bc57c737d9ff2e5e80c8387d4b8f4972

Sharing

Copy URL Twitter E-mail

General

Target

bc57c737d9ff2e5e80c8387d4b8f4972
Size

472KB
MD5

bc57c737d9ff2e5e80c8387d4b8f4972
SHA1

913d2628c5ba40aeaee169f8fea54c23f839efe1
SHA256

23119555be255cc9ff46e1ddd7654769ec6576f20b446a0d3e9c97cadc6be6cc
SHA512

2520e879e4305908a49f197e46718a64b0cb70e466c3fd96bc593555f037aa2a948beeec8b457a9ec0c9128ae04d7ad9c02fccf7b28a6d49cd6aca08cacd3fc5
SSDEEP

12288:OkjSkP9SOlmXOkaUGnqvCPO3ptgaFpkHe:SioekDGqEOpaaFpkHe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc57c737d9ff2e5e80c8387d4b8f4972

Files

bc57c737d9ff2e5e80c8387d4b8f4972
.exe windows:4 windows x86 arch:x86

f8ae212368323878e4cd524c426d6148

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ExtractIconA
ExtractIconW

user32

PostMessageA
IsWindowVisible
GetDlgItemTextA
TranslateAcceleratorA
InsertMenuW
SendDlgItemMessageW
SystemParametersInfoA
CreateWindowExW
SetWindowRgn
VkKeyScanW
IsDialogMessageA
CharNextW
GetSubMenu
UnregisterClassA
GetUpdateRgn
DestroyWindow
CreateDialogParamA
TrackPopupMenu
DrawFocusRect
LoadStringA
MessageBoxIndirectW
LoadCursorA
IsIconic
DialogBoxIndirectParamW
EqualRect
MessageBoxIndirectA
SetRect
ModifyMenuA
IsWindow
SetWindowsHookExW
GetMenuStringW
KillTimer
UnhookWindowsHookEx
GetActiveWindow
GetIconInfo
CreateAcceleratorTableW
AdjustWindowRect
ModifyMenuW
GetForegroundWindow
ShowWindow
DestroyCursor
GetCapture
TranslateAcceleratorW
GetClipboardFormatNameA
DrawTextA
SetPropW
GetWindowTextA
GetWindowLongA
InvalidateRect
GetDlgItem
SetRectEmpty
CallNextHookEx
IsRectEmpty
GetPropW
SetWindowsHookExA
GetDlgItemTextW
CreateIconIndirect
ShowCaret
DestroyAcceleratorTable
MessageBoxW
SetWindowPos
LoadMenuW
GetCursor
GetWindow
CheckMenuItem
InvalidateRgn
GetDialogBaseUnits
DeleteMenu
DefWindowProcW
GetClassNameW
FindWindowW
DialogBoxParamA
GetAsyncKeyState
RegisterClassA
GetCursorPos
PeekMessageW
GetSystemMetrics
LockWindowUpdate
DeferWindowPos
GetClassInfoA
SetCursor
DispatchMessageW
PostMessageW
IsDlgButtonChecked
ReleaseDC
RegisterClipboardFormatW
RegisterWindowMessageW
ActivateKeyboardLayout
BringWindowToTop
CharPrevW
SetWindowTextA
AppendMenuW
LoadIconA
ValidateRect
SetWindowLongA
CharUpperW
BeginPaint
EndDeferWindowPos
EnableMenuItem
InflateRect
CallWindowProcA
GetClipboardFormatNameW
GetClassNameA
SetWindowTextW
WindowFromPoint
EnumWindows
ClipCursor
GetMessageA
SetPropA
GetDCEx
VkKeyScanA
FillRect
InvertRect
GetWindowDC
EnableWindow
SetCapture
GetKeyboardLayout
WinHelpA
GetUpdateRect
GetFocus
UnregisterClassW
SubtractRect
GetClientRect
SystemParametersInfoW
SetFocus
CopyImage
ChildWindowFromPointEx
SetWindowLongW
LoadStringW
CharLowerW
BeginDeferWindowPos
GetPropA
CopyAcceleratorTableW
FindWindowA
RegisterClipboardFormatA
IsChild
DispatchMessageA
SetTimer
GetMessageW
InsertMenuA
LoadIconW
GetWindowTextW
DrawFrameControl
RegisterWindowMessageA
GetMessagePos
PeekMessageA
GetDoubleClickTime
SetCaretPos
RegisterClassW
SendMessageA
ReleaseCapture
GetSysColor
WinHelpW
ClientToScreen
GetDC
ScrollWindowEx
GetParent
IsDialogMessageW
SetDlgItemTextA
CallWindowProcW
PtInRect
SendMessageW
RedrawWindow
CreateWindowExA
SetDlgItemTextW
LoadCursorW
GetWindowRect
wvsprintfA
RemovePropW
GetMenuItemID
GetMenuStringA
GetKeyboardLayoutList
CheckDlgButton
GetKeyState
GetClassInfoW
EndPaint
LoadMenuA
MoveWindow
CharLowerA
LoadBitmapW
CreateAcceleratorTableA
wvsprintfW
ScreenToClient
DrawTextW
LoadAcceleratorsA
GetWindowTextLengthA
RemovePropA
CharUpperA
GetWindowThreadProcessId
DialogBoxParamW
HideCaret
MapWindowPoints
EnumChildWindows
IntersectRect
GetMessageTime
LoadBitmapA
OffsetRect
AppendMenuA
GetMenuItemCount
DialogBoxIndirectParamA
CreateCaret
GetWindowTextLengthW
DestroyMenu
UpdateWindow
CreateDialogParamW
DefWindowProcA
EndDialog
CopyAcceleratorTableA
ScrollDC
GetWindowLongW
LoadAcceleratorsW

