752337d7a8bf00299d6d30531d31f0e5

Sharing

Copy URL

Twitter E-mail

General

Target

752337d7a8bf00299d6d30531d31f0e5
Size

2.7MB
MD5

752337d7a8bf00299d6d30531d31f0e5
SHA1

e098b365105b2599c69e9a84db133595b272eac6
SHA256

150c95a7e57aef0c0c25c492164ff0508ef1a761b2a5a7df2276c1452fb012e9
SHA512

75e87a5d448ffbd0e7bbee176ef248da1b0895958b08281025ec017599e5032545e0c12f515a9039e15e61f1e94fbd0bf0d10105f9f08a4c8545100af0d45fd5
SSDEEP

6144:Adx1NVy2MdxpPYzTdx+dx4dmoKdxHajXNWdxkNdxxPhdxUXvWh09i8G9+MyeoXrz:QxdmOdbq/yLnemqIpuOQrRPL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
752337d7a8bf00299d6d30531d31f0e5

Files

752337d7a8bf00299d6d30531d31f0e5
.exe windows:5 windows x86 arch:x86

d806b159d46a96289f66d159b5eb9e9f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msacm32

acmMetrics

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
__setusermatherr
_adjust_fdiv
memset

winmm

PlaySoundA

msimg32

AlphaBlend
TransparentBlt

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

comctl32

InitCommonControlsEx

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

GetCurrentProcessId
GetSystemTimeAsFileTime
QueryPerformanceCounter
SetErrorMode
GetCommandLineA
LoadLibraryA
GetStartupInfoA
LeaveCriticalSection
GetTickCount
EnterCriticalSection
InitializeCriticalSection
IsValidCodePage
CreateThread
CreateFileW
CreateFileA
CreateEventW
CreateEventA
CopyFileA
CompareStringW
CompareStringA
CloseHandle
ExitProcess
GetCurrentThreadId
GetLastError
GetModuleHandleA

user32

AdjustWindowRectEx
EmptyClipboard
AppendMenuA
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcA
CharUpperA
CharUpperBuffA
BringWindowToTop

gdi32

SetPixel
SetPaletteEntries
SetMapperFlags
SetRectRgn
SetROP2
SetPixelV
SetGraphicsMode
SetDIBColorTable
SetColorAdjustment
SetBkMode
SetBkColor
SetArcDirection
SetMapMode
SetPolyFillMode
SetStretchBltMode
SetTextAlign
SetTextCharacterExtra
SetTextColor
SetAbortProc
SelectPalette
SelectObject
SelectClipRgn
SelectClipPath
ScaleWindowExtEx
ScaleViewportExtEx
SaveDC
RestoreDC
RectVisible
Rectangle
RealizePalette
PtVisible
PtInRegion
PolylineTo
PolyBezierTo
PlayMetaFileRecord
PlayMetaFile
PatBlt
OffsetWindowOrgEx
OffsetViewportOrgEx
OffsetRgn
OffsetClipRgn
MoveToEx
ModifyWorldTransform
LPtoDP
SetTextJustification
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SetWorldTransform
StartDocA
StartPage
PolyDraw
TextOutA
AbortDoc
ArcTo
BitBlt
CloseMetaFile
CombineRgn
CopyMetaFileA
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBitmap
CreateDIBPatternBrushPt
CreateDIBSection
CreateEllipticRgn
CreateFontA
CreateFontIndirectA
CreateHatchBrush
CreateMetaFileA
CreatePalette
CreatePatternBrush
CreatePolygonRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteMetaFile
DeleteObject
DPtoLP
Ellipse
EndDoc
EndPage
EnumFontFamiliesA
EnumFontFamiliesExA
EnumMetaFile
Escape
ExcludeClipRect
ExtCreatePen
ExtFloodFill
ExtSelectClipRgn
ExtTextOutA
FillRgn
FrameRgn
GetBkColor
GetBkMode
GetBoundsRect
GetCharWidthA
GetClipBox
GetClipRgn
GetCurrentObject
GetCurrentPositionEx
GetDeviceCaps
GetDIBits
GetMapMode
GetNearestColor
GetNearestPaletteIndex
GetObjectA
GetObjectType
GetPaletteEntries
GetPixel
GetPolyFillMode
GetRgnBox
GetROP2
GetStockObject
GetStretchBltMode
GetSystemPaletteEntries
GetTextAlign
GetTextCharsetInfo
GetTextColor
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextExtentPointA
GetTextFaceA
GetTextMetricsA
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
IntersectClipRect
LineTo
StretchDIBits

