHandleCount
GetCommandLineA
InterlockedDecrement
GlobalLock
GetModuleFileNameW
GetFileType
SizeofResource
lstrcmpW
FreeEnvironmentStringsW
LCMapStringA
GetTimeFormatA
lstrlenW
GetModuleHandleA
SetFileAttributesW
RaiseException
SetStdHandle
LockFile
lstrcpyA
GetModuleFileNameA
CreateEventW
CreateFileA
GetCurrentThreadId
EnumResourceLanguagesW
SetThreadPriority
FileTimeToSystemTime
FindClose
GlobalUnlock
SetCurrentDirectoryA
GetOEMCP
FreeLibrary
FindNextFileW
ResetEvent
LeaveCriticalSection
CreateProcessW
ExitProcess
WriteConsoleW
WaitForSingleObject
SuspendThread
LoadResource
GetDriveTypeW
TlsSetValue
GetFileAttributesA
ReadFile
GetStringTypeExW
GetSystemInfo
FindFirstFileW
GetCurrentProcess
GetEnvironmentStrings
GetUserDefaultLCID
GetFullPathNameA
SetEndOfFile
GetCurrentProcessId
GetACP
CompareStringW
EnterCriticalSection
TlsGetValue
GlobalAlloc
UnlockFile
GetCurrentThread
LCMapStringW
CopyFileW
TlsAlloc
GetCurrentDirectoryW
GlobalAddAtomW
LocalAlloc
FileTimeToLocalFileTime
WritePrivateProfileStringW
Sleep
GetVersion
SetEvent
HeapAlloc
GetDateFormatA
MoveFileW
IsValidCodePage
InterlockedExchange
SetUnhandledExceptionFilter
GetProcessHeap
GetTimeZoneInformation
GetCurrentDirectoryA
FatalAppExitA
GetProcAddress
LoadLibraryW
HeapDestroy
HeapReAlloc
GetStartupInfoW
ExitThread
SetFilePointer
GetCPInfo

advapi32

RegSetValueExA
RegDeleteValueW
RegQueryValueExW
RegOpenKeyA
RegCreateKeyExW
RegQueryValueW
RegOpenKeyExW
RegCreateKeyA
RegCreateKeyW
RegOpenKeyExA
RegDeleteKeyW
RegNotifyChangeKeyValue
RegSetValueExW
RegEnumKeyW
RegQueryValueExA
RegEnumValueW
RegOpenKeyW
RegSetValueW
RegDeleteKeyA
RegCloseKey

user32

SetWindowPlacement
GetPropW
FindWindowExW
SetWindowsHookExW
GetWindowThreadProcessId
SetTimer
EndDeferWindowPos
GetForegroundWindow
GetDC
RegisterWindowMessageW
LoadCursorW
GetMenuItemCount
EnableWindow
GetMenuCheckMarkDimensions
WinHelpW
GetClientRect
LoadBitmapW
GetSysColor
SetDlgItemInt
DestroyIcon
GetMenuItemInfoW
MessageBoxW
SendDlgItemMessageW
GetKeyState
GetNextDlgTabItem
GetScrollInfo
SetDlgItemTextW
SetMenuItemBitmaps
ClientToScreen
SetCursor
LoadIconW
IsDlgButtonChecked
TrackPopupMenuEx
GetFocus
IsIconic
ScrollWindowEx
ModifyMenuW
IntersectRect
GetClassLongW
SetClassLongW
IsWindowEnabled
GetMessageW
GetWindowLongW
GetMenuState
GetDlgItemInt
EnableMenuItem
EndDialog
InflateRect
SetFocus
SystemParametersInfoW
GetWindowPlacement
KillTimer
EndPaint
LoadImageW
ReleaseDC
OffsetRect
GetClassNameW
GetWindow
IsWindow
GetLastActivePopup
DestroyWindow
BeginPaint
InsertMenuW
AppendMenuW
TabbedTextOutW
DeleteMenu
SetWindowPos
DispatchMessageW
SystemParametersInfoA
MoveWindow
ShowOwnedPopups
PeekMessageW
CreateDialogParamW
MapWindowPoints
AdjustWindowRectEx
GetCapture
GetSubMenu
FillRect
ShowWindow
GetWindowTextW
GetWindowRect
RemovePropW
DrawTextW
SendDlgItemMessageA
GetDlgItemTextW
CharUpperW
IsChild
GetDialogBaseUnits
ScrollWindow
GetWindowDC
GrayStringW
CheckDlgButton
GetMenuStringW
GetMessageTime
CreateDialogIndirectParamW
RegisterClassW
GetDlgItem
DrawTextExW
CopyRect
GetWindowTextLengthW
SetForegroundWindow
EnumThreadWindows
GetSystemMetrics
SetScrollInfo
WaitForInputIdle
LoadMenuW
PtInRect
ValidateRect
GetClassInfoExW
SetScrollRange
UnregisterClassA
GetActiveWindow
DefWindowProcW
IsDialogMessageW
GetParent
PostQuitMessage
SetActiveWindow
DeferWindowPos
DestroyMenu
UpdateWindow
SetWindowLongW
GetClassInfoW
LoadStringW
TranslateMessage
TrackPopupMenu
GetMenuItemID
IsWindowVisible
GetMenu
ScreenToClient
RegisterClassExW
ShowScrollBar
GetMessagePos
GetTopWindow
GetSysColorBrush
SendMessageW
BeginDeferWindowPos
GetCursorPos
CheckRadioButton
PostMessageW
FindWindowW
CheckMenuItem
GetScrollRange
SetPropW
UnhookWindowsHookEx
CreateWindowExW
CallNextHookEx
GetDesktopWindow
SetWindowTextW
SetScrollPos
GetScrollPos
EqualRect
GetDlgCtrlID
CallWindowProcW
UnregisterClassW
RemoveMenu

comctl32

CreateStatusWindowA

shell32

ExtractIconW
ShellExecuteW
Shell_NotifyIconW
SHGetFileInfoW

ws2_32

WSAGetLastError

Sections

.data
Size: 107KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 473B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

df1d64c54b6d09ee5261e5dcb7aef6d0

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

oleacc

comdlg32

version

shlwapi

kernel32

advapi32

user32

comctl32

shell32

ws2_32

Sections

.data Size: 107KB - Virtual size: 112KB

.rsrc Size: 22KB - Virtual size: 22KB

.text Size: 512B - Virtual size: 473B

.rdata Size: 13KB - Virtual size: 12KB

.data
Size: 107KB - Virtual size: 112KB

.rsrc
Size: 22KB - Virtual size: 22KB

.text
Size: 512B - Virtual size: 473B

.rdata
Size: 13KB - Virtual size: 12KB