525c31106e5457cca02ab93610e811728d90655bcacbe1d2c4ad22ec63fe2af9

Sharing

Copy URL Twitter E-mail

General

Target

525c31106e5457cca02ab93610e811728d90655bcacbe1d2c4ad22ec63fe2af9
Size

2.3MB
MD5

05ccfaeb841ddda3f1f0a2208d814d81
SHA1

945d0f52c752c78d816d31e9cc8ecc3de9f336f5
SHA256

525c31106e5457cca02ab93610e811728d90655bcacbe1d2c4ad22ec63fe2af9
SHA512

70adcae44fc0c4d04434089dcdea9ffea6f0f4d8e08d8f25e4aad963401e58db92add0378edec3a98272b441173a9f625eeb9242abeed0956e42415c8d0d7972
SSDEEP

49152:wOmO6bN4vD1IpPRlmbPyrBQ7SHkq2cTXcK10kySl5mLkEpzE966IlATj:wTuhqlmbPyrBQeHk+TXJ0kyeokEpzy6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
525c31106e5457cca02ab93610e811728d90655bcacbe1d2c4ad22ec63fe2af9

Files

525c31106e5457cca02ab93610e811728d90655bcacbe1d2c4ad22ec63fe2af9
.exe windows:5 windows x86 arch:x86

e3b163c91f3da178d46512c52ef21a14

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyW
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW

kernel32

FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStringTypeW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetConsoleCP
GetConsoleMode
SetFilePointerEx
ReadConsoleW
GetTimeZoneInformation
IsValidLocale
EnumSystemLocalesW
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
SizeofResource
LockResource
LoadResource
FindResourceW
WideCharToMultiByte
GetVersionExW
GetLastError
CreateFileW
CloseHandle
GetFileType
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalSize
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetEnvironmentStringsW
MultiByteToWideChar
HeapReAlloc
HeapAlloc
HeapFree
GetProcessHeap
RaiseException
HeapSize
DecodePointer
InitializeCriticalSection
GetCurrentThreadId
GetLocalTime
OutputDebugStringW
GetTickCount
ChangeTimerQueueTimer
LoadLibraryW
GetProcAddress
CreateTimerQueueTimer
DeleteTimerQueueTimer
FreeLibrary
GetModuleFileNameW
WriteFile
InterlockedIncrement
InterlockedDecrement
FindFirstFileW
FindClose
SetStdHandle
GetSystemTimeAsFileTime
HeapQueryInformation
RtlUnwind
AreFileApisANSI
GetModuleHandleExW
ExitProcess
IsProcessorFeaturePresent
IsDebuggerPresent
ExitThread
CreateThread
VirtualQuery
VirtualAlloc
GetSystemInfo
GetCommandLineW
GetModuleFileNameA
QueryPerformanceCounter
GetStartupInfoW
InterlockedExchange
GetStdHandle
OutputDebugStringA
SetLastError
GetModuleHandleA
SearchPathW
GetProfileIntW
Sleep
GetTempPathW
VerifyVersionInfoW
VerSetConditionMask
lstrcpyW
GetWindowsDirectoryW
SetErrorMode
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
GetCurrentDirectoryW
FindResourceExW
FileTimeToSystemTime
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GlobalFlags
GetThreadLocale
GetStringTypeExW
MoveFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFileSize
FlushFileBuffers
DeleteFileW
GetUserDefaultLCID
SystemTimeToFileTime
ReplaceFileW
SetFileTime
GetTempFileNameW
GetFullPathNameW
GetFileTime
GetFileAttributesW
GetDiskFreeSpaceW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
lstrcmpA
GetCurrentThread
ResumeThread
SetThreadPriority
WaitForSingleObject
VirtualProtect
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalFindAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeResource
GetSystemDirectoryW
EncodePointer
GlobalGetAtomNameW
GlobalAddAtomW
LoadLibraryA
GetCurrentProcessId
GetModuleHandleW

