50148d7adcc284e084f4249e13833a6e

Sharing

Copy URL

Twitter E-mail

General

Target

50148d7adcc284e084f4249e13833a6e
Size

403KB
MD5

50148d7adcc284e084f4249e13833a6e
SHA1

90aa7133f8288dab6942a3ff39a4ba6ea3e04d82
SHA256

e745657f412cf544bbd70542e25bd71b72fa2dcf542faf6f0dc46aa93f9edb7a
SHA512

15859907fd9f7fa89414e26d69b8e6e0ea72d49cdcc8446a8c2d8f222a084bfd673039aee9d8956ab068fb7c9bd4115c066013f77be167920ff8c48a9737b0d3
SSDEEP

6144:pFRTj3VmtNU6TY2/4srex58cylnCaoPM5AReH3egDr:pPTjEU6TY29reedx5FHv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
50148d7adcc284e084f4249e13833a6e

Files

50148d7adcc284e084f4249e13833a6e
.dll windows:4 windows x86 arch:x86

09ee18ce55c44c341e17a9140be61ead

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wininet

InternetErrorDlg
HttpAddRequestHeadersW

ws2_32

WSAStartup
WSACleanup

comdlg32

ChooseColorW
CommDlgExtendedError
GetFileTitleW
GetOpenFileNameW
PrintDlgW
GetSaveFileNameW

msvfw32

ICCompressorFree
ICCompressorChoose

gdi32

PolyBezierTo
StartDocW
SetWinMetaFileBits
SetTextColor
SetTextAlign
SetStretchBltMode
SetRectRgn
SetPolyFillMode
SetPixelV
UnrealizeObject
TranslateCharsetInfo
TextOutW
StrokePath
StretchDIBits
StretchBlt
BeginPath
BitBlt
CloseEnhMetaFile
CloseFigure
CloseMetaFile
CombineRgn
CreateBitmap
CreateBitmapIndirect
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBPatternBrushPt
CreateDIBSection
CreateDIBitmap
CreateEnhMetaFileW
CreateFontIndirectW
CreateHatchBrush
CreateMetaFileW
CreatePalette
CreatePatternBrush
CreatePen
CreatePolygonRgn
CreateRectRgn
CreateRectRgnIndirect
CreateSolidBrush
DPtoLP
DeleteDC
DeleteEnhMetaFile
DeleteMetaFile
DeleteObject
Ellipse
EndDoc
EndPage
EndPath
EnumEnhMetaFile
EnumFontFamiliesExW
EnumFontFamiliesW
Escape
ExtCreatePen
ExtTextOutW
FillPath
FillRgn
FrameRgn
GdiFlush
GetBitmapBits
GetBkColor
GetBkMode
GetCharWidthW
GetClipBox
GetClipRgn
GetCurrentObject
GetDIBits
GetDeviceCaps
GetEnhMetaFileHeader
GetEnhMetaFileW
GetFontData
GetGlyphOutlineW
GetKerningPairsW
GetMapMode
GetMetaFileBitsEx
GetNearestColor
GetNearestPaletteIndex
GetObjectW
GetOutlineTextMetricsW
GetPaletteEntries
GetPath
GetPixel
GetPolyFillMode
GetStockObject
GetSystemPaletteEntries
GetTextAlign
GetTextCharset
GetTextColor
GetTextExtentExPointW
GetTextExtentPoint32W
GetTextMetricsW
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
GetWorldTransform
IntersectClipRect
LPtoDP
LineTo
MaskBlt
ModifyWorldTransform
MoveToEx
OffsetRgn
PaintRgn
PatBlt
PlayEnhMetaFileRecord
SetPixel
PolyPolygon
Polygon
Polyline
PolylineTo
PtVisible
RealizePalette
RectVisible
Rectangle
RestoreDC
RoundRect
SaveDC
SelectClipPath
SelectClipRgn
SelectObject
SelectPalette
SetBitmapBits
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBits
SetDIBitsToDevice
SetMapMode
StartPage

winmm

timeBeginPeriod
mmioAscend
mmioClose
mmioCreateChunk
mmioDescend
mmioOpenA
mmioOpenW
mmioRead
mmioWrite
waveOutWrite
waveOutUnprepareHeader
waveOutReset
waveOutPrepareHeader
waveOutOpen
waveOutGetDevCapsW
waveOutClose
timeSetEvent
timeKillEvent
timeGetTime
timeGetDevCaps
timeEndPeriod

