adb70cd4d7de2b1b9da48f4bbf50e74a

Sharing

Copy URL Twitter E-mail

General

Target

adb70cd4d7de2b1b9da48f4bbf50e74a
Size

184KB
MD5

adb70cd4d7de2b1b9da48f4bbf50e74a
SHA1

4596f8e6f9be4296d9f1d1dbeb3bed86e77f9548
SHA256

e364cc095a17bd9a6d43a5ed48a9ab44e4e10d7f8c13f47a6195e69623e57ab2
SHA512

2973b39316e68d26c2731beed9a692d1f052dfeb7295759d1bd47af5b8d1fdac07c9b2c551de9a687ba24a16171e1b3395b2bc99ead46fe226bd939bd73e1832
SSDEEP

3072:/mKge6cAFUMMnMMMMMX7I7Dvt/XM0vJGAkLvemzNkfNiYHIEKnkalCqtpCI5RKxB:/mKT9pMMnMMMMMavNM00AGiNiYKnkaIb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adb70cd4d7de2b1b9da48f4bbf50e74a

Files

adb70cd4d7de2b1b9da48f4bbf50e74a
.exe windows:5 windows x86 arch:x86

129ca80eca1e77bc0d0358db7d00b937

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

uxtheme

CloseThemeData
GetThemeFont
DrawThemeParentBackground
OpenThemeData
GetThemePartSize
GetThemeMargins
GetThemeAppProperties
GetThemeBackgroundExtent
DrawThemeBackground
GetThemeBackgroundContentRect
GetThemeMetric
GetThemeColor
SetWindowTheme
IsAppThemed
IsThemeActive

advapi32

RegCreateKeyExW
RegQueryInfoKeyW
GetTraceEnableLevel
ImpersonateSelf
GetTokenInformation
RegisterTraceGuidsW
ConvertStringSecurityDescriptorToSecurityDescriptorW
CryptGetHashParam
RegQueryValueW
GetUserNameW
RegOpenKeyExA
DuplicateTokenEx
RegCloseKey
RegQueryValueExW
RegDeleteValueA
RegQueryValueExA
GetLengthSid
CreateProcessAsUserW
TraceMessage
OpenThreadToken
RegSetValueExA
CryptDestroyHash
SetThreadToken
RegDeleteValueW
RegDeleteKeyA
IsTextUnicode
TraceEvent
RegEnumValueA
GetTraceEnableFlags
CryptAcquireContextW
RegSetValueExW
RegCreateKeyA
RegCreateKeyExA
UnregisterTraceGuids
CryptReleaseContext
GetTraceLoggerHandle
OpenProcessToken
RegDeleteKeyW
CryptCreateHash
RegOpenKeyExW
RegEnumKeyW
ConvertStringSidToSidW
SetTokenInformation
RegOpenCurrentUser
RegEnumValueW
ConvertSidToStringSidW
RegEnumKeyExW
CryptHashData
RegOpenKeyW

ddraw

DirectDrawCreate

gdi32

SetLayout
LineTo
SaveDC
GetTextAlign
CreateCompatibleDC
CreateDIBSection
GetGlyphIndicesW
SetWindowOrgEx
SetStretchBltMode
GetDIBits
DeleteEnhMetaFile
SetDCPenColor
GetBkMode
ExtTextOutW
StretchBlt
CreateFontIndirectW
BitBlt
TextOutW
CreateDCA
GetTextExtentPoint32A
CombineRgn
SetWindowExtEx
CreateSolidBrush
GetTextExtentPoint32W
SetViewportOrgEx
OffsetRgn
CreateRectRgn
CloseEnhMetaFile
SetTextAlign
SetBrushOrgEx
EqualRgn
GetTextMetricsW
GetBrushOrgEx
SetTextColor
CreateMetaFileW
PatBlt
IntersectClipRect
GetBkColor
GetDeviceCaps
CreateFontW
SetMapMode
SetViewportExtEx
GetClipBox
SetPaletteEntries
GetObjectA
SetBkColor
GetPaletteEntries
SetRectRgn
GetTextCharset
GetObjectW
CreateFontIndirectA
SelectObject
GetRegionData
TextOutA
CreatePolygonRgn
GetSystemPaletteEntries
CloseMetaFile
CreatePalette
GetLayout
SetBkMode
Rectangle
CreateDIBPatternBrushPt
LPtoDP
OffsetWindowOrgEx
GetTextExtentPointW
CreateEnhMetaFileA
SelectPalette
CreateRectRgnIndirect
CreateHalftonePalette
CreateBitmap
GetPixel
GetRgnBox
GetStockObject
PlayEnhMetaFile
GetDCOrgEx
CreateCompatibleBitmap
StretchDIBits
GetTextExtentExPointI
RealizePalette
MoveToEx
CreatePatternBrush
GetTextColor
DeleteObject
RestoreDC
DeleteDC
CreatePen
ExtCreateRegion
CreateDCW
RectVisible

