a5efc372470635400b4e45d9432f3aad23abde4720fefa45732e06e8c4877bcd

Sharing

Copy URL Twitter E-mail

General

Target

a5efc372470635400b4e45d9432f3aad23abde4720fefa45732e06e8c4877bcd
Size

142KB
MD5

5c6c2a97a4ac74b1640f03a4d354d2f6
SHA1

5e8a61b9b350cfabeef13c670c2df086e01b1e15
SHA256

a5efc372470635400b4e45d9432f3aad23abde4720fefa45732e06e8c4877bcd
SHA512

16950953dc2250328594b454db228a7698d09ca34017c963c84629c1e673316b7fd080f31e5c62d22cc97c3708a4de04b37aa44758a8516d0cbbbc121a5511f4
SSDEEP

3072:Jv40qONDf+Lucdg4zmMHtj/ugodqcnQDwfgDA:JRYlzmi/F0q8QDFs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5efc372470635400b4e45d9432f3aad23abde4720fefa45732e06e8c4877bcd

Files

a5efc372470635400b4e45d9432f3aad23abde4720fefa45732e06e8c4877bcd
.dll windows:4 windows x86 arch:x86

5dffc4a4f3041ceab039522084fdc657

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadResource
FileTimeToSystemTime
MultiByteToWideChar
SetErrorMode
QueryPerformanceCounter
FindFirstFileW
GetThreadLocale
GetDateFormatW
GetEnvironmentStrings
FindResourceW
SetProcessWorkingSetSize
SetFilePointerEx
GetTempFileNameW
lstrlenA
SetCurrentDirectoryW
GetFileTime
CreatePipe
FindNextFileW
CreateMutexW
ReleaseSemaphore
InitializeCriticalSection
GetCurrentDirectoryA
GetStringTypeW
FormatMessageW
FreeEnvironmentStringsW
WriteConsoleA
GetDriveTypeW
GetCommandLineA
WideCharToMultiByte
CompareStringW
CreateThread
VirtualFree
CreateFileA
LockResource
DeviceIoControl
ReadFile
WriteConsoleW
GetStringTypeA
MapViewOfFile
FindClose
SizeofResource
SetEvent
GetCurrentDirectoryW
GetACP
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
TlsAlloc
GlobalAddAtomW
GetLocalTime
GetFileAttributesExW
CreateDirectoryW
GetVolumeInformationW
GetConsoleMode
GetCurrentThread
GetSystemInfo
CopyFileW
GetFileAttributesW
SetHandleCount
DeleteCriticalSection
UnmapViewOfFile
SystemTimeToFileTime
CreateEventW
TlsGetValue
WaitForSingleObject
GetOEMCP
HeapSize
Sleep
MoveFileW
RtlUnwind
TlsSetValue
GetComputerNameA
LocalFileTimeToFileTime
GetTimeZoneInformation
FreeResource
ExitThread
SetFilePointer
GetModuleFileNameA
ConvertDefaultLocale
SetFileTime
GlobalGetAtomNameW
GetExitCodeThread
TlsFree
LockFile
GetFileInformationByHandle
HeapCreate
GlobalDeleteAtom
GetSystemTime
GetConsoleCP
UnlockFile
OpenProcess
GetDiskFreeSpaceExW
GetExitCodeProcess
HeapDestroy
GetFullPathNameW
GetEnvironmentStringsW
GetStartupInfoA
FileTimeToLocalFileTime
GetDriveTypeA
GlobalHandle
GetCPInfo
GetStartupInfoW
SetStdHandle
FormatMessageA
SetEndOfFile
GetConsoleOutputCP
GetLogicalDrives
GetLocaleInfoW
GetSystemPowerStatus
ExpandEnvironmentStringsW
RemoveDirectoryW
GetCurrentProcessId
GetVersion
CloseHandle
GlobalFindAtomW
CreateFileW
GetModuleFileNameW
GetProcessHeap
GetTickCount
GetCurrentProcess
GetCommandLineW
GetStdHandle
ExitProcess

