59e69c7e3a92325bc7601059a809d961

Sharing

Copy URL

Twitter E-mail

General

Target

59e69c7e3a92325bc7601059a809d961
Size

948KB
MD5

59e69c7e3a92325bc7601059a809d961
SHA1

5a1453e60f61e0b115ef2c37cb3d48f1ab90fedb
SHA256

c8554413c7900c19b9850298eaf4316f76df944d4c34cddcc417c508c1e4fa39
SHA512

b2f5c24d5f2bc83cb2ee8b9b8a2b792fa1312784b1057bb6aedcba02f804214b6a2fc68d4e752b3a44ceba16712a4a7e931b163ea8c73717384d4fc41b533954
SSDEEP

24576:zl6mbqg26cHAeZTaG5OAmj4to3vttxFjm/m:/326cHAkLm063vttUm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59e69c7e3a92325bc7601059a809d961

Files

59e69c7e3a92325bc7601059a809d961
.exe windows:4 windows x86 arch:x86

972dcb2ef7d1f3ef8a63c7b9f38fa31e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathRemoveFileSpecA
SHDeleteKeyA
PathFileExistsA

idriveinst

_DriverUninstall@4
_DriverInstall@8
_IsDriverInstalled@0

kernel32

TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
SetErrorMode
DuplicateHandle
WriteFile
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
MoveFileA
FindClose
GetVolumeInformationA
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
FindResourceExA
GetFileTime
SetFileTime
RtlUnwind
HeapFree
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
GetTimeZoneInformation
GetLocalTime
HeapAlloc
GetACP
FindNextFileA
GetDriveTypeA
TerminateProcess
CreateThread
ExitThread
GlobalReAlloc
HeapSize
GetEnvironmentVariableA
GlobalFlags
HeapCreate
VirtualFree
VirtualAlloc
FatalAppExitA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
VirtualProtect
WritePrivateProfileStringA
GetPrivateProfileStringA
GetProfileStringA
InterlockedExchange
TlsFree
GlobalHandle
HeapReAlloc
GetPrivateProfileIntA
SuspendThread
SetThreadPriority
SetEvent
GlobalAlloc
lstrcmpA
MulDiv
SetLastError
lstrcpynA
WaitForMultipleObjects
ReleaseMutex
ReleaseSemaphore
CreateSemaphoreA
InterlockedDecrement
TlsAlloc
FreeLibrary
GetProcAddress
LoadLibraryA
InitializeCriticalSection
DeleteCriticalSection
GetSystemTime
EnterCriticalSection
LeaveCriticalSection
InterlockedIncrement
GetCurrentThreadId
GlobalGetAtomNameA
GlobalDeleteAtom
GlobalLock
GlobalUnlock
GlobalFree
GetUserDefaultLangID
LockResource
GetLocaleInfoA
DeviceIoControl
CreateEventA
GetSystemDefaultLangID
Sleep
GlobalMemoryStatus
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFileSize
lstrcmpiA
IsBadWritePtr
GetVersion
GetTickCount
FileTimeToLocalFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
lstrcatA
lstrlenA
WinExec
lstrcpyA
lstrlenW
WideCharToMultiByte
FindResourceA
SizeofResource
FileTimeToSystemTime
LoadResource
MultiByteToWideChar
GetWindowsDirectoryA
GetModuleHandleA
GetExitCodeThread
GetCurrentThread
GetCurrentProcess
LocalAlloc
GetFileAttributesA
SetFileAttributesA
FormatMessageA
LocalFree
GlobalAddAtomA
GlobalFindAtomA
DeleteFileA
CopyFileA
ResumeThread
GetVersionExA
GetSystemDirectoryA
CreateMutexA
WaitForSingleObject
GetModuleFileNameA
CreateProcessA
ReadFile
SetFilePointer
GetLastError
CloseHandle
CreateFileA
FindFirstFileA
HeapDestroy

