b68b975556de8ef75eb75f399d4d110c

Sharing

Copy URL

Twitter E-mail

General

Target

b68b975556de8ef75eb75f399d4d110c
Size

548KB
MD5

b68b975556de8ef75eb75f399d4d110c
SHA1

55284730c447ccad1bfa2ae6ee17afdc47448017
SHA256

28b55f54da3b83c3073dd90bee349019743536a52c117d8f939cf386d03d4739
SHA512

5a0a1aa15c8d6dcffbd00b4b720101b76a44209ea3563e4e9b72272e33f0417d6acc6c0820270b0eb0308a79afbbf3085aa8638c07a56606354c5e8c8248ebcd
SSDEEP

12288:qSMMnMMMMMtwa5EZYfpmveKaaMn42AvSPk2rCUQJ7x5Jev5r9LZbjDQec8:qSMMnMMMMMtBsYfpoaau45acTUqfJCFV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b68b975556de8ef75eb75f399d4d110c

Files

b68b975556de8ef75eb75f399d4d110c
.exe windows:4 windows x86 arch:x86

7d4df09518e3a61c22bf8464ecc1c086

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextExtentPointW
SetPixel
FillRgn
GetTextCharsetInfo
SetWindowOrgEx
CreatePatternBrush
CreateHalftonePalette
CreateBitmap
PatBlt
GetDeviceCaps
Rectangle
TranslateCharsetInfo
GetTextExtentPoint32W
OffsetWindowOrgEx
SaveDC
CreatePen
CreateDIBSection
GetViewportExtEx
GetTextColor
SetDIBColorTable
LineTo
StretchBlt
BitBlt
CreateBitmapIndirect
SetDIBits
CombineRgn
GetPixel
Polyline
SelectPalette
IntersectClipRect
CreatePolygonRgn
GetWindowExtEx
TextOutW
GetTextExtentPointA
GetCharWidthW
RealizePalette
CreateCompatibleBitmap
RectVisible
DeleteObject
ExtTextOutA
CreateRectRgn
GetDIBColorTable
UnrealizeObject
SetBkColor
SetTextColor
GetCurrentObject
CreateSolidBrush
CreateRoundRectRgn
SetBkMode
EnumFontFamiliesExW
FrameRgn
GetNearestColor
GetStockObject
SetBrushOrgEx
GetClipRgn
CreateCompatibleDC
RestoreDC
GetClipBox
GetCharWidthA
CreateRectRgnIndirect
OffsetRgn
GetBitmapBits
GetTextAlign
Arc
CreateFontW
MoveToEx
MaskBlt
GetTextMetricsW
GetDIBits
Ellipse
CreatePalette
GetBkColor
SelectClipRgn
CreateFontIndirectW
DeleteDC
StretchDIBits
SelectObject
ExtSelectClipRgn
SetPixelV
GetObjectW
ExtTextOutW
GetDCOrgEx
ExcludeClipRect
SetTextAlign
GetPaletteEntries

atl

AtlModuleRegisterClassObjects

kernel32

GetCPInfo
VirtualAlloc
GetACP
TlsAlloc
HeapCreate
LocalAlloc
lstrlenW
GetCurrentProcessId
InterlockedIncrement
CreateFileW
InterlockedExchange
CreateThread
SetLastError
SetStdHandle
GlobalUnlock
GetSystemTimeAsFileTime
CreateEventW
GetLocalTime
LoadLibraryA
Sleep
lstrcmpiW
TlsFree
GetModuleFileNameA
GetEnvironmentStringsW
HeapFree
ExitProcess
IsBadWritePtr
MultiByteToWideChar
FreeResource
DisableThreadLibraryCalls
CompareStringA
GetCommandLineA
lstrlenA
GetModuleHandleW
GlobalAlloc
GetTickCount
FreeEnvironmentStringsA
CompareStringW
HeapAlloc
GetModuleFileNameW
UnhandledExceptionFilter
InterlockedDecrement
FlushFileBuffers
GetStdHandle
CloseHandle
DeleteCriticalSection
TerminateProcess
lstrcmpA
HeapDestroy
SetHandleCount
SetEvent
LCMapStringA
WriteFile
EnterCriticalSection
GetWindowsDirectoryW
TlsSetValue
VirtualProtect
GetModuleHandleA
GetDateFormatW
LoadResource
lstrcmpiA
SizeofResource
HeapReAlloc
InitializeCriticalSection
MapViewOfFile
GetStringTypeW
SetFilePointer
GlobalAddAtomW
LCMapStringW
LeaveCriticalSection
GetVersionExA
VirtualQuery
SetUnhandledExceptionFilter
WaitForSingleObject
FindResourceExW
LocalSize
UnmapViewOfFile
GetFileSize
GetLocaleInfoW
GetCurrentProcess
FindResourceW
WideCharToMultiByte
InterlockedCompareExchange
LockResource
FreeLibrary
GetLocaleInfoA
CreateFileMappingW
GetSystemInfo
GetStringTypeExW
GetSystemDefaultLCID
EnumResourceLanguagesW
MulDiv
GetThreadLocale
GetProcAddress
IsBadReadPtr
QueryPerformanceCounter
EnumCalendarInfoW
lstrcpynW
GetLastError
GetTimeFormatW
GetCurrentThreadId
lstrcmpW
GetFileType
GetUserDefaultLangID
TlsGetValue
LoadLibraryW
FindResourceExA
FreeEnvironmentStringsW
LocalFree
LocalReAlloc
GetStartupInfoA
GlobalHandle
GetEnvironmentStrings
GetNumberFormatW
GetStringTypeA
GlobalFree
GetProcessHeap
GlobalReAlloc
VirtualFree
GetUserDefaultLCID
GetOEMCP