user32

LoadAcceleratorsW
EndDeferWindowPos
GetCapture
GetSystemMenu
SetRect
ReleaseCapture
GetLastActivePopup
IsDialogMessageW
GetIconInfo
SetFocus
SetMenuItemInfoW
PeekMessageW
CreateDialogIndirectParamW
IsWindowEnabled
GetFocus
PtInRect
FillRect
LoadIconW
GetComboBoxInfo
DialogBoxIndirectParamW
GetWindowLongW
GetMenu
SetRectEmpty
GetAsyncKeyState
InsertMenuW
PostThreadMessageW
GetTopWindow
DragDetect
DefWindowProcW
GetDoubleClickTime
EnumClipboardFormats
UpdateWindow
GetClassLongW
GetClassNameW
CreateWindowExW
SetLayeredWindowAttributes
DeferWindowPos
GetWindowTextLengthW
SendMessageW
ShowWindow
GetWindowDC
WindowFromPoint
SetCaretPos
GrayStringW
MapVirtualKeyExW
MoveWindow
ModifyMenuW
TrackMouseEvent
GetCaretBlinkTime
FrameRect
GetSysColorBrush
VkKeyScanExW
RegisterWindowMessageW
DrawEdge
UnregisterHotKey
CreateCaret
SetForegroundWindow
DrawFrameControl
TranslateMessage
TrackPopupMenuEx
SetWindowPos
CharPrevW
GetMenuState
SetWindowsHookExW
LoadMenuW
GetClassInfoW
SetPropW
BeginDeferWindowPos
MessageBeep
EndPaint
SetCursor
SendDlgItemMessageA
DestroyCaret
MessageBoxW
DispatchMessageW
DeleteMenu
SetMenuItemBitmaps
UpdateLayeredWindow
GetScrollInfo
FindWindowW
GetDlgItem
InflateRect
CheckDlgButton
SetWindowTextW
GetMessagePos
TabbedTextOutW
KillTimer
GetSystemMetrics
SendDlgItemMessageW
GetKeyState
GetMenuItemCount
SetCapture
RegisterClassW
EndDialog
EnumDisplayMonitors
GetNextDlgTabItem
GetMenuCheckMarkDimensions
CallNextHookEx
GetSysColor
GetPropW
EnableMenuItem
RegisterClassExW
GetWindow
ReuseDDElParam
OffsetRect
UnregisterClassW
DrawIcon
AdjustWindowRectEx
GetMessageW
CheckMenuItem
InsertMenuItemW
GetParent
GetWindowPlacement
CharNextW
GetKeyboardLayout
SystemParametersInfoW
TrackPopupMenu
MsgWaitForMultipleObjects
CreatePopupMenu
EmptyClipboard
IsWindowVisible
GetSubMenu
PostQuitMessage
RegisterHotKey
ShowOwnedPopups
CharUpperW
ReleaseDC
SetActiveWindow
UnhookWindowsHookEx
IsIconic
ValidateRect
DrawTextW
DestroyMenu
UnpackDDElParam
AllowSetForegroundWindow
LoadCursorW
PostMessageW
WinHelpW
RegisterClipboardFormatW
TranslateAcceleratorW
RedrawWindow
CloseClipboard
ClientToScreen
IsRectEmpty
LoadBitmapW
RemoveMenu
SystemParametersInfoA
SetTimer
MonitorFromRect
OpenClipboard
EqualRect
IsWindow
BringWindowToTop
GetCursorPos
UnregisterClassA
GetWindowTextW
GetDC
DestroyIcon
GetMenuItemID
IntersectRect
GetMenuItemInfoW
SetClipboardData
InSendMessage
GetClassInfoExW
LoadStringW
GetDialogBaseUnits
SetParent
RemovePropW
GetMonitorInfoW
CallWindowProcW
GetActiveWindow
SetWindowLongW
AppendMenuW
GetClipboardData
MapWindowPoints
GetDesktopWindow
InvalidateRect
GetClientRect
GetMenuStringW
GetDlgCtrlID
CopyRect
DrawTextExW
DrawFocusRect
BeginPaint
ScreenToClient
GetCaretPos
GetMessageTime
EnableWindow
SetMenu
DestroyWindow
CharUpperA
SendMessageA
GetWindowRect

