Install_0007[.]exe

Resubmissions

12-01-2024 05:54

240112-gl9mvafgep 8

12-01-2024 05:48

240112-ghxtwaffbm 8

Sharing

Copy URL

Twitter E-mail

General

Target

Install_0007.exe
Size

31.8MB
MD5

70c8852301ccccd2f56d33801d8f3b35
SHA1

5ef8f07364aed4d8eed395967bcf9371a00e02e1
SHA256

1bf09c9be57c97e86edd4653f67007599bc4c0a414e71b2535e63170a2c4966e
SHA512

5ea7467f2cedee41a5166864be9ee0aa795f9671136fcc8a083c954e7f3915087b2a2f34817147af66647632964459d297fdc6fb17b7be47004a419dd032b2ec
SSDEEP

393216:vQIk+HbEIT6cbhz7897ewrqrFl8EOIVtYI6ISdAUF90YUEHDnWs9U+npr5ZaZJu5:vQRQbhns7e3rnxtE1XXNvxqLF7W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Install_0007.exe

Files

Install_0007.exe
.exe windows:4 windows x86 arch:x86

ab05f1af968b88c3ef645447529f426d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoA
RaiseException
SetLastError
LockResource
GetModuleFileNameA
GlobalSize
LocalFree
GetUserDefaultLCID
GetLastError
GlobalReAlloc
GetExitCodeThread
GetOEMCP
VirtualAlloc
GetCurrentProcessId
LeaveCriticalSection
GetCurrentDirectoryW
FreeResource
FindClose
SetEndOfFile
OpenThread
GlobalDeleteAtom
EnumCalendarInfoA
InitializeCriticalSection
PeekNamedPipe
GetTimeZoneInformation
GetDriveTypeA
GetExitCodeProcess
GetLocalTime
GlobalLock
CompareStringA
HeapAlloc
FormatMessageW
GetVersionExA
CreateFileA
GlobalAddAtomA
FreeLibrary
GetConsoleOutputCP
CompareStringW
ReadProcessMemory
FindFirstFileA
LoadResource
FindResourceExA
SuspendThread
Sleep
FormatMessageA
GlobalUnlock
GetFullPathNameW
GetTickCount64
ResetEvent
Process32NextW
CreateFileW
Process32FirstW
GetACP
GetDateFormatW
CreateEventA
FindNextFileW
VirtualFree
EnumResourceTypesA
GlobalAlloc
GetCurrentThread
GetConsoleMode
LocalAlloc
GetLocaleInfoA
GetCurrentThreadId
WriteFile
GetCurrentProcess
CreateToolhelp32Snapshot
HeapFree
WaitForSingleObject
EnumResourceNamesA
GetModuleHandleA
FindNextFileA
SetThreadLocale
EnumResourceLanguagesA
FreeEnvironmentStringsW
GetTickCount
TlsAlloc
GetWindowsDirectoryA
TryEnterCriticalSection
ReadFile
GetDateFormatA
SetThreadPriority
GetCommandLineW
TerminateThread
SetEvent
MulDiv
RtlUnwind
GetModuleFileNameW
CreateProcessW
CreateMutexA
ExitProcess
CloseHandle
GetProcessHeap
LoadLibraryA
GetStdHandle
WideCharToMultiByte
TlsGetValue
GetConsoleCP
GetLocaleInfoW
VirtualProtect
DeleteCriticalSection
GetThreadLocale
CreateThread
GetCPInfo
GetEnvironmentStringsW
DeviceIoControl
GetProcAddress
FindFirstFileExW
EnterCriticalSection
ResumeThread
FileTimeToLocalFileTime
LoadLibraryW
IsBadReadPtr
GetCommandLineA
SizeofResource
FindResourceA
GetThreadPriority
GetFileAttributesW
MultiByteToWideChar
GetFileSize
ExitThread
GetSystemInfo
TlsSetValue
CreateDirectoryW
MoveFileW
IsDebuggerPresent
SetFilePointer
FileTimeToDosDateTime