rpcrt4

RpcStringFreeW

gdi32

CreateICA
CreateICW
SetPixelV
SetViewportExtEx
SelectPalette
LPtoDP
CreateSolidBrush
OffsetRgn
RealizePalette
GetClipRgn
CreateMetaFileA
GetCurrentObject
GetDeviceCaps
CreatePatternBrush
CreateBitmap
SetViewportOrgEx
EnumFontFamiliesW
CombineRgn
GetWindowOrgEx
Rectangle
CreateDCW
RectVisible
UnrealizeObject
ExtTextOutA
SetPixel
SetMapMode
GetTextFaceA
ExtTextOutW
LineTo
PolylineTo
CreateFontIndirectW
GetROP2
SetBrushOrgEx
SetWindowOrgEx
GetMapMode
GetRegionData
SetTextColor
SaveDC
GetWindowExtEx
SetROP2
CreatePen
ExcludeClipRect
DeleteDC
SetStretchBltMode
GetPaletteEntries
SetBkColor
GetStockObject
CreatePalette
BitBlt
GetTextExtentPoint32W
GetObjectW
SelectClipRgn
GetTextMetricsW
CreateHatchBrush
CloseMetaFile
CreateFontIndirectA
CreateDCA
CreateCompatibleDC
GetTextFaceW
SetWindowExtEx
GetPixel
CreateRectRgn
MoveToEx
GetTextMetricsA
StretchBlt
DeleteObject
CreateCompatibleBitmap
GetObjectType
PlayMetaFile
DeleteMetaFile
EnumFontFamiliesA
GetTextExtentPoint32A
RestoreDC
IntersectClipRect
GetNearestColor
GetBkColor
GetClipBox
CreateRectRgnIndirect
PatBlt
SetBkMode
GetObjectA
SelectObject

advapi32

CredRenameW
BuildTrusteeWithNameA
RegSetValueW
RegSetValueA
ConvertSidToStringSidA
RegDeleteKeyW
RegFlushKey
RegEnumKeyExA
RegQueryValueA
RegCreateKeyA
ControlTraceA
RegOpenKeyW
RegEnumKeyExW
RegQueryValueW
RegOpenKeyA
CancelOverlappedAccess
RegEnumKeyW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
CreateServiceW
RegSetValueExA
RegDeleteKeyA

comdlg32

ChooseFontA
CommDlgExtendedError
ChooseColorA
GetOpenFileNameW
ChooseColorW
ChooseFontW
GetOpenFileNameA
GetSaveFileNameW
GetSaveFileNameA

