51b954e51c74144ae2983c119396c922

Sharing

Copy URL Twitter E-mail

General

Target

51b954e51c74144ae2983c119396c922
Size

670KB
MD5

51b954e51c74144ae2983c119396c922
SHA1

b4e1b9a248382f84fd92b1cfca64e6d9124b500e
SHA256

e6d7f61b51db5d1ec47fbc83aa498f6949b52556f970918e41a2ba9bb59d30c1
SHA512

e37838f29ac018e37f94d05c7c7944e47842da53776db1f3497acff86fb5cd3f4f0aaf95f367cf2326d6c2ce995f56471591aed1c871ff5352d095455707c7f3
SSDEEP

6144:rCTSCbT/4Uvj3yAFCn83CrM4CpPoDCZHz5lDoOKNeBLG2b2y4Olrugpcb1BinQL:hCbcUvmAFCnRzePoDCZHz5pa/FpuQL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51b954e51c74144ae2983c119396c922

Files

51b954e51c74144ae2983c119396c922
.exe windows:4 windows x86 arch:x86

64f0688e80ded1f9bb60c39a6694dbc3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

msvfw32

MCIWndCreateA

kernel32

TerminateProcess
HeapSize
GetCPInfo
ExitProcess
HeapReAlloc
GetOEMCP
GetACP
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
UnhandledExceptionFilter
HeapDestroy
HeapCreate
GetFileType
GetProfileStringA
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
HeapAlloc
RaiseException
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
CloseHandle
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
MulDiv
GetCurrentThreadId
GlobalFree
LockResource
FindResourceA
LoadResource
lstrcatA
lstrcpyA
lstrlenA
GlobalLock
lstrcpynA
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
GetVersion
HeapFree
GetModuleHandleA
GetCommandLineA
GetStartupInfoA
GetTimeZoneInformation
GetLocalTime
GetSystemTime
RtlUnwind
FileTimeToSystemTime
GetTickCount
FileTimeToLocalFileTime
SetErrorMode
GetFileSize
SystemTimeToFileTime
LocalFileTimeToFileTime
SizeofResource
GetCurrentDirectoryA
GetVersionExA
GlobalFlags
SetLastError
GetProcessVersion
TlsSetValue
TlsGetValue
LocalReAlloc
LeaveCriticalSection
EnterCriticalSection
GlobalReAlloc
DeleteCriticalSection
GlobalHandle
LocalAlloc
TlsAlloc
InitializeCriticalSection
MultiByteToWideChar
FormatMessageA
LocalFree
GetModuleFileNameA
WideCharToMultiByte
InterlockedIncrement
GetStringTypeExA
GetShortPathNameA
GetThreadLocale
FindClose
GetVolumeInformationA
FindFirstFileA
FreeLibrary
LoadLibraryA
GetProcAddress
SetEndOfFile
DeleteFileA
MoveFileA
FlushFileBuffers
UnlockFile
LockFile
ReadFile
SetFilePointer
WriteFile
DuplicateHandle
CreateFileA
GetCurrentProcess
GetDiskFreeSpaceA
GetLastError
InterlockedDecrement
GetFileTime
GetFullPathNameA
GetTempFileNameA
WritePrivateProfileStringA
SetFileTime
GetFileAttributesA
GetPrivateProfileStringA
GetPrivateProfileIntA
VirtualFree
VirtualAlloc

user32

MessageBeep
WindowFromPoint
InsertMenuA
DeleteMenu
GetMenuStringA
GetNextDlgGroupItem
CharNextA
CopyAcceleratorTableA
InflateRect
RegisterClipboardFormatA
DestroyIcon
PostThreadMessageA
SendDlgItemMessageA
SystemParametersInfoA
MapWindowPoints
GetSysColor
DispatchMessageA
AdjustWindowRectEx
DeferWindowPos
EndDeferWindowPos
BeginDeferWindowPos
ScrollWindow
SetScrollInfo
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
RegisterClassA
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
SetPropA
UnhookWindowsHookEx
GetForegroundWindow
SetForegroundWindow
GetPropA
CallWindowProcA
RemovePropA
ScreenToClient
GetMessagePos
GetWindowRect
LoadStringA
OffsetRect
ValidateRect
TranslateMessage
GetLastActivePopup
BringWindowToTop
IsWindowVisible
IsIconic
GetFocus
CopyRect
GetDlgItem
SetWindowLongA
wsprintfA
GetKeyState
SetWindowPos
GetDlgCtrlID
GetMenuItemCount
GetSubMenu
GetMenuItemID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
GetMenu
LoadIconA
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
GetParent
GetActiveWindow
ShowWindow
GetWindowLongA
IsWindow
GetDesktopWindow
GetWindow
IsWindowEnabled
PeekMessageA
PostMessageA
ClientToScreen
PtInRect
GetClassNameA
CharUpperA
MapDialogRect
GetMessageA
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
GetCapture
KillTimer
UnionRect
SetTimer
LoadCursorA
SetCursor
SetCapture
ReleaseCapture
InvalidateRect
GetClientRect
LoadBitmapA
GetNextDlgTabItem
GetSysColorBrush
EndDialog
GetMessageTime
GetCursorPos
EqualRect
FindWindowA
UpdateWindow
SetRect
IntersectRect
IsRectEmpty
FillRect
EnableWindow
SendMessageA
GetSystemMetrics
MessageBoxA
ShowOwnedPopups
PostQuitMessage
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
CreateDialogIndirectParamA
DestroyWindow
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
UnregisterClassA

gdi32

BitBlt
CreateCompatibleDC
CreateDIBitmap
CreateCompatibleBitmap
CreateBitmap
DeleteDC
SetBkColor
SaveDC
RestoreDC
GetStockObject
SelectObject
SetBkMode
SetMapMode
SetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetObjectA
IntersectClipRect
DeleteObject
GetDeviceCaps
GetWindowExtEx
GetViewportExtEx
CreateSolidBrush
PtVisible
TextOutA
ExtTextOutA
RectVisible
GetTextExtentPointA
Escape
LPtoDP
DPtoLP
GetBkColor
PatBlt
GetTextColor
GetMapMode
SetTextColor

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

SetFileSecurityA
RegDeleteKeyA
RegSetValueA
RegQueryValueA
RegCloseKey
RegEnumKeyA
RegOpenKeyA
GetFileSecurityA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyA

shell32

DragQueryFileA
SHGetFileInfoA
DragFinish
ExtractIconA

comctl32

ImageList_Destroy
ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoGetClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree

oleaut32

SysAllocStringLen
SysFreeString
OleCreateFontIndirect
VariantClear
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringLen

Sections

.text
Size: 203KB - Virtual size: 203KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 364KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MMM
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

64f0688e80ded1f9bb60c39a6694dbc3

Headers

File Characteristics

Imports

winmm

msvfw32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

oleaut32

Sections

.text Size: 203KB - Virtual size: 203KB

.rdata Size: 43KB - Virtual size: 43KB

.data Size: 20KB - Virtual size: 36KB

.idata Size: 9KB - Virtual size: 9KB

.rsrc Size: 364KB - Virtual size: 364KB

.MMM Size: 28KB - Virtual size: 32KB

.text
Size: 203KB - Virtual size: 203KB

.rdata
Size: 43KB - Virtual size: 43KB

.data
Size: 20KB - Virtual size: 36KB

.idata
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 364KB - Virtual size: 364KB

.MMM
Size: 28KB - Virtual size: 32KB