user32

EqualRect
AdjustWindowRectEx
SetFocus
DispatchMessageA
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
GetMenuCheckMarkDimensions
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
MoveWindow
CharToOemA
OemToCharA
wvsprintfA
MsgWaitForMultipleObjects
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
ShowOwnedPopups
ValidateRect
TranslateMessage
GetMessageA
InsertMenuA
DeleteMenu
GetAsyncKeyState
DestroyMenu
WindowFromPoint
GetDialogBaseUnits
WaitMessage
GetWindowThreadProcessId
CharUpperA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
GetCapture
wsprintfA
GetClassInfoA
RegisterClassA
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetDlgCtrlID
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetWindowPos
RegisterWindowMessageA
IntersectRect
IsIconic
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
GetDlgItem
IsWindowEnabled
LoadStringA
IsWindowVisible
GetWindowTextA
EnumChildWindows
MapDialogRect
GetWindowPlacement
CopyRect
ShowWindow
GetCursorPos
CopyIcon
InflateRect
IsWindow
SetWindowLongA
PtInRect
RedrawWindow
MessageBeep
DestroyCursor
WinHelpA
GetKeyState
ScreenToClient
GetFocus
IsChild
ReleaseCapture
GetSysColor
GetClientRect
SystemParametersInfoA
SetRect
AdjustWindowRect
GetSystemMetrics
InvalidateRect
SetCapture
GetSysColorBrush
LoadMenuA
GetMenuItemCount
SetTimer
SendMessageA
LoadIconA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
GetMenuStringA
GetMenuItemID
ModifyMenuA
GetSubMenu
GetMenu
IsMenu
PostQuitMessage
OffsetRect
GetWindowLongA
LoadBitmapA
GetDC
ReleaseDC
LoadCursorA
SetCursor
MessageBoxA
PeekMessageA
GetDesktopWindow
FindWindowA
SetForegroundWindow
GetParent
SetParent
GetWindow
GetClassNameA
DefDlgProcA
CharNextA
IsWindowUnicode
KillTimer
EnableWindow
DestroyWindow
GetWindowRect
PostMessageA
SetWindowTextA

gdi32

CreateBitmap
DeleteDC
StartDocA
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
SetBkColor
SetColorAdjustment
PolyBezierTo
DeleteObject
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
ExtTextOutA
Escape
PatBlt
CreateRectRgnIndirect
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
GetTextMetricsA
EnumFontFamiliesExA
SetTextColor
GetClipBox
GetDCOrgEx
SelectObject
SetTextJustification
TextOutA
GetObjectA
GetStockObject
GetTextFaceA
CreateFontA
GetTextExtentPoint32A
CreateFontIndirectA
PolylineTo
CreateDIBitmap
GetTextExtentPointA
BitBlt
CreateCompatibleDC
GetDeviceCaps

comdlg32

GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

shell32

ShellExecuteA
DragAcceptFiles
SHGetMalloc
DragFinish
DragQueryFileA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetFileInfoA

comctl32

ImageList_Read
ImageList_Merge
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
ord14
ord13
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA
ImageList_AddMasked
ord17
ImageList_Write

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoInitializeEx

oleaut32

SysAllocStringLen
SysFreeString

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 492KB - Virtual size: 490KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 84KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

972dcb2ef7d1f3ef8a63c7b9f38fa31e

Headers

File Characteristics

Imports

shlwapi

idriveinst

kernel32

user32

gdi32

comdlg32

winspool.drv

shell32

comctl32

ole32

oleaut32

version

Sections

.text Size: 492KB - Virtual size: 490KB

.rdata Size: 104KB - Virtual size: 103KB

.data Size: 84KB - Virtual size: 102KB

.rsrc Size: 264KB - Virtual size: 264KB

.text
Size: 492KB - Virtual size: 490KB

.rdata
Size: 104KB - Virtual size: 103KB

.data
Size: 84KB - Virtual size: 102KB

.rsrc
Size: 264KB - Virtual size: 264KB