ntdll

RtlAddAuditAccessAce

advapi32

RegQueryValueExA
OpenProcessToken
RegCloseKey
RegOpenKeyExW
RegOpenCurrentUser
RegCreateKeyExW
RegOpenKeyExA
FreeSid
RegSetValueExW
RegQueryValueExW
CheckTokenMembership
RegCreateKeyW
RegQueryValueW
AllocateAndInitializeSid

user32

WinHelpW
LoadStringW
GetKeyboardState
InvalidateRect
EnableWindow
MapWindowPoints
GetPropW
GetSysColorBrush
GetThreadDesktop
GetScrollPos
CopyImage
DrawIcon
GetClientRect
EnableScrollBar
GetDesktopWindow
SetWindowTextW
SetCapture
DrawFocusRect
IsChild
GetIconInfo
KillTimer
ClientToScreen
SubtractRect
GetMenu
GetShellWindow
GrayStringW
OpenDesktopW
AdjustWindowRect
MoveWindow
GetWindowLongW
GetNextDlgTabItem
GetMenuItemCount
GetWindowRgn
SendMessageW
CopyRect
GetWindowLongA
IsZoomed
ReleaseDC
SendDlgItemMessageW
UnregisterClassW
EqualRect
GetScrollInfo
SetMenu
AdjustWindowRectEx
WindowFromPoint
ShowScrollBar
SetPropW
GetWindowTextW
UpdateWindow
GetWindow
CreateDialogIndirectParamA
EndDeferWindowPos
GetAsyncKeyState
BeginDeferWindowPos
IsWindowEnabled
MapVirtualKeyW
CreateDialogIndirectParamW
RedrawWindow
GetDC
GetWindowThreadProcessId
SetWindowPos
GetFocus
CreateIconIndirect
WaitMessage
SetRectEmpty
CreateWindowExA
CreatePopupMenu
RemovePropW
IsWindowVisible
SetScrollRange
CharPrevW
DefWindowProcW
AppendMenuW
SetCaretPos
DestroyMenu
GetParent
OffsetRect
SetCursor
TranslateMessage
SystemParametersInfoW
GetCaretBlinkTime
CallWindowProcW
SetRect
GetDCEx
EndPaint
GetProcessWindowStation
GetWindowRect
ScrollWindowEx
CloseDesktop
DrawTextW
IsWindow
SetThreadDesktop
IsRectEmpty
IntersectRect
DestroyCursor
SetScrollInfo
SystemParametersInfoA
MapDialogRect
SetCursorPos
PtInRect
ScreenToClient
GetMessageW
IsDialogMessageW
SetActiveWindow
GetKeyState
CreateWindowExW
PeekMessageW
ReleaseCapture
GetUpdateRect
SetWindowLongW
InvalidateRgn
DialogBoxIndirectParamW
CharLowerW
EndDialog
DrawIconEx
PostMessageW
SetLastErrorEx
GetDoubleClickTime
GetActiveWindow
ShowWindow
CheckMenuItem
GetScrollRange
SetScrollPos
DrawTextExW
HideCaret
SetWindowRgn
GetSystemMenu
BeginPaint
LoadImageW
GetMenuItemID
GetMessagePos
GetKeyNameTextW
TrackPopupMenu
DrawFrameControl
SetParent
EnumDesktopsW
InvertRect
CallMsgFilterW
EnumWindows
RegisterClassW
DrawEdge
FillRect
LoadCursorW
GetSysColor
ChildWindowFromPoint
GetSystemMetrics
GetCursorPos
SetKeyboardState
GetSubMenu
SetDlgItemTextW
CreateCaret
DestroyCaret
CopyIcon
GetDlgItem
GetCapture
FrameRect
RegisterWindowMessageW
IsIconic
GetUpdateRgn
GetMenuState
GetWindowPlacement
DestroyIcon
SetWindowTextA
LockWindowUpdate
PostQuitMessage
InflateRect
SendNotifyMessageW
UnionRect
GetMenuItemInfoW
EnumChildWindows
GetForegroundWindow
DestroyWindow
MessageBeep
LoadIconW
SetForegroundWindow
DispatchMessageW
GetWindowTextLengthW
SetFocus
ShowCaret
GetDlgCtrlID
ValidateRect
GetCursor
SetTimer
GetKeyboardLayout
GetClassNameW
DeferWindowPos
GetMessageTime
GetWindowDC

ddraw

DirectDrawCreate

Sections

.text
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d4df09518e3a61c22bf8464ecc1c086

Headers

File Characteristics

Imports

gdi32

atl

kernel32

ntdll

advapi32

user32

ddraw

Sections

.text Size: 4KB - Virtual size: 928B

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 2.0MB

.idata Size: 12KB - Virtual size: 10KB

.rsrc Size: 512KB - Virtual size: 508KB

.text
Size: 4KB - Virtual size: 928B

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 2.0MB

.idata
Size: 12KB - Virtual size: 10KB

.rsrc
Size: 512KB - Virtual size: 508KB