f614a83c23b2459b1019482c324ac500f4d32ffc47610f265551e968be3a61d4

Sharing

Copy URL Twitter E-mail

General

Target

f614a83c23b2459b1019482c324ac500f4d32ffc47610f265551e968be3a61d4
Size

216KB
MD5

48f7704e92eff7f070555b419eb07044
SHA1

1aa4bca244d2768a3022a5f33efd61b23fab1dfb
SHA256

f614a83c23b2459b1019482c324ac500f4d32ffc47610f265551e968be3a61d4
SHA512

156ec372c6a4cc186bba5808e8effc39d013719dde05c83e929a7357f10a759b58f9e4285019d3dee1474cfcdaf5be0a9e91372da002203e9771d5b62bf7f652
SSDEEP

3072:FjwiJ1IZHfUfuzjRvq+QZ5VMx3r1fiqc9hg/tjSdnbQBf0C9I9xf1WmrR8mginog:1IfUjjZ5M0w/tjSdnb5C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f614a83c23b2459b1019482c324ac500f4d32ffc47610f265551e968be3a61d4

Files

f614a83c23b2459b1019482c324ac500f4d32ffc47610f265551e968be3a61d4
.exe windows:4 windows x86 arch:x86

fad579b484ab5d38eff5888a6276cff9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
GetVersionExA
GetTimeZoneInformation
RtlUnwind
HeapAlloc
HeapFree
ExitProcess
RaiseException
HeapReAlloc
HeapSize
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
LCMapStringA
LCMapStringW
IsBadWritePtr
SetUnhandledExceptionFilter
VirtualProtect
GetSystemInfo
VirtualQuery
GetACP
GetOEMCP
GetCPInfo
SetStdHandle
IsBadReadPtr
IsBadCodePtr
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
FlushFileBuffers
SetFilePointer
FindResourceA
GlobalAddAtomA
GetProfileStringA
SetErrorMode
GetProcessVersion
WritePrivateProfileStringW
GlobalFlags
lstrcmpiW
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
MulDiv
SetLastError
InterlockedDecrement
GetModuleHandleA
LoadLibraryA
lstrlenA
GetVersion
GlobalAddAtomW
GlobalFindAtomW
GlobalUnlock
GlobalFree
GlobalLock
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
VirtualFree
LocalFree
WideCharToMultiByte
MultiByteToWideChar
VirtualAlloc
GetModuleFileNameW
LoadLibraryW
FreeLibrary
GetUserDefaultLangID
GetVersionExW
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
GetSystemDirectoryW
WriteFile
CreateFileW
CreateEventW
CreateMutexA
ReleaseMutex
GetHandleInformation
CloseHandle
GetLastError
lstrcpynW
GetCurrentDirectoryW
SetFileAttributesW
lstrcatW
lstrlenW
GetPrivateProfileStringW
FindResourceW
LoadResource
SizeofResource
LockResource
lstrcpyW
SetHandleCount

user32

IsDialogMessageW
ShowWindow
DestroyMenu
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutW
DrawTextW
GrayStringW
LoadCursorW
GetClassNameW
PtInRect
GetSysColorBrush
InvalidateRect
GetTopWindow
GetCapture
WinHelpW
GetClassInfoW
RegisterClassW
GetDlgCtrlID
CreateWindowExW
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
SetFocus
GetMessageTime
GetMessagePos
GetForegroundWindow
SetWindowLongW
SetWindowPos
RegisterWindowMessageW
OffsetRect
IntersectRect
SystemParametersInfoW
GetWindowPlacement
GetWindowRect
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongW
SetCursor
PostQuitMessage
PostMessageW
LoadStringW
GetMenu
SendMessageW
GetWindow
SetWindowTextW
GetWindowTextW
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
wsprintfW
RegisterDeviceNotificationW
MessageBoxW
EnableWindow
UnregisterDeviceNotification
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuW
LoadIconW
GetMenuItemCount
UpdateWindow
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
RemovePropW
GetSysColor
GetMenuStringW
GetMenuItemID
AdjustWindowRectEx
ScreenToClient
CopyRect
DefWindowProcW
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
DrawFocusRect
ModifyMenuW
DrawMenuBar
GetSubMenu
GetPropA
SetPropA
SetWindowLongA
GetClassNameA
IsWindowUnicode
SendMessageA
GetWindowLongA
SetWindowsHookExA
RemovePropA
CallWindowProcA
CharNextA
InflateRect
DefWindowProcA
DefDlgProcA
GetClassInfoA
SetForegroundWindow

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
GetObjectW
SetBkColor
SetTextColor
GetClipBox
CreateDIBitmap
PatBlt
ExtTextOutA
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateBitmap

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegCreateKeyExW
RegSetValueExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

ShellExecuteW

comctl32

ord17

setupapi

SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
SetupDiGetDeviceInstanceIdW
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiOpenDeviceInterfaceRegKey

Sections

.text
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fad579b484ab5d38eff5888a6276cff9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

setupapi

Sections

.text Size: 104KB - Virtual size: 102KB

.rdata Size: 52KB - Virtual size: 48KB

.data Size: 44KB - Virtual size: 59KB

.rsrc Size: 12KB - Virtual size: 9KB

.text
Size: 104KB - Virtual size: 102KB

.rdata
Size: 52KB - Virtual size: 48KB

.data
Size: 44KB - Virtual size: 59KB

.rsrc
Size: 12KB - Virtual size: 9KB