a389d23be62c11b0777632436d8acedd

Sharing

Copy URL Twitter E-mail

General

Target

a389d23be62c11b0777632436d8acedd
Size

576KB
MD5

a389d23be62c11b0777632436d8acedd
SHA1

96171de2587183d04161da6f791060d97a11d868
SHA256

a5e997cde9f61bd205af09c2541b835e4debd112a64c3643d84e4bdce66d5108
SHA512

663b0b472a822b97e2bc5f6003a49e948fddd32392aaabd3c82ae1de5c064a2622538c06fe4f5c8a43053de4376e04fa702b03b3f643c3dc798470934cf50282
SSDEEP

12288:XWdAM6LtG4OhTcnc3XdiltEbFJfgW4HEaTHQJ9esQGXGWZe1:jLkpc4iltEbD9A0nesDXnM

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SciTE/SciLexer.dll
unpack001/SciTE/SciTE.exe

Files

a389d23be62c11b0777632436d8acedd
.zip
READ_ME_SciTE_For_Win-Test.txt
SciTE/License.txt
SciTE/SciLexer.dll
.dll windows:5 windows x86 arch:x86

a891a73ae9a9ca90db7cdd06c508b1dd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

I:\u\aa\scintilla\bin\SciLexer.pdb

Imports

kernel32

GetStringTypeW
GetStringTypeA
RtlUnwind
HeapReAlloc
VirtualAlloc
GetCurrentProcessId
VirtualFree
HeapDestroy
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
ExitProcess
HeapSize
Sleep
LCMapStringW
LCMapStringA
GetStdHandle
WriteFile
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
GetOEMCP
InterlockedDecrement
InterlockedIncrement
RaiseException
HeapAlloc
HeapFree
GetLastError
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
GetCommandLineA
GetCurrentThreadId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetFilePointer
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
CloseHandle
FreeLibrary
FlushFileBuffers
GlobalFree
IsValidCodePage
GlobalUnlock
WideCharToMultiByte
GlobalAlloc
GetTickCount
GlobalLock
GlobalSize
GetCPInfo
GetLocaleInfoA
GetVersionExA
DeleteCriticalSection
GetModuleHandleA
LoadLibraryA
EnterCriticalSection
GetProcAddress
IsDBCSLeadByteEx
MultiByteToWideChar
GetACP
MulDiv
LeaveCriticalSection
InitializeCriticalSection
QueryPerformanceCounter
GetModuleFileNameA

user32

ClientToScreen
CloseClipboard
GetUpdateRgn
SetTimer
HideCaret
LoadCursorA
DestroyMenu
CallWindowProcA
MapWindowPoints
GetSystemMetrics
ScreenToClient
IsChild
KillTimer
MsgWaitForMultipleObjects
IsClipboardFormatAvailable
SetFocus
ShowCaret
RegisterClassExW
GetKeyboardLayout
RegisterClipboardFormatA
GetScrollInfo
GetClipboardData
EmptyClipboard
IsWindowUnicode
ScrollWindow
DestroyCaret
AppendMenuA
CreateCaret
PostMessageA
OpenClipboard
SystemParametersInfoA
SetCaretPos
UpdateWindow
SetClipboardData
GetDlgCtrlID
SetScrollInfo
GetMessageTime
EndPaint
DestroyWindow
SetCursor
GetWindowRect
RegisterClassExA
TrackPopupMenu
FillRect
SetCapture
DrawTextW
DrawTextA
GetKeyState
GetParent
GetClientRect
SendMessageA
BeginPaint
GetDoubleClickTime
GetDC
DrawFocusRect
InflateRect
SetWindowLongA
InvalidateRect
UnregisterClassA
GetWindowLongA
CreateWindowExA
ReleaseDC
DefWindowProcA
GetSysColor
SetWindowPos
GetCursorPos
ShowWindow
CreatePopupMenu
FrameRect
AdjustWindowRectEx
ReleaseCapture

gdi32

GetNearestColor
TranslateCharsetInfo
CreateBitmap
CombineRgn
CreateRectRgn
MoveToEx
BitBlt
GetTextExtentPoint32W
GetTextExtentPoint32A
LineTo
SetTextColor
DeleteDC
Polygon
CreateDIBSection
GetDeviceCaps
CreateFontIndirectA
SetBkColor
CreatePalette
SetBkMode
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
Rectangle
ExtTextOutW
Ellipse
RealizePalette
SelectPalette
GetTextExtentExPointW
GetTextExtentExPointA
CreatePatternBrush
CreatePen
GetTextMetricsA
RoundRect
SetTextAlign
IntersectClipRect
GetObjectA
GetStockObject
ExtTextOutA
CreateSolidBrush

imm32

ImmGetContext
ImmReleaseContext
ImmGetCompositionStringW
ImmSetCompositionWindow
ImmNotifyIME
ImmSetCompositionFontA

ole32

DoDragDrop
OleUninitialize
OleInitialize
RevokeDragDrop
RegisterDragDrop

Exports

Exports

Scintilla_DirectFunction

Sections

.text
Size: 392KB - Virtual size: 391KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SciTE/SciTE.exe
.exe windows:5 windows x86 arch:x86

