VBA-rr-svn480+LRC4[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

VBA-rr-svn480+LRC4.exe
Size

4.1MB
MD5

3c6d48326f3de08f769ab089b22900d5
SHA1

b917acf11445cb2be2445e120f62bd0d0cdd8c27
SHA256

cb69908377d76e47fc153bf62a81407dd489e42aa67cb97b2a3256a0f70e9b9a
SHA512

0239df5db07715781ab039106c7861ce1ab3e3b388d82b7f50c5560f03a9985b80e022d3197f843f75f4c4ade22bc86d38a635f594dbfe69b03b7d312a9486f7
SSDEEP

98304:abTCwv1srzkJmJDmfhGD455rSkKbuWih01i0i+yhhkTN:mbyDmEK5rSkKbux+yhhaN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VBA-rr-svn480+LRC4.exe

Files

VBA-rr-svn480+LRC4.exe
.exe windows:5 windows x86 arch:x86

8a30d4d67ab467de6bd363d243cf3ecc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

d3d9

Direct3DCreate9

d3dx9_43

D3DXCreateFontA
D3DXCreateTexture
D3DXMatrixPerspectiveFovLH
D3DXCreateSprite
D3DXCheckTextureRequirements

wsock32

WSAAsyncSelect
send
ioctlsocket
ntohs
inet_addr
recv
accept
WSAStartup
closesocket
socket
listen
htonl
htons
inet_ntoa
setsockopt
WSAGetLastError
bind

winmm

timeBeginPeriod
timeEndPeriod
timeGetDevCaps
timeGetTime
PlaySoundA

avifil32

AVIStreamWrite
AVIFileExit
AVIStreamRelease
AVIFileRelease
AVISaveOptions
AVIMakeCompressedStream
AVIStreamSetFormat
AVIFileOpenA
AVIFileCreateStreamA
AVIFileInit

opengl32

glViewport
glBindTexture
glGenTextures
glEnable
glEnd
glTexCoord2f
glMatrixMode
wglCreateContext
glLoadIdentity
glTexParameteri
glDeleteTextures
glBegin
wglDeleteContext
glTexImage2D
glDisable
wglMakeCurrent
glPixelStorei
glTexSubImage2D
glOrtho
glPushAttrib
glVertex3i

kernel32

LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
LoadLibraryExA
lstrcmpiA
GetVolumeInformationA
SetErrorMode
FindResourceExW
DeleteFileA
VerSetConditionMask
VerifyVersionInfoA
GetProfileIntA
SearchPathA
ResetEvent
WaitForSingleObjectEx
CreateEventW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
GetFileSize
VirtualQuery
VirtualFree
VirtualAlloc
DosDateTimeToFileTime
WaitForMultipleObjects
GetStringTypeW
LCMapStringW
GetCurrentDirectoryA
GetACP
GetUserDefaultLCID
GetTempFileNameA
GetFullPathNameA
GetThreadLocale
GetCPInfo
GetOEMCP
VirtualProtect
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
FlushFileBuffers
FindFirstFileA
GetSystemInfo
FindClose
OutputDebugStringW
RtlUnwind
CreateProcessA
ExitProcess
GetModuleHandleExW
GetConsoleMode
ReadConsoleW
GetConsoleCP
SetFilePointerEx
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
FileTimeToLocalFileTime
GetCurrentThread
GetCurrentProcessId
MulDiv
GlobalFree
GlobalSize
lstrcmpA
ResumeThread
SetEvent
CompareStringA
MultiByteToWideChar
GlobalGetAtomNameA
GlobalFindAtomA
CreateFileW
GetFileType
CreateThread
ExitThread
FreeLibraryAndExitThread
GlobalAddAtomA
FindResourceA
LoadLibraryW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
GetSystemDirectoryW
GetCurrentThreadId
SetLastError
EncodePointer
OutputDebugStringA
GetTempPathA
SetFileAttributesA
GetFileAttributesA
CopyFileA
FindResourceExA
GetSystemDefaultLangID
SetThreadPriority
GetPrivateProfileStringA
WritePrivateProfileStringA
GetSystemTime
SystemTimeToFileTime
CreateFileA
SetFileTime
CreateEventA
CloseHandle
WaitForSingleObject
GetPrivateProfileIntA
LocalAlloc
GetTickCount
Sleep
GetProcAddress
FormatMessageA
GetPrivateProfileStructA
LocalFree
lstrcpyA
lstrlenA
IsBadStringPtrA
WritePrivateProfileStructA
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetCurrentDirectoryA
GetLocaleInfoA
GetVersionExA
GetDateFormatA
GetTimeFormatA
GlobalUnlock
GlobalLock
GlobalAlloc
GetModuleFileNameA
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
SizeofResource
FreeLibrary
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
LoadLibraryA
GetLastError
HeapSize
InitializeCriticalSectionAndSpinCount
HeapFree
GetCommandLineA
GetCommandLineW
HeapQueryInformation
QueryPerformanceFrequency
SetStdHandle
GetStdHandle
SetEnvironmentVariableA
GetCurrentDirectoryW
GetDateFormatW
GetTimeFormatW
IsValidLocale
EnumSystemLocalesW
DeleteFileW
GetDriveTypeW
GetExitCodeProcess
GetFileAttributesExW
CreatePipe
WriteConsoleW
GetTimeZoneInformation
CreateDirectoryW
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetWindowsDirectoryA

