acace1f69f4a3a9d2dee8bdc1909b2c2

Sharing

Copy URL Twitter E-mail

General

Target

acace1f69f4a3a9d2dee8bdc1909b2c2
Size

776KB
MD5

acace1f69f4a3a9d2dee8bdc1909b2c2
SHA1

936fe0850bbd8cef46cf5ebb1e4c80fe5c74403d
SHA256

719697e0a78535669c9f197f3dab23e44ef6481e173691770d8450998deaa0bf
SHA512

059071d66729ea5649e9a28c9ff2df38419516cc9cc5eea5442e8e3d4944e07bdfff4b0e51293175fcbed4810f7f686d20a59e75876f555674b74274296f54a3
SSDEEP

12288:x6U8j+elNJrXDcqByhL0ZYmT4dN+iG5UYYUZ8596+RP:oTNJbDcqIhoZJTNiwUYfY9R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acace1f69f4a3a9d2dee8bdc1909b2c2

Files

acace1f69f4a3a9d2dee8bdc1909b2c2
.exe windows:4 windows x86 arch:x86

001dcc77109bbc9874b6ac01a68245af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
RtlUnwind
HeapFree
HeapAlloc
TerminateProcess
HeapReAlloc
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
SetStdHandle
GetFileType
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetStartupInfoA
GetFileTime
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
IsBadWritePtr
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileAttributesW
SetErrorMode
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
GlobalFlags
InterlockedIncrement
LocalAlloc
FileTimeToLocalFileTime
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
lstrcmpiW
InterlockedDecrement
GlobalFindAtomW
GetModuleHandleA
LoadLibraryA
GetVersionExA
SetLastError
MulDiv
FormatMessageW
lstrcpynW
LocalFree
FreeResource
GlobalAddAtomW
GetCurrentThread
GetCurrentThreadId
FreeLibrary
GlobalDeleteAtom
GetModuleHandleW
GetProcAddress
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
LoadLibraryW
GetLocaleInfoW
lstrcmpW
GetFileSize
GlobalLock
GlobalUnlock
CreateDirectoryW
GetTempPathA
CreateFileA
CopyFileW
BeginUpdateResourceW
UpdateResourceW
EndUpdateResourceW
DeleteFileA
ReadFile
SetFilePointer
FindResourceA
GlobalAlloc
WriteFile
GlobalFree
Sleep
LeaveCriticalSection
EnterCriticalSection
FileTimeToSystemTime
FindFirstFileW
FindNextFileW
FindClose
GetDriveTypeW
GetDiskFreeSpaceExW
DeleteCriticalSection
InitializeCriticalSection
RaiseException
SetEvent
WaitForSingleObject
CreateEventW
CreateFileW
CloseHandle
GetPrivateProfileStringW
GetTempPathW
DeleteFileW
GetTickCount
lstrlenW
GetLocalTime
ExitProcess
lstrlenA
WideCharToMultiByte
CreateThread
GetModuleFileNameW
lstrcatW
WritePrivateProfileStringW
lstrcpyW
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
GetLastError
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
HeapDestroy
InterlockedExchange

user32

MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
SetRect
CharNextW
GetSysColorBrush
ReleaseCapture
LoadCursorW
SetCapture
CharUpperW
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
DestroyMenu
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
RegisterWindowMessageW
WinHelpW
GetCapture
CreateWindowExW
GetClassInfoExW
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
IsChild
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MessageBoxW
SetForegroundWindow
UpdateWindow
GetMenu
GetSysColor
AdjustWindowRectEx
EqualRect
GetScrollInfo
SetScrollInfo
GetClassInfoW
RegisterClassW
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
PtInRect
GetMenuItemID
GetMenuItemCount
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
CopyRect
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetWindowLongW
IsWindowEnabled
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetFocus
ModifyMenuW
GetMenuState
CheckMenuItem
GetMenuCheckMarkDimensions
SetWindowsHookExW
PostThreadMessageW
RegisterClipboardFormatW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageW
ValidateRect
SetCursor
PostQuitMessage
PostMessageW
MapWindowPoints
GetParent
GetDC
ReleaseDC
IsRectEmpty
InvalidateRect
GetWindowRect
EnableMenuItem
UnregisterClassW
RedrawWindow
LoadBitmapW
GetDlgItem
wsprintfW
GetCursorPos
TrackPopupMenu
GetSystemMetrics
LoadIconW
EnableWindow
SetTimer
GetClientRect
IsIconic
GetSystemMenu
SendMessageW
LoadMenuW
GetSubMenu
AppendMenuW
DrawIcon

gdi32

ExtSelectClipRgn
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
SetMapMode
SetBkMode
RestoreDC
SaveDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
CreateSolidBrush
ExtTextOutW
SetBkColor
SetTextColor
GetClipBox
CreateRectRgnIndirect
CreateBitmap
CreateDIBitmap
DeleteObject
GetDeviceCaps
GetStockObject
SelectPalette
RealizePalette
GetDIBits
CreateDCW
CreateCompatibleBitmap
SelectObject
DeleteDC
StretchBlt
BitBlt
CreateCompatibleDC
GetObjectW
Rectangle

comdlg32

GetSaveFileNameW
GetOpenFileNameW
GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegOpenKeyExW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
RegQueryValueW
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW

shell32

DragAcceptFiles
SHGetPathFromIDListW
SHBrowseForFolderW
ExtractIconW
DragQueryFileW
ShellExecuteW

comctl32

ImageList_ReplaceIcon
ImageList_Destroy
ImageList_Create
ord17

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW

oledlg

OleUIBusyW

ole32

CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
StgCreateDocfileOnILockBytes
CoGetClassObject
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
StgOpenStorageOnILockBytes
OleInitialize

oleaut32

VariantCopy
SysAllocString
SafeArrayDestroy
SystemTimeToVariantTime
OleCreateFontIndirect
SysStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString

winmm

PlaySoundW

wininet

InternetConnectW
InternetSetStatusCallbackW
InternetGetLastResponseInfoW
FtpPutFileW
InternetOpenW
InternetOpenUrlW
InternetCloseHandle
InternetReadFile

ws2_32

select
inet_ntoa
getpeername
ntohs
ntohl
WSAStartup
htons
htonl
closesocket
send
WSACleanup
accept
socket
bind
listen
recv

iphlpapi

GetIpAddrTable
GetBestInterface

Sections

.text
Size: 292KB - Virtual size: 289KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 392KB - Virtual size: 390KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

001dcc77109bbc9874b6ac01a68245af

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

winmm

wininet

ws2_32

iphlpapi

Sections

.text Size: 292KB - Virtual size: 289KB

.rdata Size: 76KB - Virtual size: 74KB

.data Size: 12KB - Virtual size: 23KB

.rsrc Size: 392KB - Virtual size: 390KB

.text
Size: 292KB - Virtual size: 289KB

.rdata
Size: 76KB - Virtual size: 74KB

.data
Size: 12KB - Virtual size: 23KB

.rsrc
Size: 392KB - Virtual size: 390KB