aabc282ab7ac2bfb5fe8a0cb406fcce1

Sharing

Copy URL Twitter E-mail

General

Target

aabc282ab7ac2bfb5fe8a0cb406fcce1
Size

656KB
MD5

aabc282ab7ac2bfb5fe8a0cb406fcce1
SHA1

86c55322fc9d34aceb23e42a1677ea31b6df807b
SHA256

167e4eb0cefc2989b1539437a1a1b66eff9edc5081a53bf9573d2668406129f4
SHA512

23958e438fbe14a6473dbf29708dc7878931e49a09c2ae12795c11b965b8788d9a33febd4ee2533baa4330da59873e618cd80b632cfa235ebe58715ca077aa7d
SSDEEP

12288:8hqSzyS4YQP2r+CcB2l6x9Z8chiAniJYnqyp3Bbz2Uga1aivQk0dOe3pVhdGmXmT:8hRzKNX8rPtG1y/a9j8CR4XWc523DO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aabc282ab7ac2bfb5fe8a0cb406fcce1

Files

aabc282ab7ac2bfb5fe8a0cb406fcce1
.dll windows:5 windows x86 arch:x86

a91e513dfdb273eb858360522e7e8515

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

gethostbyname
inet_addr
gethostname
WSACleanup
closesocket
WSAStartup
send
recv

winmm

mixerGetLineInfoA
mixerGetControlDetailsA
mixerSetControlDetails
mixerGetDevCapsA
mciSendStringA
mixerGetLineControlsA
mixerClose
mixerOpen
joyGetDevCapsA
waveOutSetVolume
waveOutGetVolume
joyGetPosEx

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

comctl32

ImageList_Create
ord6
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_Destroy
ImageList_GetIconSize
ord17

kernel32

CloseHandle
InitializeCriticalSection
GetCurrentDirectoryA
GetCommandLineA
GetModuleHandleA
TerminateThread
lstrcmpiA
CreateThread
SetThreadPriority
CreateMutexA
GetLastError
HeapAlloc
HeapFree
VirtualFree
GetProcessHeap
IsBadReadPtr
VirtualAlloc
VirtualProtect
GetVersionExA
DeleteCriticalSection
GetFileAttributesA
GetModuleFileNameA
GetFullPathNameA
MulDiv
GetSystemTimeAsFileTime
MultiByteToWideChar
FindFirstFileA
FindNextFileA
FindClose
FileTimeToLocalFileTime
SetEnvironmentVariableA
Beep
MoveFileA
CreateProcessA
CreateFileA
GetFileSize
ReadFile
WideCharToMultiByte
GetExitCodeProcess
WriteProcessMemory
ReadProcessMemory
GetCurrentProcessId
OpenProcess
TerminateProcess
SetPriorityClass
SetLastError
GetLocalTime
GetDateFormatA
GetTimeFormatA
SetErrorMode
GetDiskFreeSpaceA
GetExitCodeThread
DeviceIoControl
GetDriveTypeA
GetVolumeInformationA
CreateDirectoryA
GetACP
WriteFile
GlobalSize
DeleteFileA
CopyFileA
SetFileAttributesA
LocalFileTimeToFileTime
SetFileTime
GetSystemTime
GetComputerNameA
GetWindowsDirectoryA
GetTempPathA
GetShortPathNameA
EnterCriticalSection
LeaveCriticalSection
CompareStringA
RemoveDirectoryA
GetCurrentProcess
GetPrivateProfileStringA
WritePrivateProfileStringA
SetEndOfFile
IsDBCSLeadByteEx
SetFilePointerEx
GetFileSizeEx
SystemTimeToFileTime
FileTimeToSystemTime
FormatMessageA
EnumResourceNamesA
LoadLibraryExA
FindResourceA
LoadResource
LockResource
SizeofResource
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapSize
ExitProcess
GetModuleHandleW
ExitThread
HeapReAlloc
InterlockedDecrement
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
GetEnvironmentVariableA
GetCurrentThreadId
OutputDebugStringA
FreeLibrary
GetProcAddress
LoadLibraryA
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
SetCurrentDirectoryA
Sleep
GetTickCount
LCMapStringA
LCMapStringW
HeapCreate
HeapDestroy
GetStringTypeA
TlsSetValue
TlsFree
GetStringTypeW
RaiseException
GetStdHandle
RtlUnwind
SetFilePointer
InterlockedIncrement
SetHandleCount
GetFileType
GetStartupInfoA
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetLocaleInfoA
SetStdHandle
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetVolumeLabelA
VirtualQuery