user32

HideCaret
GetIconInfo
DrawIconEx
WindowFromPoint
GetMenuDefaultItem
LoadMenuW
LoadAcceleratorsW
SetParent
GetSystemMenu
GetNextDlgGroupItem
SetRect
InvalidateRgn
CharNextA
CharUpperA
DeleteMenu
LoadImageW
TrackMouseEvent
ReuseDDElParam
UnpackDDElParam
LoadImageA
DestroyIcon
CreatePopupMenu
BringWindowToTop
RealChildWindowFromPoint
CopyImage
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
MapVirtualKeyA
GetKeyNameTextA
SetRectEmpty
CreateDialogIndirectParamA
IntersectRect
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetWindowThreadProcessId
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
IsWindowEnabled
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
MoveWindow
LoadCursorW
IsRectEmpty
OffsetRect
SetWindowRgn
DrawIcon
AppendMenuA
InsertMenuA
GetMenuState
GetMenuStringA
TranslateMessage
GetMessageA
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
UnhookWindowsHookEx
SetWindowsHookExA
GetWindow
GetTopWindow
GetClassNameA
GetClassLongA
EqualRect
CopyRect
RemovePropA
GetPropA
SetPropA
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
InvertRect
BeginPaint
GetForegroundWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetCapture
GetDlgCtrlID
IsWindowVisible
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
GetMessageTime
GetMessagePos
DefFrameProcA
RegisterWindowMessageA
LoadMenuA
LoadMenuIndirectA
AdjustWindowRectEx
ClientToScreen
DestroyMenu
LoadIconW
PeekMessageA
wsprintfA
ShowWindow
TranslateAcceleratorA
IsDialogMessageA
IsZoomed
IsIconic
DrawMenuBar
GetMenuItemInfoW
ModifyMenuW
DestroyAcceleratorTable
CreateAcceleratorTableA
CopyAcceleratorTableA
ModifyMenuA
DeferWindowPos
GetLastActivePopup
UnionRect
IsWindow
BeginDeferWindowPos
MapWindowPoints
EndDeferWindowPos
GetDesktopWindow
DrawFrameControl
GetDlgItemInt
GetMenu
EndDialog
DialogBoxParamA
SetMenuItemInfoA
LoadAcceleratorsA
SetFocus
RemoveMenu
CheckMenuItem
EnableMenuItem
GetMenuItemInfoA
CreateMenu
InsertMenuItemA
MessageBeep
SetCaretPos
CreateCaret
DestroyCaret
ShowCaret
DestroyWindow
SetWindowPos
SetActiveWindow
GetActiveWindow
GetDlgItemTextA
RedrawWindow
SendDlgItemMessageA
SetDlgItemTextA
SystemParametersInfoA
GetWindowTextLengthA
SetForegroundWindow
GetWindowLongA
GetNextDlgTabItem
GetWindowRect
GetDC
ReleaseDC
NotifyWinEvent
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongA
DrawStateA
CharUpperW
CharPrevExA
DestroyCursor
GetWindowRgn
ShowScrollBar
EnableScrollBar
SubtractRect
TranslateMDISysAccel
EndPaint
DefMDIChildProcA
GetWindowTextA
SetWindowTextA
GetDlgItem
OpenClipboard
CloseClipboard
EmptyClipboard
SetClipboardData
GetFocus
SetTimer
KillTimer
PostMessageA
SetCapture
SetCursor
PtInRect
ReleaseCapture
InflateRect
FillRect
GetSystemMetrics
SetWindowLongA
DrawFocusRect
GetSysColor
DrawEdge
LoadCursorA
DefWindowProcA
SendMessageA
GetSysColorBrush
GetParent
InvalidateRect
EnableWindow
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetKeyState
ScreenToClient
GetKeyboardState
GetAsyncKeyState
MessageBoxA
CreateDialogParamA
GetClientRect
UnregisterClassA
GetCursorPos
GetUpdateRect
IsClipboardFormatAvailable
CharUpperBuffA
GetDoubleClickTime
SetMenuDefaultItem
ToAsciiEx
MapVirtualKeyExA
IsCharLowerA
GetKeyboardLayout
WaitMessage
PostThreadMessageA
GetComboBoxInfo
MonitorFromPoint
UpdateLayeredWindow
LockWindowUpdate
RegisterClipboardFormatA
FrameRect
CopyIcon
DispatchMessageA
SetCursorPos
CallNextHookEx

