be4b0da9a432a435d2cfe534e9d411d1

Sharing

Copy URL Twitter E-mail

General

Target

be4b0da9a432a435d2cfe534e9d411d1
Size

896KB
MD5

be4b0da9a432a435d2cfe534e9d411d1
SHA1

bff50eace61b28ecb4e1832f2620e6f7b105fb8f
SHA256

877907b98c1b8ebdd83e8eea9ad6d587d898da24db527b8f1552cfddc368575e
SHA512

6bf43342bdca76d3dfb2ce8751421cfa95727268db742a01bac34535fc23a918d1e5b90b760ba90d0b6bc769c24e443c56c70c0b099321c908cce90e223986e2
SSDEEP

12288:YdYxPjScSQCrGj2wf/QcUdwlR4ZOQOeQn2vsackPsL574u9CEazpsGhN8LHrpsaW:swSuCr02wf1qZvsnkPwCgGAHpw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be4b0da9a432a435d2cfe534e9d411d1

Files

be4b0da9a432a435d2cfe534e9d411d1
.exe windows:4 windows x86 arch:x86

3d346d4071d8b48f53046f6c74d257f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
GetFileAttributesA
MapViewOfFile
CreateFileMappingA
GetModuleFileNameA
GetCurrentDirectoryA
LocalFree
FormatMessageA
MoveFileA
DeleteFileA
SetThreadPriority
GetThreadPriority
ResumeThread
SuspendThread
lstrlenA
FreeResource
LoadResource
FindResourceA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
GetProcAddress
GetModuleHandleA
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetLocaleInfoW
GetVersionExA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
SetStdHandle
IsBadCodePtr
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
CompareStringW
CompareStringA
LCMapStringW
LCMapStringA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetConsoleCtrlHandler
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapAlloc
FatalAppExitA
GetFileType
SetHandleCount
GetACP
GetLocalTime
GetSystemTime
GetTimeZoneInformation
TerminateProcess
ExitThread
CreateThread
OutputDebugStringA
GetStdHandle
DebugBreak
ExitProcess
GetCommandLineA
EscapeCommFunction
SetCommState
GetStartupInfoA
GetDriveTypeA
SetCurrentDirectoryA
SetEnvironmentVariableA
HeapValidate
GetCommTimeouts
GetCommState
SetFileAttributesA
Sleep
RtlUnwind
SetErrorMode
GetFileSize
SystemTimeToFileTime
LocalFileTimeToFileTime
GetStringTypeExA
GetShortPathNameA
GetThreadLocale
FindClose
GetVolumeInformationA
FindFirstFileA
LockFile
SetEndOfFile
UnlockFile
GetCurrentProcess
FlushFileBuffers
SetFilePointer
LocalReAlloc
DuplicateHandle
TlsGetValue
TlsFree
TlsSetValue
GlobalReAlloc
LocalAlloc
GlobalHandle
TlsAlloc
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
InitializeCriticalSection
GetOEMCP
GlobalFlags
GetProcessVersion
SizeofResource
FileTimeToLocalFileTime
GetProfileIntA
VirtualProtect
IsBadWritePtr
FileTimeToSystemTime
IsBadReadPtr
GetDiskFreeSpaceA
IsBadStringPtrA
IsBadStringPtrW
GetFullPathNameA
GetFileTime
SetFileTime
GetPrivateProfileStringA
GetTempFileNameA
WritePrivateProfileStringA
lstrcmpA
GetPrivateProfileIntA
GlobalAlloc
lstrcpynA
GetCurrentThread
SetLastError
InterlockedDecrement
MultiByteToWideChar
WideCharToMultiByte
FreeLibrary
InterlockedIncrement
LoadLibraryA
SetCommTimeouts
WaitForSingleObject
MulDiv
GetVersion
CloseHandle
WriteFile
CreateEventA
ResetEvent
SetEvent
GetProfileStringA
WaitForMultipleObjects
ReleaseMutex
GetOverlappedResult
GetLastError
ReadFile
CreateMutexA
CreateFileA