shell32

SHBindToParent
ShellAboutW
SHGetDataFromIDListW
SHChangeNotify
ExtractIconExW
SHGetSpecialFolderLocation
ExtractAssociatedIconExW
SHGetFolderPathAndSubDirW
SHGetPathFromIDListA
Shell_NotifyIconW
SHPathPrepareForWriteW
SHGetSpecialFolderPathW
SHGetDesktopFolder
SHBrowseForFolderW
SHSetLocalizedName
SHGetFolderLocation
SHGetPathFromIDListW
SHCreateShellItem
Shell_NotifyIconA
ExtractIconW
SHFileOperationW
SHGetFileInfoW
SHGetFolderPathW
DragQueryFileW
SHGetInstanceExplorer
SHAppBarMessage
ShellExecuteA
ShellExecuteW
ShellExecuteExW

ntdll

RtlAdjustPrivilege
NtSetSystemEnvironmentValueEx
RtlAddAccessAllowedObjectAce
NtQuerySemaphore

psapi

GetProcessImageFileNameW

user32

EndPaint
CopyRect
SendMessageTimeoutA
IntersectRect
DrawIconEx
SetRectEmpty
PeekMessageW
DeleteMenu
CopyImage
GetDlgItem
IsDialogMessageW
GetMenuItemCount
GetTopWindow
GetLastActivePopup
SetMenu
SetClipboardViewer
DestroyWindow
MessageBoxExA
EnableWindow
EqualRect
GetFocus
CreatePopupMenu
IsRectEmpty
SendDlgItemMessageW
SendNotifyMessageW
AttachThreadInput
SetClipboardData
GetProcessWindowStation
wsprintfW
PostMessageW
GetKeyboardLayout
DispatchMessageW
SendMessageA
GetActiveWindow
GetCursor
CharNextA
DialogBoxIndirectParamA
IsWindow
WaitMessage
GetWindowLongA
DrawFocusRect
SetTimer
DdeClientTransaction
CharNextW
UpdateLayeredWindow
RegisterWindowMessageA
CreateDialogParamW
SetDlgItemTextW
EnumDisplaySettingsW
GetWindowRgnBox
CheckMenuRadioItem
GetScrollInfo
GetClipboardFormatNameW
SetWindowPos
SetWindowTextW
DefWindowProcA
CallNextHookEx
GetClassWord
MapDialogRect
RegisterClipboardFormatW
DestroyAcceleratorTable
MonitorFromWindow
EnableMenuItem
SetCursor
GetSystemMetrics
GetWindowPlacement
EnumChildWindows
GetMonitorInfoW
TrackMouseEvent
WinHelpW
ShowCaret
BeginPaint
CheckDlgButton
LoadAcceleratorsW
DdeDisconnect
RegisterClassExW
SetWindowsHookExW
CloseClipboard
EndDeferWindowPos
EndDialog
LoadIconW
DdeFreeStringHandle
SetWindowLongW
CopyIcon
InflateRect
SetCapture
TranslateMessage
DestroyIcon
IsIconic
InsertMenuItemW
GetMenuDefaultItem
LoadCursorW
GetSysColorBrush
GetKeyNameTextW
AllowSetForegroundWindow
UnregisterClassW
InvalidateRect
MessageBoxIndirectA
SetActiveWindow
RegisterClassW
GetClientRect
GetDoubleClickTime
GetSysColor
DispatchMessageA
MessageBeep
DdeUninitialize
TranslateAcceleratorW
SetFocus
MapVirtualKeyW
SetMenuItemBitmaps
LoadBitmapW
ShowWindow
DdeConnect
SetMenuItemInfoW
IsChild
TrackPopupMenu
GetMenuItemInfoA
CharLowerBuffW
DdeFreeDataHandle
GetSystemMenu
CharLowerW
AdjustWindowRectEx
SetRect
FindWindowW
GetIconInfo
AppendMenuW
GetPropA
DrawEdge
SetDlgItemInt
RemovePropW
SendMessageTimeoutW
GetClassNameW
EnumDesktopWindows
ReleaseCapture
CheckMenuItem
CharUpperW
GetMenuItemID
KillTimer
LoadStringA
