4246a52625fdca36b5d827e43e54d3336d8962dcf4b2ef9a87d34409ba351de4

Sharing

Copy URL Twitter E-mail

General

Target

4246a52625fdca36b5d827e43e54d3336d8962dcf4b2ef9a87d34409ba351de4
Size

5.2MB
MD5

949965d09ed53ea7606c4545c2e9dcb1
SHA1

7b8a19d35c3cca14c4b2a865f967299e2ee635be
SHA256

4246a52625fdca36b5d827e43e54d3336d8962dcf4b2ef9a87d34409ba351de4
SHA512

8baf6786dd9f50f012137339c90419a8afd8de225c97f9898dd826aafa30eaaf66347a3fc8099f0a1fee1170ae940a248d1bf48a9a9b6f42044cb3e9c6a19c99
SSDEEP

98304:T8PmwhgVgIpd5VqDwEWwmemIoooooooooooooKooooooooooooooo2ooooooooo3:ZwWSGImwGyuad2ek

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4246a52625fdca36b5d827e43e54d3336d8962dcf4b2ef9a87d34409ba351de4

Files

4246a52625fdca36b5d827e43e54d3336d8962dcf4b2ef9a87d34409ba351de4
.exe windows:4 windows x86 arch:x86

b387c3f1f6b6d6250bd3d509941df5df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetCloseEnum

comctl32

ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_Remove
ImageList_ReplaceIcon
PropertySheetA
DestroyPropertySheetPage
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_GetIcon
CreatePropertySheetPageA
ImageList_GetImageCount

kernel32

GetVolumeInformationA
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalFlags
GlobalFree
GlobalGetAtomNameA
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
LCMapStringA
LCMapStringW
LoadResource
LocalAlloc
LocalFree
GetVersionExA
LockFile
LockResource
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpynA
lstrlenA
MulDiv
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceFrequency
RaiseException
ReadFile
ResumeThread
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetEvent
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
SuspendThread
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
VirtualAlloc
VirtualFree
VirtualProtect
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStringA
lstrcpyW
GetSystemDefaultLCID
GetThreadLocale
GetStringTypeW
GetStringTypeA
GetStdHandle
GetShortPathNameA
GetProfileStringA
GetProcessVersion
GetProcessHeap
GetOEMCP
GetModuleFileNameA
GetLogicalDrives
GetFullPathNameA
GetFileType
GetFileTime
GetFileSize
GetFileAttributesA
GetEnvironmentStringsW
GetEnvironmentStrings
GetDriveTypeA
GetDiskFreeSpaceA
GetCurrentThread
GetCurrentProcess
GetCurrentDirectoryA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageA
FlushFileBuffers
FindResourceA
FindNextFileA
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitThread
ExitProcess
DuplicateHandle
DeviceIoControl
DeleteCriticalSection
CreateThread
CreateFileA
CreateEventA
CompareStringW
CompareStringA
CloseHandle
GetStartupInfoA
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
LoadLibraryA
GetModuleHandleA
GetProcAddress
GetLastError
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetTimeZoneInformation
LocalReAlloc

user32

IsWindowVisible
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
LoadMenuA
LoadStringA
MapDialogRect
MapWindowPoints
MessageBeep
MessageBoxA
ModifyMenuA
MoveWindow
MsgWaitForMultipleObjects
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemovePropA
ScreenToClient
SendDlgItemMessageA
SendMessageA
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetMenuDefaultItem
SetMenuItemBitmaps
SetPropA
SetRect
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowsHookExA
SetWindowTextA
ShowCaret
ShowWindow
SystemParametersInfoA
TabbedTextOutA
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UpdateWindow
ValidateRect
WindowFromPoint
WinHelpA
wsprintfA
wvsprintfA
VkKeyScanW
IsChild
InvalidateRect
IntersectRect
InflateRect
HideCaret
GrayStringA
IsWindowUnicode
GetWindowTextA
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetWindowDC
GetTopWindow
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetPropA
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessageTime
GetMessagePos
GetMessageA
GetMenuState
GetMenuItemID
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetIconInfo
GetForegroundWindow
GetFocus
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassLongA
GetClassInfoA
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FillRect
ExcludeUpdateRgn
EndPaint
EndDialog
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextA
DrawStateA
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
AdjustWindowRectEx
AppendMenuA
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcA
CharNextA
CharUpperA
CheckMenuItem
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DefWindowProcA
DefDlgProcA
CreateWindowExA
CreateIconIndirect
IsWindowEnabled
IsRectEmpty
IsIconic
GetWindowTextLengthA
IsDialogMessageA
CheckRadioButton
ClientToScreen
CloseClipboard
CopyAcceleratorTableA
CopyRect
CreateDialogIndirectParamA
GetMenuItemCount

gdi32

GetStockObject
ExtTextOutA
GetSystemPaletteEntries
GetTextColor
GetTextExtentPoint32A
GetTextExtentPointA
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
GetPixel
MoveToEx
OffsetViewportOrgEx
GetObjectA
PtVisible
RealizePalette
Rectangle
RectVisible
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetPixel
SetTextAlign
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
GetMapMode
GetDIBits
GetDeviceCaps
GetCurrentObject
GetClipBox
PatBlt
CombineRgn
LPtoDP
BitBlt
Escape
DPtoLP
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgnIndirect
CreatePen
CreatePalette
CreateHatchBrush
CreateFontIndirectA
CreateDIBSection
CreateDIBitmap
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
GetBkColor

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

comdlg32

GetOpenFileNameA
GetFileTitleA
ChooseColorA
GetSaveFileNameA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
FreeSid
AllocateAndInitializeSid
RegSetValueExA

shell32

ShellExecuteA
Shell_NotifyIconA
SHGetFileInfoA

ole32

CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
CLSIDFromString
CLSIDFromProgID
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
OleUninitialize
OleInitialize
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
CoTaskMemFree
CoGetClassObject
CoTaskMemAlloc

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
_except_handler3
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
__setusermatherr

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ctls0
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 360KB - Virtual size: 359KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jeti
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b387c3f1f6b6d6250bd3d509941df5df

Headers

File Characteristics

Imports

mpr

comctl32

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

msvcrt

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 4.0MB

.ctls0 Size: 8KB - Virtual size: 4KB

.rsrc Size: 360KB - Virtual size: 359KB

.jeti Size: 2.5MB - Virtual size: 2.5MB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 4.0MB

.ctls0
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 360KB - Virtual size: 359KB

.jeti
Size: 2.5MB - Virtual size: 2.5MB