user32

WinHelpA
SetWindowTextA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
DispatchMessageA
SetFocus
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
ShowWindow
MoveWindow
wsprintfA
GetClassInfoA
RegisterClassA
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetKeyState
DefWindowProcA
GetClassNameA
GetDlgCtrlID
CreateWindowExA
CallNextHookEx
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
RegisterWindowMessageA
GetWindowPlacement
SetScrollInfo
EndDialog
DestroyWindow
GetDlgItem
CheckMenuRadioItem
GetMenuContextHelpId
SetMenuContextHelpId
LoadMenuIndirectA
LoadMenuA
SetMenuItemBitmaps
RemoveMenu
ModifyMenuA
InsertMenuA
GetSubMenu
GetMenuItemInfoA
GetMenuStringA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
AppendMenuA
DeleteMenu
IsMenu
CreatePopupMenu
CreateMenu
ScrollDC
GrayStringA
GetTabbedTextExtentA
DrawTextA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateA
DrawIcon
InvertRect
FrameRect
FillRect
ExcludeUpdateRgn
WindowFromDC
LoadBitmapA
GetSysColorBrush
SubtractRect
CreateDialogIndirectParamA
CharToOemA
OffsetRect
InflateRect
EqualRect
SetRectEmpty
SetRect
OemToCharA
GetMenuCheckMarkDimensions
CopyRect
TabbedTextOutA
OpenIcon
LoadIconA
PostThreadMessageA
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
MapDialogRect
GetWindowContextHelpId
SetWindowContextHelpId
SendNotifyMessageA
GetForegroundWindow
SetForegroundWindow
ShowCaret
HideCaret
SetCaretPos
GetCaretPos
CreateCaret
GetClipboardViewer
GetClipboardOwner
GetOpenClipboardWindow
OpenClipboard
SetClipboardViewer
ChangeClipboardChain
FlashWindow
WindowFromPoint
SetParent
IsChild
GetTopWindow
GetWindow
FindWindowA
ChildWindowFromPointEx
ChildWindowFromPoint
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
DlgDirSelectComboBoxExA
DlgDirSelectExA
DlgDirListComboBoxA
DlgDirListA
GetDesktopWindow
SetCapture
GetCapture
SetActiveWindow
GetActiveWindow
KillTimer
SetTimer
EnableScrollBar
RedrawWindow
LockWindowUpdate
GetDCEx
ShowOwnedPopups
IsWindowVisible
ValidateRgn
ValidateRect
InvalidateRgn
InvalidateRect
GetUpdateRgn
GetUpdateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
EndPaint
BeginPaint
ScreenToClient
ClientToScreen
MapWindowPoints
wvsprintfA
GetClientRect
GetWindowRect
BringWindowToTop
GetWindowRgn
SetWindowRgn
ArrangeIconicWindows
IsZoomed
IsIconic
HiliteMenuItem
GetSystemMenu
ReleaseCapture
WaitMessage
SetCursor
GetWindowThreadProcessId
LoadAcceleratorsA
TranslateAcceleratorA
DestroyMenu
ReuseDDElParam
UnpackDDElParam
DestroyCursor
GetAsyncKeyState
SetCursorPos
GetClipboardFormatNameA
DestroyIcon
CharUpperA
GetMessageA
GetCursorPos
TranslateMessage
PtInRect
LoadStringA
IsRectEmpty
UnionRect
IntersectRect
CloseWindow
DrawMenuBar
SetMenu
GetMenu
PostMessageA
GetParent
GetLastActivePopup
IsWindowEnabled
MessageBoxA
EnableWindow
GetFocus
PeekMessageA
PostQuitMessage
GetSystemMetrics
LoadCursorA
SystemParametersInfoA
GetSysColor
SendMessageA
IsWindow
GetWindowLongA
SetWindowLongA
GetDialogBaseUnits
SetPropA
GetClassLongA
SetWindowPos
GetMessagePos
SetWindowsHookExA
DefDlgProcA
CharNextA
UnregisterClassA
IsWindowUnicode