user32

SystemParametersInfoA
GetClientRect
GetWindowRect
GetQueueStatus
MoveWindow
EnumChildWindows
SetActiveWindow
SetFocus
SetWindowRgn
SetWindowPos
InvalidateRect
EnableWindow
GetWindowTextLengthA
EnumWindows
IsZoomed
IsIconic
GetIconInfo
RegisterWindowMessageA
GetSysColor
GetSysColorBrush
FillRect
DrawIconEx
DefWindowProcA
SetForegroundWindow
DialogBoxParamA
SendDlgItemMessageA
GetDlgItem
SetDlgItemTextA
MessageBeep
EnumClipboardFormats
GetCaretPos
ClientToScreen
GetCursor
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuStringA
IsWindowEnabled
ExitWindowsEx
SetMenu
FlashWindow
MapWindowPoints
RedrawWindow
UpdateWindow
GetMessagePos
GetClassLongA
DefDlgProcA
CallWindowProcA
CheckRadioButton
IntersectRect
PtInRect
AppendMenuA
SetMenuDefaultItem
RemoveMenu
SetMenuItemInfoA
IsMenu
CreateMenu
CreatePopupMenu
SetMenuInfo
DestroyMenu
TrackPopupMenuEx
CreateIconIndirect
AdjustWindowRectEx
CopyImage
CreateWindowExA
CreateIconFromResourceEx
GetWindow
BringWindowToTop
GetTopWindow
UnregisterClassA
LoadCursorA
LoadImageA
ChangeClipboardChain
DestroyIcon
DestroyWindow
IsCharAlphaA
MapVirtualKeyA
GetKeyNameTextA
VkKeyScanExA
GetWindowTextA
mouse_event
WindowFromPoint
GetSystemMetrics
keybd_event
SetKeyboardState
GetKeyboardState
GetCursorPos
PostMessageW
GetAsyncKeyState
AttachThreadInput
SendInput
UnregisterHotKey
RegisterHotKey
PostQuitMessage
SendMessageTimeoutA
CharUpperA
SetWindowsHookExA
PostThreadMessageA
IsCharUpperA
IsCharLowerA
IsCharAlphaNumericA
ToAsciiEx
FindWindowA
GetKeyboardLayout
CallNextHookEx
CharLowerA
PostMessageA
MessageBoxA
OpenClipboard
GetClipboardData
GetClipboardFormatNameA
CloseClipboard
SetClipboardData
EmptyClipboard
EndDialog
IsWindow
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetClassNameA
GetWindowThreadProcessId
GetForegroundWindow
ShowWindow
CountClipboardFormats
DrawTextA
SetRect
SetWindowTextA
IsWindowVisible
GetMenu
CheckMenuItem
EnableMenuItem
SetClipboardViewer
LoadAcceleratorsA
ReleaseDC
GetDesktopWindow
GetDC
SetWindowLongA
ScreenToClient
IsDialogMessageA
SendMessageA
GetWindowLongA
LookupIconIdFromDirectoryEx
RegisterClassExA
GetKeyState
GetFocus
KillTimer
PeekMessageA
GetMessageA
SetTimer
GetParent
GetDlgCtrlID
IsClipboardFormatAvailable
UnhookWindowsHookEx

gdi32

CreateDIBSection
SetBkColor
GetPixel
EnumFontFamiliesExA
CreateCompatibleBitmap
GetSystemPaletteEntries
GetDIBits
CreateCompatibleDC
SetBkMode
GetObjectA
SetTextColor
GetClipBox
FillRgn
GetClipRgn
ExcludeClipRect
BitBlt
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateEllipticRgn
DeleteDC
GetTextMetricsA
GetTextFaceA
SelectObject
GetStockObject
CreateDCA
CreateSolidBrush
GetDeviceCaps
GdiFlush
DeleteObject
CreateFontA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
CloseServiceHandle
UnlockServiceDatabase
LockServiceDatabase
OpenSCManagerA
GetUserNameA
RegEnumKeyExA
RegEnumValueA
RegQueryInfoKeyA
RegOpenKeyExA
RegCloseKey
RegConnectRegistryA
RegDeleteValueA

shell32

DragQueryPoint
SHFileOperationA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
ShellExecuteExA
Shell_NotifyIconA
DragFinish
DragQueryFileA
ExtractIconA

ole32

CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
CoInitialize

oleaut32

OleLoadPicture

Exports

Exports

addFile
addScript
ahkExecuteLine
ahkFindFunc
ahkFindLabel
ahkFunction
ahkKey
ahkLabel
ahkPause
ahkPostFunction
ahkReady
ahkReload
ahkTerminate
ahkassign
ahkdll
ahkgetvar
ahktextdll
ximportfunc

Sections

.text
Size: 547KB - Virtual size: 546KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a91e513dfdb273eb858360522e7e8515

Headers

File Characteristics

Imports

wsock32

winmm

version

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 547KB - Virtual size: 546KB

.rdata Size: 58KB - Virtual size: 57KB

.data Size: 10KB - Virtual size: 35KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 38KB - Virtual size: 37KB

.text
Size: 547KB - Virtual size: 546KB

.rdata
Size: 58KB - Virtual size: 57KB

.data
Size: 10KB - Virtual size: 35KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 38KB - Virtual size: 37KB