oleaut32

VariantChangeTypeEx
VariantClear
SafeArrayGetLBound
SysAllocStringLen
VariantCopy
SafeArrayUnaccessData
SafeArrayPutElement
SafeArrayRedim
SysReAllocStringLen
SafeArrayPtrOfIndex
SafeArrayCreate
SafeArrayAccessData
VariantInit
SysFreeString
SafeArrayGetUBound
SafeArrayGetElement

user32

GetDoubleClickTime
GetWindowThreadProcessId
SetWindowPlacement
ShowOwnedPopups
SetParent
GetClassInfoA
GetClipboardData
BeginDeferWindowPos
ChildWindowFromPointEx
GetForegroundWindow
GetMenuItemInfoW
IsWindow
FindWindowExW
GetDesktopWindow
IsMenu
AdjustWindowRectEx
IsZoomed
GetFocus
KillTimer
GetClassInfoW
SwitchToThisWindow
CharLowerBuffW
DrawTextW
ReleaseDC
ClientToScreen
PeekMessageA
TranslateMDISysAccel
RegisterClassA
CloseClipboard
EndDeferWindowPos
CharUpperA
DefWindowProcA
OpenClipboard
DefWindowProcW
ScrollWindowEx
HideCaret
SetClassLongA
DrawFrameControl
TranslateMessage
EnumClipboardFormats
LoadIconA
GetScrollInfo
InsertMenuItemW
GetMenuItemInfoA
GetClassLongA
GetSubMenu
DrawMenuBar
CharUpperBuffA
SetRect
MessageBeep
SetMenu
DrawIconEx
SetActiveWindow
DefMDIChildProcW
IsWindowVisible
LoadCursorA
GetSystemMenu
SetTimer
UpdateWindow
SetScrollInfo
GetUpdateRect
CallNextHookEx
RegisterClipboardFormatA
GetMenu
InflateRect
RemoveMenu
GetLastActivePopup
FlashWindowEx
FrameRect
UnregisterClassA
TrackPopupMenuEx
GetParent
MessageBoxW
PostMessageA
GetWindowTextLengthW
CharLowerA
WindowFromPoint
BeginPaint
PostQuitMessage
SetWindowLongW
GetPropA
GetWindowTextW
SendMessageW
EndPaint
SetSysColors
InvalidateRect
GetClipboardFormatNameA
MessageBoxA
EnableWindow
SetFocus
MsgWaitForMultipleObjects
SendMessageA
SetCursor
SetCaretPos
GetKeyState
WindowFromDC
GetSystemMetrics
LoadImageA
CreateWindowExA
GetActiveWindow
GetTopWindow
LoadBitmapA
GetSysColorBrush
DrawStateW
CharUpperBuffW
IntersectRect
EnableScrollBar
DefFrameProcW
DrawFocusRect
GetWindowDC
ShowWindowAsync
CreateCaret
ReleaseCapture
OffsetRect
CreateMenu
GetMenuItemCount
InvalidateRgn
CallWindowProcW
UnregisterClassW
RemovePropA
CountClipboardFormats
SetCapture
DeferWindowPos
CreateWindowExW
GetMenuItemRect
DestroyCaret
GetWindowLongW
SetWindowTextW
GetCapture
IsIconic
DestroyWindow
EnumThreadWindows
IsWindowEnabled
MapWindowPoints
DestroyCursor
GetClientRect
SystemParametersInfoA
GetWindow
GetDCEx
EnableMenuItem
RedrawWindow
GetWindowPlacement
EmptyClipboard
DeleteMenu
GetCursorPos
DestroyIcon
FillRect
ShowWindow
ShowScrollBar
ScreenToClient
GetCaretPos
GetClassNameA
BringWindowToTop
PeekMessageW
DispatchMessageW
CharLowerBuffA
GetDC
SetForegroundWindow
RegisterClassW
SetPropA
GetSysColor
CharToOemA
SetWindowPos
MoveWindow
IsClipboardFormatAvailable
CallWindowProcA
CopyImage
SetMenuItemInfoW
SetCursorPos
DrawEdge
DestroyMenu
SetWindowRgn
GetWindowRect
CreatePopupMenu
SetClipboardData
ShowCaret
GetWindowLongA
CreateIconIndirect
SetWindowLongA
GetIconInfo
EnumPropsA