oleaut32

SysAllocString
VariantClear
SysFreeString

shell32

SHChangeNotify
SHBrowseForFolderW
SHCreateDirectoryExW
DragFinish
DragAcceptFiles
CommandLineToArgvW
SHGetDesktopFolder
SHGetFolderPathW
SHGetSpecialFolderPathA
SHGetMalloc
ShellExecuteA
ShellExecuteW
DragQueryFileW

shlwapi

PathFileExistsW
SHDeleteKeyW

ole32

CoTaskMemAlloc
StgIsStorageFile
CoInitialize
CoFreeUnusedLibraries
CoCreateInstance
OleDraw
ReleaseStgMedium
StgCreateDocfile
CoTaskMemFree
StgOpenStorage
CoUninitialize

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

imm32

ImmGetCompositionStringW
ImmGetContext
ImmGetVirtualKey
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionFontW
ImmSetCompositionWindow

kernel32

GetVersionExW
GlobalFree
GlobalHandle
TerminateProcess
TlsGetValue
VirtualAlloc
VirtualFree
SystemTimeToFileTime
SizeofResource
SetThreadPriority
SetLastError
SetFilePointer
SetFileAttributesW
SetEvent
SetErrorMode
SetEndOfFile
ResumeThread
ResetEvent
RemoveDirectoryW
ReleaseSemaphore
ReleaseMutex
RaiseException
QueryPerformanceFrequency
OutputDebugStringW
OutputDebugStringA
OpenProcess
OpenEventW
MultiByteToWideChar
MulDiv
GetVersionExA
GetVersion
GetTimeFormatW
GetTickCount
GetThreadPriority
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemTime
GetSystemInfo
GetSystemDirectoryA
GetSystemDefaultLangID
GetStdHandle
GetStartupInfoW
GetProfileStringW
GetProcessHeap
GetProcAddress
GetModuleHandleW
GetModuleHandleA
MoveFileW
MapViewOfFile
LockResource
LocalFree
LocalFileTimeToFileTime
LoadResource
LoadLibraryW
LoadLibraryA
LeaveCriticalSection
IsDBCSLeadByte
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapFree
HeapAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
WideCharToMultiByte
WriteFile
_llseek
_lread
lstrcmpW
lstrcmpiW
lstrcpyW
lstrlenW
CloseHandle
CompareFileTime
CompareStringW
CopyFileW
CreateDirectoryW
CreateEventA
CreateEventW
CreateFileA
CreateFileMappingW
CreateFileW
CreateMailslotA
CreateMutexA
CreateProcessW
CreateSemaphoreW
CreateThread
DebugBreak
DeleteCriticalSection
DeleteFileA
DeleteFileW
DosDateTimeToFileTime
DuplicateHandle
EnterCriticalSection
ExitProcess
ExitThread
FatalAppExitA
FileTimeToDosDateTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindFirstFileExW
FindFirstFileW
FindNextFileW
FindResourceW
FlushFileBuffers
FormatMessageA
FormatMessageW
FreeLibrary
GetACP
GetCommandLineW
GetComputerNameExA
GetCurrentDirectoryW
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetDiskFreeSpaceW
GetExitCodeProcess
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileSize
GetFileTime
GetFullPathNameA
GetLastError
GetLocaleInfoA
GetLocaleInfoW
GetLogicalDrives
GetMailslotInfo
GetModuleFileNameA
GetModuleFileNameW
GlobalLock

Sections

.text
Size: 296KB - Virtual size: 300KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09ee18ce55c44c341e17a9140be61ead

Headers

File Characteristics

Imports

wininet

ws2_32

comdlg32

msvfw32

gdi32

winmm

oleaut32

shell32

shlwapi

ole32

version

imm32

kernel32

Sections

.text Size: 296KB - Virtual size: 300KB

.rdata Size: 57KB - Virtual size: 60KB

.data Size: 14KB - Virtual size: 16KB

.idata Size: 9KB - Virtual size: 12KB

.rsrc Size: 25KB - Virtual size: 28KB

.text
Size: 296KB - Virtual size: 300KB

.rdata
Size: 57KB - Virtual size: 60KB

.data
Size: 14KB - Virtual size: 16KB

.idata
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 25KB - Virtual size: 28KB