ole32

CoRegisterMessageFilter
OleSaveToStream
ProgIDFromCLSID
StringFromCLSID
CoCreateGuid
CreateItemMoniker
OleFlushClipboard
WriteClassStm
WriteFmtUserTypeStg
ReadClassStg
StgOpenStorage
OleQueryLinkFromData
StgCreateDocfile
RevokeDragDrop
OleIsCurrentClipboard
OleCreateLinkFromData
RegisterDragDrop
CoTaskMemAlloc
OleRun
IIDFromString
OleQueryCreateFromData
WriteClassStg
OleSetClipboard
OleDraw
CoGetClassObject
OleCreateStaticFromData
OleSave
CreateOleAdviseHolder
StringFromGUID2
CoCreateInstance
GetRunningObjectTable
ReadClassStm
CreateDataAdviseHolder
OleGetClipboard
CLSIDFromString
CreateILockBytesOnHGlobal
ReleaseStgMedium
CreateStreamOnHGlobal
StgCreateDocfileOnILockBytes
OleGetIconOfClass
CreateDataCache
CLSIDFromProgID
OleCreateFromData
DoDragDrop
CreateBindCtx
CoTaskMemFree

kernel32

TlsFree
SearchPathW
GetFileAttributesW
GetSystemDirectoryW
OutputDebugStringW
Sleep
HeapReAlloc
GetLocaleInfoA
GlobalAlloc
lstrlenW
HeapCreate
IsValidLocale
ExitProcess
LCMapStringW
GetCurrentThreadId
SetLastError
GetUserDefaultLangID
GetProcAddress
HeapSize
GetSystemDirectoryA
GetSystemTimeAsFileTime
GetCurrentProcess
LoadResource
CreateDirectoryW
GetCurrentProcessId
GetCurrentDirectoryW
CompareStringW
GetEnvironmentVariableW
GetModuleHandleW
SetFilePointer
GlobalSize
TlsGetValue
WriteFile
TlsAlloc
SetEndOfFile
WriteConsoleW
FreeEnvironmentStringsA
GetConsoleCP
GlobalUnlock
MultiByteToWideChar
GlobalFree
GlobalLock
CloseHandle
OutputDebugStringA
FormatMessageW
_lwrite
GetOEMCP
FreeEnvironmentStringsW
GetACP
MulDiv
GetModuleHandleA
FreeResource
OpenFile
SetCurrentDirectoryA
GetCPInfo
LeaveCriticalSection
GetCommandLineA
GetSystemDefaultLCID
GetWindowsDirectoryA
GetFileType
GetLocaleInfoW
EnterCriticalSection
CreateDirectoryA
SearchPathA
FindResourceW
GetModuleFileNameA
TerminateProcess
LCMapStringA
LockResource
IsDBCSLeadByte
GetEnvironmentStringsW
GetVersionExA
EnumSystemLocalesA
FreeLibrary
HeapDestroy
SetUnhandledExceptionFilter
_lclose
_llseek
GetProcessHeap
FindFirstFileA
GetStringTypeW
InitializeCriticalSection
GetModuleFileNameW
FormatMessageA
CreateFileA
TlsSetValue
DeleteFileW
FindResourceA
WideCharToMultiByte
VirtualFree
GetConsoleOutputCP
VirtualAlloc
GetFullPathNameW
HeapAlloc
CreateFileW
GetConsoleMode
UnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
LoadLibraryExA
GetFileAttributesA
_lread
IsValidCodePage
GetStringTypeA
SetCurrentDirectoryW
GetStartupInfoA
InterlockedIncrement
GetLastError
HeapFree
GetWindowsDirectoryW
DeleteCriticalSection
WriteConsoleA
GetStdHandle
CompareStringA
LoadLibraryExW
SetHandleCount
GetFullPathNameA
FindFirstFileW
GetProfileIntA
SizeofResource
GetEnvironmentStrings
GetUserDefaultLCID
LoadLibraryA
IsDebuggerPresent
GetCurrentDirectoryA
GetSystemInfo
RtlUnwind
InterlockedDecrement

ntdll

NtUnloadDriver
NtAllocateVirtualMemory

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 960KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 351KB - Virtual size: 351KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8ae212368323878e4cd524c426d6148

Headers

File Characteristics

Imports

shell32

user32

rpcrt4

gdi32

advapi32

comdlg32

ole32

kernel32

ntdll

Sections

.text Size: 18KB - Virtual size: 18KB

.data Size: 77KB - Virtual size: 960KB

.rsrc Size: 23KB - Virtual size: 23KB

.rdata Size: 351KB - Virtual size: 351KB

.reloc Size: 512B - Virtual size: 36B

.text
Size: 18KB - Virtual size: 18KB

.data
Size: 77KB - Virtual size: 960KB

.rsrc
Size: 23KB - Virtual size: 23KB

.rdata
Size: 351KB - Virtual size: 351KB

.reloc
Size: 512B - Virtual size: 36B