advapi32

OpenSCManagerW
GetTokenInformation
RegFlushKey
OpenServiceW
RegEnumKeyExW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegEnumValueW
OpenProcessToken
LookupPrivilegeValueA
RegCreateKeyExW
GetUserNameA
QueryServiceStatus
AdjustTokenPrivileges
RegQueryInfoKeyW

gdi32

SetStretchBltMode
SetViewportOrgEx
OffsetViewportOrgEx
ExtTextOutW
GetMapMode
RestoreDC
GetViewportExtEx
GetDCOrgEx
GetTextMetricsA
Arc
EqualRgn
CreatePenIndirect
DeleteObject
CreateFontIndirectA
SetMapMode
TextOutW
CreateBrushIndirect
GetBitmapBits
SelectClipRgn
CreateDIBitmap
OffsetRgn
RealizePalette
GetTextAlign
PolyBezier
SetROP2
CreateCompatibleBitmap
GetStockObject
RectVisible
PtInRegion
StretchBlt
CreateBitmap
RoundRect
Polyline
SetBkMode
SetPixel
GetPixel
GetDIBits
FillRgn
SetTextCharacterExtra
IntersectClipRect
LineTo
CreateCompatibleDC
SetTextColor
GetDeviceCaps
GetObjectW
Rectangle
GetClipRgn
GetTextExtentPoint32W
GetObjectType
GetBkColor
LPtoDP
Pie
CombineRgn
ExtFloodFill
DeleteDC
GetClipBox
CreateEllipticRgn
GetObjectA
DPtoLP
GetWindowOrgEx
PatBlt
GetRandomRgn
SetBkColor
CreatePolygonRgn
MoveToEx
SetPolyFillMode
CreateRoundRectRgn
CreateFontIndirectW
ExtCreateRegion
GetCurrentObject
SetViewportExtEx
ExcludeClipRect
GetROP2
GetWindowExtEx
CreateSolidBrush
EnumFontFamiliesExW
GetTextExtentPointA
SetTextAlign
Chord
BitBlt
Ellipse
SetArcDirection
ExtSelectClipRgn
SetWindowOrgEx
GetRgnBox
GetRegionData
CreatePen
RectInRegion
SetRectRgn
GetViewportOrgEx
SetWindowExtEx
ExtCreatePen
ExtTextOutA
GetCharABCWidthsA
CreateRectRgn
MaskBlt
SelectObject
Polygon
CreateDIBSection
GetTextColor
SetBrushOrgEx
EnumFontFamiliesA
GetTextExtentExPointW
CreatePatternBrush
GetCharABCWidthsW
SelectPalette
SaveDC
PaintRgn

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shell32

DragQueryFileW
SHGetFolderPathW
ShellExecuteW
SHGetKnownFolderPath
DragQueryFileA
ShellExecuteExW
DragAcceptFiles
DragFinish

ole32

OleInitialize
OleUninitialize

comctl32

ImageList_SetImageCount
ImageList_Add
ImageList_Create
ImageList_BeginDrag
ImageList_AddMasked
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_DrawIndirect
ImageList_Replace
ImageList_GetImageCount
ImageList_DragLeave
InitCommonControls
ImageList_Destroy
ImageList_DrawEx
_TrackMouseEvent
ImageList_DragMove
ImageList_Copy
ImageList_EndDrag
ImageList_Remove

psapi

EnumProcessModules

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 708KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 374KB - Virtual size: 373KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 47KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

ab05f1af968b88c3ef645447529f426d

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

advapi32

gdi32

version

shell32

ole32

comctl32

psapi

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.data Size: 708KB - Virtual size: 708KB

.rdata Size: 374KB - Virtual size: 373KB

.bss Size: - Virtual size: 47KB

.CRT Size: 512B - Virtual size: 12B

.idata Size: 12KB - Virtual size: 12KB

.rsrc Size: 130KB - Virtual size: 129KB

.reloc Size: 132KB - Virtual size: 132KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.data
Size: 708KB - Virtual size: 708KB

.rdata
Size: 374KB - Virtual size: 373KB

.bss
Size: - Virtual size: 47KB

.CRT
Size: 512B - Virtual size: 12B

.idata
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 130KB - Virtual size: 129KB

.reloc
Size: 132KB - Virtual size: 132KB