973b7d94bf99fd5e6ee17ad0cc9f1f14

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\u\aa\scite\bin\SciTE.pdb

Imports

kernel32

Beep
MulDiv
lstrcatW
lstrcpyW
CreateMutexA
GetCurrentThreadId
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
QueryPerformanceCounter
GetACP
IsDBCSLeadByteEx
QueryPerformanceFrequency
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
GetProcessHeap
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
FlushFileBuffers
VirtualAlloc
VirtualFree
HeapCreate
CompareStringW
GetLocaleInfoA
HeapSize
GetCurrentProcessId
GetConsoleMode
GetConsoleCP
SetFilePointer
GetFileType
SetHandleCount
RaiseException
InitializeCriticalSectionAndSpinCount
LCMapStringW
LCMapStringA
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetOEMCP
IsDebuggerPresent
GetStartupInfoA
GetCommandLineA
InterlockedDecrement
InterlockedIncrement
DeleteFileA
MoveFileA
GetCurrentProcess
DuplicateHandle
HeapAlloc
HeapReAlloc
HeapFree
RtlUnwind
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateThread
ResumeThread
ExitThread
ExitProcess
GetModuleHandleW
FileTimeToLocalFileTime
GetFileTime
FileTimeToSystemTime
GetDateFormatA
GetTimeFormatA
CreateFileA
LocalFree
CloseHandle
GetVersionExA
PeekConsoleInputA
GetModuleFileNameA
CreatePipe
LockResource
LoadLibraryA
GlobalFree
IsValidCodePage
GetLastError
GetStdHandle
GlobalUnlock
ReadFile
TerminateProcess
CreateProcessA
GetExitCodeProcess
GetDriveTypeA
GetFileAttributesA
SizeofResource
Sleep
WideCharToMultiByte
GlobalAlloc
WriteFile
FormatMessageA
GetTickCount
WaitForSingleObject
SetHandleInformation
GlobalLock
LoadResource
FreeLibrary
GetCPInfo
PeekNamedPipe
FreeResource
FindResourceA
GetModuleHandleA
FindNextFileA
FindClose
GetProcAddress
FindFirstFileA
lstrcpynA
GetFullPathNameA
CompareStringA
MultiByteToWideChar

user32

CreatePopupMenu
FrameRect
DestroyMenu
GetUserObjectInformationA
GetThreadDesktop
EnumWindows
SendMessageTimeoutA
DestroyWindow
RegisterWindowMessageA
GetDlgItemInt
SendDlgItemMessageA
FillRect
GetClientRect
GetWindowTextLengthA
IsDialogMessageA
SetDlgItemInt
IsWindowUnicode
GetDlgItem
EndDialog
CheckDlgButton
IsDlgButtonChecked
CreateDialogParamW
MessageBoxW
GetDlgItemTextW
SetDlgItemTextW
SendMessageW
EnableWindow
SendMessageA
GetWindowLongA
SetWindowLongA
DispatchMessageW
RegisterClassA
GetDlgItemTextA
DialogBoxParamA
SetDlgItemTextA
SetCursor
DeleteMenu
GetFocus
GetKeyState
TrackPopupMenu
GetWindowRect
IsDialogMessageW
GetParent
GetDC
GetWindowTextA
CheckMenuRadioItem
InvalidateRect
ReleaseDC
EnableMenuItem
GetMenuState
DrawMenuBar
GetClassInfoA
GetMenuItemCount
InsertMenuA
SetWindowTextA
CallWindowProcA
SetMenuItemInfoA
LoadCursorA
ModifyMenuA
CheckMenuItem
GetWindow
EndPaint
ClientToScreen
SetWindowPlacement
GetMessageA
CloseClipboard
ScreenToClient
GetMessageW
PostQuitMessage
IsIconic
SetCapture
GetSubMenu
SetForegroundWindow
LoadIconA
SetFocus
BeginPaint
WinHelpA
TranslateMessage
GetMenu
GetWindowPlacement
RegisterClipboardFormatA
MessageBoxA
CreateWindowExA
EmptyClipboard
TranslateAcceleratorA
DefWindowProcA
GetSysColor
SetWindowPos
GetCursorPos
GetMenuItemInfoA
LoadAcceleratorsA
ShowWindow
AppendMenuA
PostMessageA
FlashWindow
DispatchMessageA
OpenClipboard
SystemParametersInfoA
ReleaseCapture
GetSystemMetrics
LoadImageA
UpdateWindow
SetClipboardData
FindWindowA
GetDlgCtrlID
VkKeyScanA
CreateDialogParamA

