Corpseparty[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Corpseparty.exe
Size

3.5MB
MD5

dd06b515b32b926f9c8d0db75d5843c9
SHA1

ee32dfd1d922bfb1d5eaf46facb883725b82dbd7
SHA256

584663a808aae00ce27f9ecad3080bae2cff2dd40b43675f985dd7852f3ea7d9
SHA512

01a306c9f3e02bf0c81cb54345458ed7974c0cd2288a141a03cc6550c6b089054efb89ee63b255e22302aca4e0fd0c1c5ba310ffd6834f79a94b1cddfb420a80
SSDEEP

98304:k5fPvH+SFWMXkxxRAosv7DlcMoT/gxM6VRQ/ULR:k5fPvH+SFWMXsRAosv7DlcMoT/ZqQ/U1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Corpseparty.exe

Files

Corpseparty.exe
.exe windows:5 windows x86 arch:x86

44a0f5d1b9b92fde8bb7b63728e44c51

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetCurrentProcessId
CloseHandle
GetCurrentThreadId
GetLastError
LocalAlloc
GetProcAddress
FreeLibrary
InterlockedExchange
LoadLibraryA
RaiseException
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ResumeThread
SetThreadPriority
CreateThread
lstrcpyW
LoadLibraryW
DeleteFileW
ExitThread
lstrcmpiW
lstrlenW
WriteFile
CreateFileA
SetFilePointer
CreateEventW
ResetEvent
WaitForSingleObject
GetOEMCP
QueryPerformanceCounter
QueryPerformanceFrequency
GlobalMemoryStatus
LockResource
LoadResource
SizeofResource
FindResourceW
SetEvent
lstrcatW
GetTempPathW
GlobalUnlock
GlobalLock
GlobalSize
GlobalFree
GlobalAlloc
lstrcmpW
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitProcess
GetVersionExW
GetSystemInfo
GetLocalTime
lstrlenA
GetCurrentDirectoryW
SetCurrentDirectoryW
GetTempFileNameW
ReadFile
GetExitCodeThread
GetFileSize
SuspendThread
GetCurrentThread
HeapFree
CreateFileW
HeapAlloc
HeapReAlloc
GetTickCount
lstrcpynW
VirtualAlloc
VirtualFree
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetDriveTypeW
GetDriveTypeA
GetSystemTimeAsFileTime
GetCPInfo
CreateDirectoryW
GetCommandLineA
GetStartupInfoA
RtlUnwind
LCMapStringW
LCMapStringA
GetStringTypeW
HeapCreate
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetFullPathNameW
GetFileInformationByHandle
PeekNamedPipe
GetFileType
GetCurrentDirectoryA
GetACP
IsValidCodePage
SetHandleCount
GetStdHandle
HeapSize
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetStringTypeA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleHandleA
SetStdHandle
SetEndOfFile
GetTimeZoneInformation
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetModuleFileNameW
GetCurrentProcess
IsDebuggerPresent
VerifyVersionInfoW
GetModuleHandleW
VerSetConditionMask
FindNextFileW
FindClose
MultiByteToWideChar
WideCharToMultiByte
OutputDebugStringW
FindFirstFileW
GetPrivateProfileIntW
GetProcessHeap
WritePrivateProfileStringW

user32

DefWindowProcW
PostQuitMessage
DestroyWindow
EndPaint
FillRect
BeginPaint
ShowCursor
DrawMenuBar
SendMessageW
GetWindowRect
SetWindowRgn
SetMenu
SetActiveWindow
SetWindowPos
SetWindowTextW
SetClassLongW
CallNextHookEx
GetAsyncKeyState
SetWindowsHookExW
ClipCursor
GetClipboardData
CloseClipboard
IsClipboardFormatAvailable
OpenClipboard
SetClipboardData
EmptyClipboard
CreateMenu
DestroyMenu
DestroyAcceleratorTable
CreateAcceleratorTableW
CopyAcceleratorTableW
InsertMenuItemW
GetMenuItemCount
DeleteMenu
EnableMenuItem
SetMenuItemInfoW
LoadMenuW
GetMenuItemInfoW
GetSubMenu
UnhookWindowsHookEx
SetCursorPos
MoveWindow
ChangeDisplaySettingsW
SetForegroundWindow
AttachThreadInput
GetWindowThreadProcessId
GetForegroundWindow
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
IsDialogMessageW
PeekMessageW
SetTimer
KillTimer
EnumDisplaySettingsW
GetSystemMetrics
GetDC
ReleaseDC
SystemParametersInfoW
FindWindowW
GetWindowLongW
LoadCursorW
RegisterClassExW
AdjustWindowRectEx
CreateWindowExW
ShowWindow
UpdateWindow
SetCursor
ClientToScreen
BringWindowToTop
GetKeyboardState
GetClientRect
GetDesktopWindow
SetWindowLongW
PostMessageW
LoadIconW
MessageBoxW
GetCursorPos
UnregisterClassW

dbghelp

MiniDumpWriteDump

gdi32

GetObjectW
GetDeviceCaps
DeleteObject
CreateSolidBrush
CombineRgn
CreateRectRgn
DeleteDC
SelectObject
CreateCompatibleDC
CreateDIBSection
EnumFontFamiliesExW
GetGlyphOutlineW
GetTextMetricsW
CreateFontW
TextOutW
GetTextExtentPoint32W
SetBkMode
GetStockObject
SetBkColor
SetTextColor
SetDIBitsToDevice
StretchDIBits

shell32

DragQueryFileW
DragAcceptFiles
DragFinish

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 323KB - Virtual size: 323KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 29.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 187KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44a0f5d1b9b92fde8bb7b63728e44c51

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

dbghelp

gdi32

shell32

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.rdata Size: 323KB - Virtual size: 323KB

.data Size: 92KB - Virtual size: 29.0MB

.rsrc Size: 110KB - Virtual size: 110KB

.reloc Size: 187KB - Virtual size: 187KB

.text
Size: 2.8MB - Virtual size: 2.8MB

.rdata
Size: 323KB - Virtual size: 323KB

.data
Size: 92KB - Virtual size: 29.0MB

.rsrc
Size: 110KB - Virtual size: 110KB

.reloc
Size: 187KB - Virtual size: 187KB