DialogBoxIndirectParamW
AdjustWindowRect
GetCapture
GetClipboardData
IsHungAppWindow
IsMenu
GetAsyncKeyState
GetWindowThreadProcessId
LoadMenuW
IsCharAlphaNumericW
GetKeyState
WaitForInputIdle
GetPropW
SetScrollInfo
GetClassInfoW
GetMenuState
SystemParametersInfoA
SetWindowRgn
MessageBoxExW
OffsetRect
RemoveMenu
GetWindowInfo
SetParent
GetDlgCtrlID
GetSubMenu
RedrawWindow
CharPrevA
FindWindowExW
TrackPopupMenuEx
GetMenuItemInfoW
BeginDeferWindowPos
PostMessageA
HideCaret
ShowScrollBar
FillRect
SetMenuDefaultItem
LockSetForegroundWindow
MsgWaitForMultipleObjectsEx
ReleaseDC
PeekMessageA
LoadStringW
PostThreadMessageW
MessageBoxIndirectW
EmptyClipboard
ClientToScreen
IsDlgButtonChecked
SystemParametersInfoW
SetCursorPos
GetMessageW
PtInRect
MonitorFromRect
SetPropA
CheckRadioButton
GetShellWindow
CreateIconIndirect
GetMenuStringW
IsWindowEnabled
GetMessagePos
ChangeClipboardChain
GetForegroundWindow
WindowFromPoint
DrawFrameControl
UpdateWindow
GetWindowTextLengthW
EnumThreadWindows
AnimateWindow
RegisterClipboardFormatA
DialogBoxParamW
IsWindowVisible
VkKeyScanExW
SetScrollPos
GetWindowTextW
UnhookWindowsHookEx
GetWindow
GetWindowDC
LoadCursorA
OpenClipboard
GetDialogBaseUnits
CallMsgFilterW
DdeGetData
CharPrevW
RemovePropA
InsertMenuW
DialogBoxParamA
SetWindowLongA
CreateMenu
GetLastInputInfo
GetNextDlgTabItem
SetForegroundWindow
GetClassLongW
IsWindowUnicode
DefWindowProcW
DdeCreateDataHandle
GetDlgItemTextW
GetClassInfoExW
PostQuitMessage
DrawTextW
MoveWindow
GetMessageTime
SendMessageW
GetDesktopWindow
DrawTextExW
MessageBoxW
MapWindowPoints
DestroyMenu
UnionRect
GetParent
CreateWindowExW
GetComboBoxInfo
MsgWaitForMultipleObjects
ShowOwnedPopups
MonitorFromPoint
DdeCreateStringHandleW
DdeInitializeW
DdeNameService
SetPropW
PostThreadMessageA
EndMenu
FindWindowA
GetWindowRect
GetDC
GetMessageA
NotifyWinEvent
CallWindowProcW
DdeQueryStringW
ChildWindowFromPoint
GetAncestor
ScreenToClient
EnumWindows
GetCursorPos
LoadImageW
RegisterWindowMessageW
SetWindowPlacement
GetWindowLongW
DeferWindowPos

kernel32

VirtualAlloc

rtutils

TraceDumpExA
TraceDumpExW

Sections

.text
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

129ca80eca1e77bc0d0358db7d00b937

Headers

DLL Characteristics

File Characteristics

Imports

uxtheme

advapi32

ddraw

gdi32

shell32

ntdll

psapi

user32

kernel32

rtutils

Sections

.text Size: 1024B - Virtual size: 1016B

.idata Size: 12KB - Virtual size: 12KB

.data Size: 1KB - Virtual size: 360KB

.rsrc Size: 160KB - Virtual size: 160KB

.rdata Size: 8KB - Virtual size: 7KB

.text
Size: 1024B - Virtual size: 1016B

.idata
Size: 12KB - Virtual size: 12KB

.data
Size: 1KB - Virtual size: 360KB

.rsrc
Size: 160KB - Virtual size: 160KB

.rdata
Size: 8KB - Virtual size: 7KB