gdi32

IntersectClipRect
GetStockObject
StretchDIBits
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CreateSolidBrush
DeleteObject
GetObjectA
CreateFontIndirectA
CreatePen
EndPage
GetDeviceCaps
EndDoc
StartDocA
StartPage
GetTextExtentPoint32A
SetBkMode
TextOutA
SetTextColor
GetDIBits
SetPixelFormat
SwapBuffers
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateRectRgnIndirect
SetTextAlign
PatBlt
SetRectRgn
GetTextMetricsA
GetBkColor
GetTextColor
EnumFontFamiliesExA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
StretchBlt
SetDIBColorTable
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceA
GetWindowExtEx
GetViewportExtEx
GetPixel
GetRgnBox
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
GetMapMode
SetDIBitsToDevice
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateRectRgn
CreatePatternBrush
CreateHatchBrush
CreateBitmap
LPtoDP
DPtoLP
CreateDIBSection
SelectObject
Ellipse
DeleteDC
CreateEllipticRgn
ExtTextOutA
CreateDCA
CopyMetaFileA
SetBkColor
DescribePixelFormat
ChoosePixelFormat
LineTo

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetSaveFileNameA
GetOpenFileNameA
ChooseFontA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegEnumKeyExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExA
RegEnumValueA
RegDeleteValueA
RegCreateKeyA
RegQueryValueExA
RegOpenKeyA
RegSetValueExA

shell32

SHGetSpecialFolderLocation
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
DragAcceptFiles
DragFinish
DragQueryFileA
SHAppBarMessage
SHGetDesktopFolder
ShellExecuteA
SHGetFileInfoA

comctl32

ord14

shlwapi

PathFindFileNameA
PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
PathFindExtensionA
StrFormatKBSizeA

uxtheme

CloseThemeData
GetThemeSysColor
GetWindowTheme
IsAppThemed
GetThemePartSize
GetCurrentThemeName
GetThemeColor
OpenThemeData
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeBackground
DrawThemeText

ole32

IsAccelerator
OleDuplicateData
ReleaseStgMedium
CoUninitialize
CoCreateGuid
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoDisconnectObject
CoInitializeEx
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator

oleaut32

SysAllocString
OleCreateFontIndirect
LoadTypeLi
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocStringByteLen
SysFreeString
VariantChangeType
VariantInit
SysAllocStringLen
VariantClear

oledlg

ord8

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 564KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 250KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a30d4d67ab467de6bd363d243cf3ecc

Headers

DLL Characteristics

File Characteristics

Imports

d3d9

d3dx9_43

wsock32

winmm

avifil32

opengl32

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

oleacc

gdiplus

imm32

Sections

.text Size: 3.1MB - Virtual size: 3.1MB

.rdata Size: 564KB - Virtual size: 564KB

.data Size: 53KB - Virtual size: 2.7MB

.gfids Size: 108KB - Virtual size: 108KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 78KB - Virtual size: 78KB

.reloc Size: 250KB - Virtual size: 250KB

.text
Size: 3.1MB - Virtual size: 3.1MB

.rdata
Size: 564KB - Virtual size: 564KB

.data
Size: 53KB - Virtual size: 2.7MB

.gfids
Size: 108KB - Virtual size: 108KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 78KB - Virtual size: 78KB

.reloc
Size: 250KB - Virtual size: 250KB