gdi32

SetTextAlign
GetTextMetricsA
CreatePen
StartDocA
DPtoLP
SelectObject
SetBkColor
GetDeviceCaps
CreateFontA
DeleteDC
SetTextColor
StartPage
LineTo
EndPage
MoveToEx
CreateSolidBrush
IntersectClipRect
EndDoc
CreatePatternBrush
GetNearestColor
GetTextExtentExPointA
GetTextExtentExPointW
SelectPalette
RealizePalette
Ellipse
ExtTextOutW
Rectangle
CreateCompatibleBitmap
CreateCompatibleDC
SetBkMode
CreateDIBSection
Polygon
GetTextExtentPoint32A
GetTextExtentPoint32W
BitBlt
ExtTextOutA
GetStockObject
CreateFontIndirectA
RoundRect
TranslateCharsetInfo
DeleteObject

comdlg32

GetSaveFileNameA
PrintDlgA
PageSetupDlgA
GetOpenFileNameA

comctl32

InitCommonControlsEx

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

shell32

SHGetMalloc
SHBrowseForFolderA
DragAcceptFiles
Shell_NotifyIconA
DragFinish
ShellExecuteA
DragQueryFileA
SHGetPathFromIDListA

Exports

Exports

luaL_addlstring
luaL_addstring
luaL_addvalue
luaL_argerror
luaL_buffinit
luaL_callmeta
luaL_checkany
luaL_checkinteger
luaL_checklstring
luaL_checknumber
luaL_checkoption
luaL_checkstack
luaL_checktype
luaL_checkudata
luaL_error
luaL_findtable
luaL_getmetafield
luaL_gsub
luaL_loadbuffer
luaL_loadfile
luaL_loadstring
luaL_newmetatable
luaL_newstate
luaL_openlib
luaL_openlibs
luaL_optinteger
luaL_optlstring
luaL_optnumber
luaL_prepbuffer
luaL_pushresult
luaL_ref
luaL_register
luaL_typerror
luaL_unref
luaL_where
lua_atpanic
lua_call
lua_checkstack
lua_close
lua_concat
lua_cpcall
lua_createtable
lua_dump
lua_equal
lua_error
lua_gc
lua_getallocf
lua_getfenv
lua_getfield
lua_gethook
lua_gethookcount
lua_gethookmask
lua_getinfo
lua_getlocal
lua_getmetatable
lua_getstack
lua_gettable
lua_gettop
lua_getupvalue
lua_insert
lua_iscfunction
lua_isnumber
lua_isstring
lua_isuserdata
lua_lessthan
lua_load
lua_newstate
lua_newthread
lua_newuserdata
lua_next
lua_objlen
lua_pcall
lua_pushboolean
lua_pushcclosure
lua_pushfstring
lua_pushinteger
lua_pushlightuserdata
lua_pushlstring
lua_pushnil
lua_pushnumber
lua_pushstring
lua_pushthread
lua_pushvalue
lua_pushvfstring
lua_rawequal
lua_rawget
lua_rawgeti
lua_rawset
lua_rawseti
lua_remove
lua_replace
lua_resume
lua_setallocf
lua_setfenv
lua_setfield
lua_sethook
lua_setlevel
lua_setlocal
lua_setmetatable
lua_settable
lua_settop
lua_setupvalue
lua_status
lua_toboolean
lua_tocfunction
lua_tointeger
lua_tolstring
lua_tonumber
lua_topointer
lua_tothread
lua_touserdata
lua_type
lua_typename
lua_xmove
lua_yield
luaopen_base
luaopen_debug
luaopen_io
luaopen_math
luaopen_os
luaopen_package
luaopen_string
luaopen_table

Sections

.text
Size: 407KB - Virtual size: 407KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SciTE/SciTE.properties
SciTE/SciTEGlobal.properties
SciTE/lua.properties
SciTE/luaCOPYRIGHT
SciTE/scite.1
SciTE/wts.properties

Sharing

General

Malware Config

Signatures

Files

a891a73ae9a9ca90db7cdd06c508b1dd

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

imm32

ole32

Exports

Exports

Sections

.text Size: 392KB - Virtual size: 391KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 10KB - Virtual size: 17KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 17KB - Virtual size: 17KB

973b7d94bf99fd5e6ee17ad0cc9f1f14

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

comctl32

advapi32

shell32

Exports

Exports

Sections

.text Size: 407KB - Virtual size: 407KB

.rdata Size: 164KB - Virtual size: 163KB

.data Size: 32KB - Virtual size: 39KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 392KB - Virtual size: 391KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 10KB - Virtual size: 17KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 17KB - Virtual size: 17KB

.text
Size: 407KB - Virtual size: 407KB

.rdata
Size: 164KB - Virtual size: 163KB

.data
Size: 32KB - Virtual size: 39KB

.rsrc
Size: 24KB - Virtual size: 23KB