8f857c1237225301327729c7553442cbfb9a8aa273defcb44acaef3458a602e2

Sharing

Copy URL Twitter E-mail

General

Target

8f857c1237225301327729c7553442cbfb9a8aa273defcb44acaef3458a602e2
Size

5.0MB
MD5

6add03ba4447249817c7c49013230b42
SHA1

b6e921d043e6318bc8b81721c0239d4d069525a2
SHA256

8f857c1237225301327729c7553442cbfb9a8aa273defcb44acaef3458a602e2
SHA512

211d77ac3eb8e3d1c0ca202030923971440302067d3d96d87a9b1c272a224edfad9778827e0f4eb85ab94902a8f84b66c1b23b1bf19b6f916b01dc861ced7af1
SSDEEP

98304:eLlODAK2fLRUv8K6WZfN6wPXDJpiL8N86gQvbJx0sHuSrkG47sglsDGUZ5NNXs9w:KlODAKUY8K6twPXHNNzJhrJglsDGWNNl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f857c1237225301327729c7553442cbfb9a8aa273defcb44acaef3458a602e2

Files

8f857c1237225301327729c7553442cbfb9a8aa273defcb44acaef3458a602e2
.dll windows:5 windows x86 arch:x86

fe6e0fceb15a7a26a95808a4072bcae9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathIsDirectoryA
PathIsRelativeA
PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathFindExtensionA

winmm

PlaySoundA

kernel32

TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetStdHandle
GetConsoleCP
GetConsoleMode
SetHandleCount
GetStartupInfoW
IsValidCodePage
GetLocaleInfoW
LCMapStringW
GetFileInformationByHandle
PeekNamedPipe
GetCurrentDirectoryW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetStringTypeW
CompareStringW
HeapDestroy
EnumSystemLocalesA
IsValidLocale
GetProcessHeap
GetDriveTypeW
CreateFileW
SetEnvironmentVariableA
DeleteFileW
FindNextFileA
InterlockedCompareExchange
CreateDirectoryW
GetSystemDirectoryA
MoveFileW
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
GetDateFormatA
GetTimeFormatA
HeapCreate
GetFileType
SetStdHandle
HeapQueryInformation
GetCurrentThreadId
MultiByteToWideChar
QueryPerformanceCounter
GetTickCount
HeapSize
ExitProcess
WriteConsoleW
VirtualQuery
GetSystemInfo
SleepEx
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
Sleep
DeleteCriticalSection
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
CloseHandle
CreateEventA
WaitForSingleObject
SetEvent
ResetEvent
PulseEvent
QueueUserAPC
WaitForSingleObjectEx
SetFilePointer
ReadFile
WriteFile
GetLastError
CancelIo
GetOverlappedResult
OutputDebugStringA
SetThreadPriority
InitializeCriticalSectionAndSpinCount
CreateMutexA
CreateFileA
DeviceIoControl
GetModuleHandleA
GetProcAddress
InterlockedDecrement
WaitForMultipleObjectsEx
InterlockedIncrement
GetLocalTime
lstrlenA
MulDiv
lstrlenW
LocalFree
FormatMessageA
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
VirtualAlloc
GetCommandLineA
FindFirstFileExA
GetDriveTypeA
HeapReAlloc
CreateThread
ExitThread
EncodePointer
DecodePointer
HeapAlloc
CopyFileA
GlobalFree
SetLastError
ReleaseMutex
lstrcmpA
InterlockedExchange
FreeLibrary
GetModuleHandleW
DeactivateActCtx
LoadLibraryA
ActivateActCtx
GetSystemTimeAsFileTime
GetTimeZoneInformation
RaiseException
RtlUnwind
HeapFree
FindResourceExW
GetUserDefaultLCID
VirtualProtect
GetNumberFormatA
GetWindowsDirectoryA
SearchPathA
GetProfileIntA
GetACP
GetOEMCP
CompareStringA
LoadLibraryExA
GetLocaleInfoA
GetCPInfo
GetFileTime
GetFileSizeEx
GetFileAttributesA
FileTimeToLocalFileTime
GetFileAttributesExA
GetTempPathA
GetTempFileNameA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
lstrcmpiA
FindResourceA
FreeResource
GlobalFindAtomA
lstrcmpW
DeleteFileA
GlobalFlags
GetVersionExA
lstrcpyA
GetSystemDirectoryW
LoadLibraryW
GetCurrentDirectoryA
FileTimeToSystemTime
GlobalGetAtomNameA
SetErrorMode
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
GetCurrentProcessId
GlobalAddAtomA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
ResumeThread
GlobalDeleteAtom
GetCurrentThread
GetModuleFileNameA
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage

user32

GetWindowRgn
DestroyCursor
DrawIcon
MapDialogRect
GetNextDlgGroupItem
HideCaret
InvertRect
SubtractRect
MapVirtualKeyExA
GetKeyNameTextA
IsCharLowerA
GetIconInfo
GetDoubleClickTime
CharUpperBuffA
CopyIcon
RegisterClipboardFormatA
LoadImageW
EmptyClipboard
CloseClipboard
OpenClipboard
GetMenuDefaultItem
GetUpdateRect
FrameRect
IsClipboardFormatAvailable
SetMenuDefaultItem
WaitMessage
PostThreadMessageA
CreateMenu
IsMenu
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
DefFrameProcA
UnpackDDElParam
ReuseDDElParam
LoadMenuA
LoadImageA
LoadAcceleratorsA
InsertMenuItemA
TranslateAcceleratorA
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
CopyImage
LockWindowUpdate
BringWindowToTop
SetCursorPos
SetRect
CreateAcceleratorTableA
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyA
ToAsciiEx
CopyAcceleratorTableA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateA
MessageBeep
ReleaseCapture
SetCapture
GetSystemMenu
LoadMenuW
SetClassLongA
GetAsyncKeyState
NotifyWinEvent
WindowFromPoint
CreatePopupMenu
DestroyAcceleratorTable
SetParent
SetWindowRgn
IsZoomed
OffsetRect
IsRectEmpty
DestroyMenu
GetMenuItemInfoA
IntersectRect
InflateRect
CharUpperA
DestroyIcon
IsIconic
ShowWindow
MoveWindow
IsDialogMessageA
CheckDlgButton
RegisterWindowMessageA
LoadIconW
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
IsWindow
SetFocus
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
MessageBoxA
RemoveMenu
GetSubMenu
GetMenuItemCount
GetMessageTime
GetMessagePos
MonitorFromWindow
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
RedrawWindow
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
CallWindowProcA
GetMenu
SetWindowLongA
SetWindowPos
KillTimer
SetTimer
InvalidateRect
UpdateWindow
GetDesktopWindow
RealChildWindowFromPoint
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
SetWindowTextA
InsertMenuA
GetMenuItemID
AppendMenuA
GetMenuStringA
GetMenuState
PostQuitMessage
PostMessageA
CheckMenuItem
EnableMenuItem
ModifyMenuA
SendMessageA
GetParent
GetFocus
LoadBitmapW
SetClipboardData
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ValidateRect
GetCursorPos
PeekMessageA
GetKeyState
IsWindowVisible
GetActiveWindow
DispatchMessageA
TranslateMessage
GetMessageA
CallNextHookEx
SetWindowsHookExA
SetCursor
ShowOwnedPopups
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetWindowLongA
GetWindowThreadProcessId
UnhookWindowsHookEx
UnregisterClassA
GetWindowTextA
GetWindowTextLengthA
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
GetSystemMetrics
LoadCursorA
FillRect
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
ScreenToClient
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
DeleteMenu
CopyRect
SetRectEmpty
GetMonitorInfoA
SystemParametersInfoA
EnumDisplayMonitors
SetLayeredWindowAttributes
LoadCursorW
GetClientRect
MapWindowPoints
DefWindowProcA
GetClassInfoA

gdi32

DeleteObject
SelectClipRgn
CreateRectRgn
GetObjectA
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
CreateCompatibleDC
GetStockObject
SelectPalette
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateDIBitmap
CreateFontIndirectA
CreateCompatibleBitmap
CreateRectRgnIndirect
GetTextMetricsA
EnumFontFamiliesA
GetTextCharsetInfo
SetRectRgn
CombineRgn
DPtoLP
GetTextExtentPoint32A
CreateDIBSection
CreateRoundRectRgn
CreatePolygonRgn
GetBkColor
GetTextColor
CreateEllipticRgn
Polyline
Ellipse
Polygon
OffsetRgn
GetRgnBox
SetDIBColorTable
RealizePalette
StretchBlt
SetPixel
Rectangle
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExA
GetTextFaceA
SetPixelV
GetLayout
SetLayout
SetTextAlign
MoveToEx
LineTo
GetDeviceCaps
CopyMetaFileA
CreateDCA
CreateBitmap
SaveDC
RestoreDC
SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
PatBlt

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueA
RegEnumKeyExA
RegEnumValueA
RegCloseKey

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetDesktopFolder
ShellExecuteA
SHAppBarMessage
DragQueryFileA
SHBrowseForFolderA
DragFinish
SHGetFileInfoA

comctl32

ImageList_GetIconSize

ole32

CoInitializeEx
CoUninitialize
CoInitialize
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
CreateStreamOnHGlobal
DoDragDrop
CoCreateInstance
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CoCreateGuid

oleaut32

SysAllocString
VariantInit
VarBstrFromDate
SysFreeString
SysAllocStringLen
VariantClear
VariantChangeType
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA

iphlpapi

GetIpNetTable
GetAdaptersInfo
GetIpAddrTable

ws2_32

ioctlsocket
WSAGetLastError
htonl
inet_ntoa
__WSAFDIsSet
WSACleanup
setsockopt
WSAStartup
recvfrom
select
ntohl
sendto
htons
getsockname
bind
inet_addr
socket
closesocket
ntohs

gdiplus

GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

Exports

Exports

CameraInit
CameraPlay
CameraStop
CameraUpdate
DisplayImage
EnableTestMode
SaveParams

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 107KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 514KB - Virtual size: 514KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trace
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mvp0
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 341KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe6e0fceb15a7a26a95808a4072bcae9

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

winmm

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

oleaut32

setupapi

iphlpapi

ws2_32

gdiplus

oleacc

imm32

Exports

Exports

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.text1 Size: 43KB - Virtual size: 43KB

.rdata Size: 1.2MB - Virtual size: 1.2MB

.data Size: 107KB - Virtual size: 137KB

.data1 Size: 514KB - Virtual size: 514KB

.trace Size: 4KB - Virtual size: 4KB

.mvp0 Size: 51KB - Virtual size: 50KB

.reloc Size: 341KB - Virtual size: 340KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 2.8MB - Virtual size: 2.8MB

.text1
Size: 43KB - Virtual size: 43KB

.rdata
Size: 1.2MB - Virtual size: 1.2MB

.data
Size: 107KB - Virtual size: 137KB

.data1
Size: 514KB - Virtual size: 514KB

.trace
Size: 4KB - Virtual size: 4KB

.mvp0
Size: 51KB - Virtual size: 50KB

.reloc
Size: 341KB - Virtual size: 340KB

.rsrc
Size: 12KB - Virtual size: 12KB