user32

CreateMenu
DestroyCursor
GetWindowRgn
DrawEdge
DrawStateW
EnumDisplayMonitors
SetLayeredWindowAttributes
NotifyWinEvent
InvertRect
EnableScrollBar
GetIconInfo
DrawIconEx
DrawFocusRect
GetMenuDefaultItem
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
CharNextW
PostThreadMessageW
LockWindowUpdate
GetDCEx
CopyImage
GetSysColorBrush
UnionRect
RealChildWindowFromPoint
CharUpperW
SetWindowRgn
DrawIcon
ShowOwnedPopups
SetWindowContextHelpId
RegisterClipboardFormatW
GetMessageW
MapDialogRect
GetAsyncKeyState
SetParent
IsRectEmpty
DeleteMenu
GetSystemMenu
SystemParametersInfoW
GetMenuItemInfoW
InflateRect
FillRect
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
MapVirtualKeyW
GetKeyNameTextW
SendDlgItemMessageA
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
RemoveMenu
InsertMenuW
GetMenuState
GetMenuStringW
IsDialogMessageW
SetWindowTextW
CheckDlgButton
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MoveWindow
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoW
MonitorFromWindow
GetScrollInfo
SetScrollInfo
UnhookWindowsHookEx
SetWindowsHookExW
GetTopWindow
GetClassLongW
MapWindowPoints
MessageBoxW
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
GetFocus
EndDeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
GetClassInfoExW
RegisterClassW
CallWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
SetRect
WindowFromPoint
ScreenToClient
ClientToScreen
GetCursorPos
DeferWindowPos
IsChild
GetSystemMetrics
IsZoomed
ReuseDDElParam
UnpackDDElParam
WinHelpW
LoadImageW
DestroyIcon
GetWindow
GetLastActivePopup
GetWindowThreadProcessId
GetClassNameW
GetDesktopWindow
EqualRect
OffsetRect
IntersectRect
CopyRect
SetCursor
SetActiveWindow
InsertMenuItemW
DestroyMenu
SetMenu
LoadMenuW
LoadAcceleratorsW
IsWindowEnabled
SetFocus
IsIconic
IsWindowVisible
ShowWindow
PeekMessageW
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
SetWindowLongW
AdjustWindowRectEx
GetMenuItemCount
GetMenuItemID
GetSubMenu
DrawMenuBar
GetMenu
TranslateAcceleratorW
GetActiveWindow
BringWindowToTop
SubtractRect
GetUpdateRect
FrameRect
CharUpperBuffW
ModifyMenuW
SetMenuDefaultItem
CopyIcon
GetDoubleClickTime
SetClassLongW
SetCursorPos
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
SetWindowPos
CreateWindowExW
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
WaitMessage
GetComboBoxInfo
TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
IsMenu
CallNextHookEx
DrawFrameControl
KillTimer
SetTimer
UpdateWindow
PostMessageW
UnregisterClassW
SetRectEmpty
GetDlgCtrlID
GetDlgItem
PostQuitMessage
LoadIconW
GetWindowLongW
RedrawWindow
DispatchMessageW
TranslateMessage
GetKeyState
GetClipboardData
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
IsClipboardFormatAvailable
AppendMenuW
CreatePopupMenu
ReleaseCapture
GetCapture
SetCapture
GetCaretPos
GetParent
GetSysColor
HideCaret
ShowCaret
SetCaretPos
CreateCaret
ReleaseDC
GetDC
InvalidateRect
IsWindow
LoadCursorW
DefWindowProcW
GetClassInfoW
GetClientRect
GetWindowRect
SendMessageW
EnableWindow
PtInRect

gdi32

CreateRectRgnIndirect
PatBlt
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
BitBlt
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
GetDeviceCaps
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectW
GetMapMode
SetRectRgn
DPtoLP
GetCharWidthW
StretchDIBits
CreateEllipticRgn
Ellipse
LPtoDP
EnumFontFamiliesExW
GetTextColor
GetRgnBox
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
CreatePolygonRgn
Polygon
Polyline
Rectangle
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
CreateDCW
CopyMetaFileW
CreateBitmap
SetTextColor
SetBkColor
GetBkColor
GetTextMetricsW
SetDIBColorTable
DeleteObject
CreateDIBSection
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontW
GetTextExtentPoint32W
SetWindowOrgEx
GetObjectW
DeleteDC

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegCreateKeyExW
RegEnumKeyExW
RegEnumValueW
SetFileSecurityW
GetFileSecurityW
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegQueryValueExW
RegQueryValueW
RegOpenKeyExW
RegEnumKeyW
RegDeleteKeyW
RegSetValueW

shell32

SHAppBarMessage
ShellExecuteW
DragQueryFileW
DragFinish
SHGetFileInfoW
ExtractIconW
SHAddToRecentDocs
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
Shell_NotifyIconW
SHBrowseForFolderW

comctl32

InitCommonControlsEx

shlwapi

PathRemoveFileSpecA
PathAppendA
PathFileExistsA
PathFindFileNameW
PathFindExtensionW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

GetThemePartSize
GetWindowTheme
GetThemeSysColor
GetCurrentThemeName
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
DrawThemeText
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeParentBackground

ole32

CoDisconnectObject
CoInitializeEx
CoInitialize
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoCreateGuid
CoUninitialize
RevokeDragDrop
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
StgOpenStorage
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
CoGetClassObject
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter

oleaut32

OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
SysAllocString
SysFreeString
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromStream
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFile
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageI
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipDisposeImage
GdipAlloc
GdipFree
GdipDrawImageRectI

ws2_32

htonl
ntohl
htons
inet_addr
inet_ntoa

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Exports

Exports

UDPGetDeviceInfo

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 419KB - Virtual size: 419KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3b163c91f3da178d46512c52ef21a14

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

oleacc

imm32

winmm

Exports

Exports

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 419KB - Virtual size: 419KB

.data Size: 31KB - Virtual size: 61KB

.rsrc Size: 167KB - Virtual size: 167KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 419KB - Virtual size: 419KB

.data
Size: 31KB - Virtual size: 61KB

.rsrc
Size: 167KB - Virtual size: 167KB