gdi32

CreateBitmap
SetPixelV
GetFontData
CreatePalette
ModifyWorldTransform
GetBkColor
Polygon
GetPixel
GetStockObject
SetViewportExtEx
SetGraphicsMode
CreateCompatibleBitmap
Escape
GetTextExtentPoint32W
OffsetViewportOrgEx
GetCharacterPlacementW
CreateSolidBrush
RealizePalette
SetMapMode
CreateFontW
GetGlyphOutlineW
DeleteDC
SetPolyFillMode
PtVisible
CreatePen
SelectClipRgn
Ellipse
GetObjectW
GdiFlush
TextOutW
SetTextColor
BitBlt
GetOutlineTextMetricsA
SetBrushOrgEx
SetTextAlign
GetDeviceCaps
GetClipRgn
SelectPalette
CreateDCW
RectVisible
ScaleWindowExtEx
ScaleViewportExtEx
SetViewportOrgEx
ExtCreateRegion
CreateRectRgn
CombineRgn
SetBkColor
EnumFontFamiliesExW
ExtTextOutW
GetBrushOrgEx
CreatePatternBrush
CreateFontIndirectW
CreateCompatibleDC
Rectangle
GetDIBits
SelectObject
SetWorldTransform
SetWindowExtEx
GetTextMetricsA
GetClipBox
RestoreDC
SaveDC
DeleteObject
SetBkMode
CreateDIBSection

comdlg32

GetSaveFileNameW
GetFileTitleW
CommDlgExtendedError

advapi32

RegEnumKeyW
RegCreateKeyExW
OpenThreadToken
RegQueryValueExW
RegOpenKeyW
RegSetValueExW
CryptHashData
LookupPrivilegeValueW
RegQueryInfoKeyW
CryptCreateHash
RegOpenKeyExW
RegQueryValueExA
CryptReleaseContext
RegOpenKeyExA
RegDeleteValueW
OpenProcessToken
CryptVerifySignatureW
RegEnumKeyExW
CryptAcquireContextW
CryptDestroyKey
RegCloseKey
GetUserNameA
RegRestoreKeyW
RegCreateKeyW
RegQueryValueW
CryptGetUserKey
CryptDestroyHash
RegOpenKeyA
RegDeleteKeyW

shell32

SHBrowseForFolderW
SHQueryRecycleBinW
SHEmptyRecycleBinW
SHCreateDirectoryExW
SHGetFolderLocation
DragFinish
ExtractIconExW
SHGetPathFromIDListW
DragQueryFileW
Shell_NotifyIconW
SHFileOperationW
SHGetMalloc
CommandLineToArgvW
SHGetDesktopFolder

ole32

CLSIDFromProgID
OleSetContainedObject
CreateStreamOnHGlobal
StringFromGUID2
CoInitialize
CoUninitialize
RegisterDragDrop
OleInitialize
CoTaskMemRealloc
CoCreateInstanceEx
CoCreateGuid
RevokeDragDrop
OleLockRunning
CoTaskMemFree
CoLockObjectExternal
CoRevokeClassObject
CLSIDFromString
CoTaskMemAlloc
CoCreateInstance
CoRegisterClassObject

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime
VariantChangeType
VarUI4FromStr
SafeArrayGetElement
SafeArrayDestroy
SysFreeString
RegisterTypeLi
VariantClear
SafeArrayCopy
LoadTypeLi
LoadRegTypeLi
SafeArrayGetLBound
SafeArrayGetUBound
VariantInit
SysAllocString
SysStringLen
UnRegisterTypeLi
SafeArrayGetVartype
SafeArrayGetDim

winmm

mixerClose
mixerGetControlDetailsW
mixerOpen
mixerGetDevCapsW
mixerSetControlDetails
mixerGetLineControlsW
mciSendCommandW
mixerGetLineInfoW
mciGetErrorStringW

wininet

HttpQueryInfoW
InternetReadFile
HttpSendRequestW
HttpOpenRequestW
InternetErrorDlg
InternetConnectW
HttpAddRequestHeadersW
InternetTimeFromSystemTimeW
InternetGetLastResponseInfoW
InternetTimeToSystemTimeW
InternetSetOptionW
InternetOpenW
InternetGetConnectedState
InternetCloseHandle

