9350f26bf3caf44e4c0a996b690032440edb39313e8ef3a3d668c5c274ac6b78

Sharing

Copy URL Twitter E-mail

General

Target

9350f26bf3caf44e4c0a996b690032440edb39313e8ef3a3d668c5c274ac6b78
Size

280KB
MD5

b8e72d55ed2fa6726f996319a93725d7
SHA1

2e8ad34a7f1909d191f3832e5a2c56c2094550a4
SHA256

9350f26bf3caf44e4c0a996b690032440edb39313e8ef3a3d668c5c274ac6b78
SHA512

46e57c54728dc835bab71d021a32045ba16e4f5f0630089c86fbd4044587b82d3d5a4e1170f7ffeeb66f153d60736a85b7953d400e22f81b9ec41c11b7e896e7
SSDEEP

6144:aflnYcwrHlYz/oaI6Qdwz8Clnuo0KBaQYG:gn3wreoT6Q2zNIG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9350f26bf3caf44e4c0a996b690032440edb39313e8ef3a3d668c5c274ac6b78

Files

9350f26bf3caf44e4c0a996b690032440edb39313e8ef3a3d668c5c274ac6b78
.exe windows:4 windows x86 arch:x86

a95e4ce28fa3c80d78b2c3feb1760713

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
LoadLibraryA
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
CompareStringA
GetLastError
GetFileSize
GetFileInformationByHandle
GlobalAlloc
WriteFile
CloseHandle
GlobalFree
LocalAlloc
FreeLibrary
FileTimeToLocalFileTime
FileTimeToSystemTime
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
Sleep
LoadResource
LockResource
SizeofResource
SetEnvironmentVariableA
CreateFileA
SetStdHandle
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
GetOEMCP
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
LCMapStringA
GetTimeZoneInformation
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapSize
CreateThread
ExitThread
InterlockedDecrement
MulDiv
GlobalUnlock
GlobalLock
FreeResource
GetVersionExA
lstrlenA
GlobalDeleteAtom
GetCurrentThreadId
LocalFree
EnumResourceLanguagesW
GetVersion
ConvertDefaultLocale
GetCurrentThread
SetThreadPriority
ResumeThread
WaitForSingleObject
SetEvent
SuspendThread
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetCurrentProcess
FindClose
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
InterlockedIncrement
SetErrorMode
GetFileTime
RtlUnwind
HeapFree
HeapAlloc
ExitProcess
HeapReAlloc
TerminateProcess

advapi32

RegCloseKey

user32

EndDialog
GetNextDlgTabItem
IsWindowEnabled
GetDlgItem
DestroyWindow
SetActiveWindow
GetDesktopWindow
GetWindow
PtInRect
GetWindowPlacement
SystemParametersInfoA
SetWindowPos
GetDlgCtrlID
AdjustWindowRectEx
GetMenuItemID
GetSubMenu
GetMenu
IsWindowVisible
SetForegroundWindow
EndPaint
GetKeyState
MapWindowPoints
GetMessagePos
GetMessageTime
GetTopWindow
GetLastActivePopup
GetForegroundWindow
SetFocus
GetFocus
SendDlgItemMessageA
CallNextHookEx
CheckRadioButton
ShowWindow
GetMenuCheckMarkDimensions
CheckMenuItem
EnableMenuItem
GetMenuState
SetMenuItemBitmaps
PostQuitMessage
ValidateRect
TranslateMessage
DestroyMenu
GetSysColorBrush
GetClientRect
ReleaseDC
GetDC
GetSysColor
CopyRect
InflateRect
OffsetRect
FillRect
FrameRect
DrawFocusRect
ClientToScreen
ScreenToClient
InvalidateRect
RedrawWindow
GetActiveWindow
GetCapture
BeginPaint
UnhookWindowsHookEx
GetWindowRect
SetWindowRgn
SetCapture
GetParent
MessageBeep
GetSystemMetrics
UpdateWindow
KillTimer
SetTimer
IsIconic
GetSystemMenu
RemoveMenu
GetMenuItemCount
DrawIcon
IsWindow
SetCursor
ReleaseCapture
GetCursorPos
GetIconInfo
DestroyCursor
WindowFromPoint

gdi32

SelectClipRgn
MoveToEx
LineTo
GetClipBox
SetMapMode
CreatePen
GetDeviceCaps
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
CreateCompatibleDC
BitBlt
CreateCompatibleBitmap
CreateRectRgn
CombineRgn
GetPixel
GetStockObject
SetDIBits
CreateDIBSection
GetDIBits
DeleteObject
DeleteDC
SetTextColor
SetBkColor
SelectObject
CreateBitmap
CreateSolidBrush
PtVisible
RectVisible
Escape
SetBkMode
RestoreDC
SaveDC

comdlg32

CommDlgExtendedError

comctl32

ord17

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW

ole32

CoInitializeEx
CoTaskMemFree
CoUninitialize
CoCreateInstance

oleaut32

VariantInit
VariantChangeType
VariantClear

winspool.drv

ClosePrinter

Sections

.text
Size: 180KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a95e4ce28fa3c80d78b2c3feb1760713

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

comdlg32

comctl32

shlwapi

ole32

oleaut32

winspool.drv

Sections

.text Size: 180KB - Virtual size: 176KB

.rdata Size: 48KB - Virtual size: 46KB

.data Size: 12KB - Virtual size: 58KB

.rsrc Size: 36KB - Virtual size: 34KB

.text
Size: 180KB - Virtual size: 176KB

.rdata
Size: 48KB - Virtual size: 46KB

.data
Size: 12KB - Virtual size: 58KB

.rsrc
Size: 36KB - Virtual size: 34KB