9ab16de135bff148f6155008fc4a8fdc

Sharing

Copy URL

Twitter E-mail

General

Target

9ab16de135bff148f6155008fc4a8fdc
Size

303KB
MD5

9ab16de135bff148f6155008fc4a8fdc
SHA1

91d21da4e3a5cac90626e5db2e5141ce06fbfe7c
SHA256

2ff690ffe74b13b3d3a11d4aa4562c4519e54ba2d5789bee2b3850e57fa604a0
SHA512

d0bdeecf2aee2201a9757e4fed66764243764481ce64df6b94e5b84b3a16e2e83874f7b9ce99ff5f2a7caa6b99c918e57225528446c153d7b8215515ca2b4293
SSDEEP

6144:w3VHNc7nj3HvMwwIZ+DJhHdVzk+Ju2320RPoTK44L5TXjd4L1M:wRC7njHvAIZMvdq62AoDGjjd4C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9ab16de135bff148f6155008fc4a8fdc

Files

9ab16de135bff148f6155008fc4a8fdc
.exe windows:5 windows x86 arch:x86

3c737250d2aef55db40ea1e319b6e544

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiEnumDeviceInfo
SetupGetStringFieldA
SetupDiSetDeviceInstallParamsA
SetupFindFirstLineA
SetupDiClassGuidsFromNameA
SetupDiCreateDeviceInfoA
SetupDiGetDeviceInstallParamsA
SetupDiSetDeviceRegistryPropertyA
SetupDiBuildDriverInfoList
SetupDiEnumDriverInfoA
SetupDiSetSelectedDriverA
SetupDiOpenDevRegKey
SetupOpenInfFileA
SetupCloseInfFile
SetupFindNextLine

kernel32

LockFile
WriteFile
SetEndOfFile
MoveFileA
FlushFileBuffers
FindClose
SetFilePointer
UnlockFile
DeleteFileA
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
FindFirstFileA
GetFileSize
GetFileTime
LocalFileTimeToFileTime
GetVolumeInformationA
SetFileTime
GetFileAttributesA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCommandLineA
HeapAlloc
HeapFree
RaiseException
RtlUnwind
CreateThread
ExitThread
SystemTimeToFileTime
HeapReAlloc
ExitProcess
TerminateProcess
GetACP
GetTimeZoneInformation
GetSystemTime
GetLocalTime
SetFileAttributesA
Sleep
SetHandleCount
GetStdHandle
DuplicateHandle
ReadFile
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
IsBadReadPtr
IsBadCodePtr
SetConsoleCtrlHandler
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GetModuleFileNameA
lstrcpynA
SetLastError
GetLastError
CloseHandle
GetCurrentProcess
GetWindowsDirectoryA
LocalAlloc
LocalFree
CreateFileA
WritePrivateProfileStringA
SetErrorMode
GetCurrentDirectoryA
GetOEMCP
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalFlags
GetCPInfo
GetCurrentThread
GetProcessVersion
lstrcmpA
MulDiv
FindResourceA
LoadLibraryA
FreeLibrary
lstrcatA
LoadResource
LockResource
GlobalAddAtomA
GlobalGetAtomNameA
lstrcmpiA
lstrcpyA
GlobalFindAtomA
GlobalDeleteAtom
CreateEventA
GetModuleHandleA
GetProcAddress
SetThreadPriority
SuspendThread
GetCurrentThreadId
WaitForSingleObject
ResumeThread
SetEvent
InterlockedIncrement
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
GetVersion
lstrlenA
TlsSetValue
TlsGetValue
LocalReAlloc
GlobalReAlloc
EnterCriticalSection
GlobalAlloc
TlsFree
GlobalLock
LeaveCriticalSection
GetFileType
GlobalHandle
GetStartupInfoA
HeapSize
FatalAppExitA

user32

AdjustWindowRectEx
IsWindow
SetActiveWindow
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
PostMessageA
LoadIconA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
LoadCursorA
GetSysColorBrush
ReleaseDC
GetDC
GetClassNameA
PtInRect
ClientToScreen
GetDesktopWindow
PostQuitMessage
DestroyMenu
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
ShowOwnedPopups
SetCursor
InsertMenuA
DeleteMenu
GetMenuStringA
CharUpperA
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
ScreenToClient
SetFocus
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
EqualRect
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowRect
GetSystemMetrics
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
GetScrollPos
SetScrollPos
GetClassInfoA
SetWindowsHookExA
OemToCharA
CharToOemA
LoadStringA
UnhookWindowsHookEx
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SendMessageA
MessageBoxA
EnableWindow
LoadBitmapA
GetMenuCheckMarkDimensions
GetWindowPlacement

gdi32

DeleteObject
RestoreDC
SaveDC
StartDocA
DeleteDC
SelectObject
GetDeviceCaps
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
SetPolyFillMode
SetMapMode
SetViewportOrgEx
SetStretchBltMode
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
OffsetWindowOrgEx
SetWindowExtEx
SetWindowOrgEx
SelectClipRgn
ExcludeClipRect
ScaleWindowExtEx
OffsetClipRgn
MoveToEx
IntersectClipRect
SetTextAlign
SetTextJustification
LineTo
SetMapperFlags
GetCurrentPositionEx
SetTextCharacterExtra
SetArcDirection
PolyDraw
ArcTo
SetColorAdjustment
PolyBezierTo
PolylineTo
CreateRectRgn
SelectClipPath
GetClipRgn
PlayMetaFileRecord
SetBkMode
ExtSelectClipRgn
EnumMetaFile
SelectPalette
GetObjectType
PlayMetaFile
GetViewportExtEx
GetStockObject
CreatePen
ExtCreatePen
GetWindowExtEx
CreateHatchBrush
CreatePatternBrush
CreateSolidBrush
PtVisible
RectVisible
CreateDIBPatternBrushPt
ExtTextOutA
Escape
TextOutA
CreateBitmap
SetROP2

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteKeyA
RegDeleteValueA
RegOpenKeyA
OpenProcessToken
RegOpenKeyExA
RegQueryInfoKeyA
RegEnumValueA
RegSetValueExA
AdjustTokenPrivileges
RegQueryValueExA
LookupPrivilegeValueA
RegCreateKeyExA
RegRestoreKeyA
RegCloseKey

shell32

SHGetFileInfoA
DragAcceptFiles

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 155KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ffff
Size: 145KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c737250d2aef55db40ea1e319b6e544

Headers

File Characteristics

Imports

setupapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 155KB - Virtual size: 156KB

.data Size: 1KB - Virtual size: 4KB

.ffff Size: 145KB - Virtual size: 224KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 155KB - Virtual size: 156KB

.data
Size: 1KB - Virtual size: 4KB

.ffff
Size: 145KB - Virtual size: 224KB

.rsrc
Size: 2KB - Virtual size: 2KB