48c37b4caaaff2541673e8352825517c

Sharing

Copy URL Twitter E-mail

General

Target

48c37b4caaaff2541673e8352825517c
Size

320KB
MD5

48c37b4caaaff2541673e8352825517c
SHA1

361d16049c2081e5bed8258759bccae2428cc2a0
SHA256

c1907392d42695c59b9bf73f858d4240b54667a9b08393843efb3f74b74bf8cd
SHA512

b21672f9d395e45958b6075dfed285e37c03a6df3e66c65601a4a5142ff094b566facf81cc26a967a4753a503a88fa72fa80d5b4570385d73aef1aff1bda5999
SSDEEP

6144:UFZjahzPRAm6u6FYhz0ArbXardcQo799/:UFgzPB16FYCAyJFqr/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48c37b4caaaff2541673e8352825517c

Files

48c37b4caaaff2541673e8352825517c
.exe windows:4 windows x86 arch:x86

02dfc807179501ea5b5012261375ea19

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
GetStdHandle
GetEnvironmentStringsW
GetFileType
GetEnvironmentVariableA
FreeEnvironmentStringsA
GetEnvironmentStrings
HeapCreate
FreeEnvironmentStringsW
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
GetVersionExA
HeapDestroy
VirtualFree
UnhandledExceptionFilter
LCMapStringW
InterlockedIncrement
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetProcAddress
GlobalLock
GlobalUnlock
FindResourceA
LCMapStringA
HeapSize
HeapReAlloc
GetACP
GetSystemTime
GetTimeZoneInformation
TerminateProcess
ExitThread
CreateThread
RaiseException
HeapAlloc
HeapFree
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
FlushFileBuffers
SetFilePointer
GetCurrentProcess
SetErrorMode
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
GetProcessVersion
FindResourceExA
SizeofResource
GetCurrentThread
LoadResource
LockResource
CreateEventA
GlobalAlloc
LoadLibraryA
GlobalFree
lstrcmpA
ResumeThread
SuspendThread
SetThreadPriority
MultiByteToWideChar
SetEvent
WaitForSingleObject
InterlockedDecrement
WideCharToMultiByte
lstrlenA
MulDiv
WritePrivateProfileStringA
SetLastError
lstrcatA
GetCurrentThreadId
IsBadReadPtr
IsBadCodePtr
FreeLibrary
ReadFile
GetLastError
CreateFileA
LocalFree
FormatMessageA
WriteFile
CloseHandle
CreateMailslotA
Sleep
GetComputerNameA
GetProfileStringA
GetLocalTime
lstrcpynA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetVersion
GetModuleFileNameA
GetModuleHandleA

user32

MapWindowPoints
PostQuitMessage
InflateRect
DestroyMenu
LoadStringA
GetSysColorBrush
GetClassNameA
GetDesktopWindow
ReleaseCapture
WindowFromPoint
SetRect
SetCapture
GetDCEx
LockWindowUpdate
SetParent
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetTopWindow
IsChild
WinHelpA
RegisterClassA
GetMenu
GetMenuItemCount
GetWindowTextLengthA
GetWindowTextA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
SendDlgItemMessageA
TranslateMessage
GetMessageTime
GetForegroundWindow
SetWindowLongA
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetMessageA
SetRectEmpty
CreateDialogIndirectParamA
DestroyWindow
MapDialogRect
ShowWindow
GetCapture
SetActiveWindow
GetAsyncKeyState
GetWindowLongA
GetFocus
SetFocus
GetDlgItem
IsWindowEnabled
GetParent
LoadMenuA
GetSubMenu
SetMenuDefaultItem
TrackPopupMenu
GetMenuItemID
IsWindow
IsWindowVisible
FlashWindow
MessageBeep
GetActiveWindow
GetDlgCtrlID
SetWindowPos
TranslateAcceleratorA
GetSystemMetrics
DrawIcon
GetSystemMenu
DeleteMenu
LoadIconA
LoadAcceleratorsA
FindWindowA
GetLastActivePopup
IsIconic
SetForegroundWindow
PostMessageA
MessageBoxA
UpdateWindow
RedrawWindow
GetSysColor
SendMessageA
GetWindow
OffsetRect
EnableWindow
GetWindowRect
GetCursorPos
ScreenToClient
TabbedTextOutA
GetWindowDC
ReleaseDC
GetDC
PtInRect
SetCursor
InvalidateRect
SetTimer
BeginPaint
LoadBitmapA
KillTimer
ClientToScreen
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
ValidateRect
wvsprintfA
GrayStringA
DrawTextA
GetNextDlgTabItem
EndDialog
CallWindowProcA
RemovePropA
GetMessagePos
GetClientRect
FillRect
EndPaint
LoadCursorA
GetClassInfoA
wsprintfA
DefWindowProcA
GetKeyState
CopyRect
HideCaret
ShowCaret
DefDlgProcA
UnregisterClassA
IsWindowUnicode
DrawFocusRect
ExcludeUpdateRgn
CharNextA

gdi32

DPtoLP
CreateFontA
CreateCompatibleDC
CreateFontIndirectA
GetStockObject
DeleteObject
CreateCompatibleBitmap
CreateSolidBrush
GetClipBox
SetTextColor
CreateBitmap
DeleteDC
SetBkColor
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
CreateRectRgn
GetDeviceCaps
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
StretchDIBits
GetCharWidthA
PatBlt
CreateRectRgnIndirect
SetRectRgn
CombineRgn
BitBlt
GetTextMetricsA
EnumFontFamiliesExA
CreateDIBitmap
StretchBlt
GetObjectA
GetTextExtentPointA
SelectObject

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
QueryServiceStatus
OpenSCManagerA
OpenServiceA
CloseServiceHandle
ControlService
RegOpenKeyExA
RegQueryValueExA

shell32

Shell_NotifyIconA
SHBrowseForFolderA
SHGetMalloc
SHGetDesktopFolder
SHGetSpecialFolderLocation
ShellExecuteA

comctl32

CreatePropertySheetPageA
DestroyPropertySheetPage
ord17
PropertySheetA
ImageList_Create
ImageList_Destroy
ImageList_AddMasked
ImageList_Draw
ImageList_GetImageInfo

ole32

OleDuplicateData
ReleaseStgMedium
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleSetContainedObject
RevokeDragDrop
OleCreateStaticFromData

Sections

.text
Size: 168KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02dfc807179501ea5b5012261375ea19

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

ole32

Sections

.text Size: 168KB - Virtual size: 166KB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 24KB - Virtual size: 38KB

.rsrc Size: 80KB - Virtual size: 79KB

.text
Size: 168KB - Virtual size: 166KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 24KB - Virtual size: 38KB

.rsrc
Size: 80KB - Virtual size: 79KB