winspool.drv

OpenPrinterA
GetJobA
ClosePrinter
DocumentPropertiesA

comdlg32

CommDlgExtendedError
GetSaveFileNameA

advapi32

RegOpenKeyExW
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyA
RegEnumKeyExA
RegEnumValueA
RegOpenKeyExA
GetFileSecurityA
RegQueryValueA
RegQueryValueExA
RegSetValueA
RegSetValueExA
SetFileSecurityA

shell32

DragFinish
DragQueryFileA
ShellExecuteExA
ShellExecuteA
ExtractIconA
SHGetFileInfoA

ole32

CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
CoTreatAsClass
CoUninitialize
CreateBindCtx
CreateDataAdviseHolder
CreateFileMoniker
CreateGenericComposite
CreateILockBytesOnHGlobal
CreateItemMoniker
CreateOleAdviseHolder
CreateStreamOnHGlobal
DoDragDrop
GetHGlobalFromILockBytes
CLSIDFromProgID
IsAccelerator
OleCreateFromData
OleCreateFromFile
OleCreateLinkFromData
OleCreateLinkToFile
OleCreateMenuDescriptor
OleCreateStaticFromData
OleDestroyMenuDescriptor
OleDuplicateData
OleFlushClipboard
OleGetClipboard
OleGetIconOfClass
OleInitialize
OleIsCurrentClipboard
OleIsRunning
OleLoad
CoInitialize
CoRegisterMessageFilter
OleQueryLinkFromData
OleRegEnumVerbs
OleRegGetMiscStatus
OleRegGetUserType
OleRun
OleSave
OleSaveToStream
OleSetClipboard
OleSetContainedObject
OleSetMenuDescriptor
OleTranslateAccelerator
OleUninitialize
PropVariantCopy
ReadClassStg
ReadFmtUserTypeStg
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
SetConvertStg
StgCreateDocfile
StgCreateDocfileOnILockBytes
StgIsStorageFile
StgOpenStorage
StgOpenStorageOnILockBytes
StringFromCLSID
StringFromGUID2
WriteClassStg
WriteClassStm
WriteFmtUserTypeStg
CoFreeUnusedLibraries
CoGetMalloc
CoGetClassObject
CoRegisterClassObject
OleQueryCreateFromData
CoLockObjectExternal
CoDisconnectObject
CoCreateInstance
CoCreateGuid
OleLockRunning
CLSIDFromString
GetRunningObjectTable

shlwapi

PathIsUNCServerShareA
PathRemoveExtensionA
PathFindFileNameA
PathFindExtensionA
PathFindExtensionW
PathRemoveFileSpecW
PathFileExistsA
PathStripToRootA
PathIsUNCA

Sections

.text
Size: 424KB - Virtual size: 423KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ifx
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d806b159d46a96289f66d159b5eb9e9f

Headers

File Characteristics

Imports

msacm32

msvcrt

winmm

msimg32

imm32

comctl32

version

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

shlwapi

Sections

.text Size: 424KB - Virtual size: 423KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 12.1MB

.data1 Size: 4KB - Virtual size: 648B

.ifx Size: 8KB - Virtual size: 4KB

.rsrc Size: 2.2MB - Virtual size: 2.2MB

.text
Size: 424KB - Virtual size: 423KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 12.1MB

.data1
Size: 4KB - Virtual size: 648B

.ifx
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 2.2MB - Virtual size: 2.2MB