gdiplus

GdipGetCellAscent
GdipCreateSolidFill
GdipClosePathFigure
GdipSaveImageToFile
GdipStringFormatGetGenericTypographic
GdiplusStartup
GdipGetImageRawFormat
GdipGetEmHeight
GdipTranslateWorldTransform
GdipGetImageWidth
GdipDeleteGraphics
GdipGetStringFormatFlags
GdipBitmapSetResolution
GdipDeleteFontFamily
GdipSetTextRenderingHint
GdipCreateImageAttributes
GdipGetFontSize
GdipSetClipRect
GdipCreateMatrix
GdipInvertMatrix
GdipAddPathArcI
GdipDrawLineI
GdipCloneStringFormat
GdipDrawImageRectRectI
GdipSetImageAttributesColorMatrix
GdipSetPenDashStyle
GdipReleaseDC
GdipTransformMatrixPoints
GdipRotateMatrix
GdipGetTextRenderingHint
GdipSetSmoothingMode
GdipGetImageEncoders
GdipCreatePen1
GdipBitmapUnlockBits
GdipRestoreGraphics
GdipCreateBitmapFromStream
GdipSetStringFormatTrimming
GdipGetImageVerticalResolution
GdipCloneFontFamily
GdipGetPropertyItem
GdipDeleteBrush
GdipDrawRectangleI
GdipMeasureString
GdipCreateLineBrushFromRectWithAngleI
GdipSetMatrixElements
GdipImageSelectActiveFrame
GdipSetCompositingMode
GdipFree
GdipDisposeImage
GdipGetFontStyle
GdipGetImageGraphicsContext
GdipCreatePath
GdipDrawLine
GdipDrawImageRectRect
GdipGetImageHorizontalResolution
GdipSetPenBrushFill
GdipDeletePath
GdipBitmapGetPixel
GdipSaveGraphics
GdipGetImageThumbnail
GdipGetClipBounds
GdipGetLineSpacing
GdipSetStringFormatFlags
GdipBitmapLockBits
GdipGetCellDescent
GdipCreateBitmapFromHICON
GdipCreateFromHDC
GdipSetStringFormatAlign
GdipImageGetFrameCount
GdipSetClipRectI
GdipStringFormatGetGenericDefault
GdipTranslateMatrix
GdipFillRectangle
GdipGetGenericFontFamilySansSerif
GdipGetImageEncodersSize
GdipDrawString
GdipCreateBitmapFromScan0
GdipDrawRectangle
GdipCloneBrush
GdipCloneImage
GdipDeleteStringFormat
GdipDeleteMatrix
GdipSetPixelOffsetMode
GdipCreateFont
GdipGetDC
GdipGetImagePixelFormat
GdipFillRectangleI
GdipAlloc
GdipRotateWorldTransform
GdipGetFamily
GdipDeletePen
GdipGetImageHeight
GdipClonePen
GdipTransformPath
GdipDeleteFont
GdipDrawImageI
GdipDisposeImageAttributes
GdipGetFamilyName
GdipFillPath
GdipSetInterpolationMode
GdipCreateFontFamilyFromName
GdipDrawPath
GdipGetPropertyItemSize
GdipGetCompositingMode
GdipGetClipBoundsI

urlmon

CreateURLMonikerEx

psapi

EnumProcessModules
EnumProcesses
GetModuleBaseNameW

msvcrt

isdigit
malloc
free
_wtoi
exit

riched20

ord4

snmpapi

SnmpUtilVarBindFree
SnmpUtilOidCpy
SnmpUtilOidNCmp

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datat
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datat2
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.htext
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5dffc4a4f3041ceab039522084fdc657

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

winmm

wininet

gdiplus

urlmon

psapi

msvcrt

riched20

snmpapi

Sections

.text Size: 35KB - Virtual size: 35KB

.datat Size: 2KB - Virtual size: 2KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 29KB - Virtual size: 101KB

.datat2 Size: 7KB - Virtual size: 6KB

.rsrc Size: 38KB - Virtual size: 38KB

.reloc Size: 3KB - Virtual size: 3KB

.htext Size: 8KB - Virtual size: 8KB

.text
Size: 35KB - Virtual size: 35KB

.datat
Size: 2KB - Virtual size: 2KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 29KB - Virtual size: 101KB

.datat2
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 38KB - Virtual size: 38KB

.reloc
Size: 3KB - Virtual size: 3KB

.htext
Size: 8KB - Virtual size: 8KB