gdi32

DeleteObject
ScaleWindowExtEx
SetWindowExtEx
CloseMetaFile
CreateMetaFileA
CreateEnhMetaFileA
GetObjectA
GetStockObject
ExtTextOutA
GetObjectType
CreatePen
UnrealizeObject
ExtCreatePen
CreateSolidBrush
CreatePenIndirect
CreateBrushIndirect
CreatePatternBrush
CreateHatchBrush
CreateFontIndirectA
CreateFontA
CreateDIBPatternBrushPt
CreateBitmapIndirect
SetBitmapBits
CreateBitmap
SetBitmapDimensionEx
GetBitmapDimensionEx
GetBitmapBits
CreateDiscardableBitmap
CreatePalette
CreateCompatibleBitmap
GetPaletteEntries
SetPaletteEntries
CreateHalftonePalette
GetNearestPaletteIndex
ResizePalette
AnimatePalette
CreateRectRgnIndirect
CreateEllipticRgn
CreateRectRgn
CreatePolygonRgn
CreatePolyPolygonRgn
CreateEllipticRgnIndirect
PathToRegion
ExtCreateRegion
CreateRoundRectRgn
SetRectRgn
CombineRgn
GetRegionData
OffsetRgn
GetRgnBox
EqualRgn
RectInRegion
CreateDCA
PtInRegion
CreateCompatibleDC
GetDeviceCaps
CreateICA
SetBrushOrgEx
EnumObjects
GetBrushOrgEx
GetNearestColor
RealizePalette
SelectObject
SelectClipRgn
GetBkColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextColor
GetMapMode
ExcludeClipRect
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
InvertRgn
PaintRgn
PtVisible
RectVisible
GetCurrentPositionEx
Arc
Polyline
Chord
Ellipse
Pie
Polygon
PolyPolygon
Rectangle
RoundRect
PatBlt
BitBlt
StretchBlt
GetPixel
SetPixel
FloodFill
ExtFloodFill
TextOutA
GetTextExtentPoint32A
GetTextAlign
GetTextFaceA
GetTextMetricsA
GetTextCharacterExtra
GetCharWidthA
GetAspectRatioFilterEx
Escape
SetBoundsRect
GetBoundsRect
ResetDCA
GetOutlineTextMetricsA
GetCharABCWidthsA
GetFontData
GetKerningPairsA
GetGlyphOutlineA
StartDocA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
MaskBlt
PlgBlt
SetPixelV
AngleArc
GetArcDirection
PolyPolyline
GetColorAdjustment
GetCurrentObject
PolyBezier
DrawEscape
ExtEscape
GetCharABCWidthsFloatA
GetCharWidthFloatA
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetMiterLimit
GetPath
SetMiterLimit
GetTextExtentPointA
CreateDIBitmap
StretchDIBits
PlayMetaFile
EnumMetaFile
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
GetClipRgn
CloseEnhMetaFile
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
MoveToEx
OffsetClipRgn
IntersectClipRect
StrokeAndFillPath
SetBkMode
SetPolyFillMode
UpdateColors
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
WidenPath
StrokePath
SelectPalette
RestoreDC
SaveDC
DeleteDC
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
PlayEnhMetaFile
GdiComment

comdlg32

ChooseColorA
ChooseFontA
GetFileTitleA
PrintDlgA
PageSetupDlgA
CommDlgExtendedError
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegQueryValueA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegCloseKey

shell32

SHGetFileInfoA
DragFinish
DragAcceptFiles
DragQueryFileA
SHGetPathFromIDListA
SHGetMalloc
SHBrowseForFolderA
ExtractIconA

comctl32

ImageList_SetDragCursorImage
ImageList_EndDrag
ImageList_BeginDrag
ImageList_Create
ImageList_DragShowNolock
ImageList_DragMove
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA
ImageList_Copy
ImageList_SetImageCount
ord17
ImageList_DragLeave
ImageList_DragEnter
ImageList_GetDragImage
ord8
ord13
ImageList_Destroy
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_Merge
ImageList_Read
ImageList_Write
ord14
ImageList_GetImageCount
ImageList_Add
ImageList_AddMasked
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Draw
ImageList_SetBkColor
ImageList_GetBkColor
ImageList_SetOverlayImage

Sections

.text
Size: 728KB - Virtual size: 725KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d346d4071d8b48f53046f6c74d257f2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 728KB - Virtual size: 725KB

.rdata Size: 88KB - Virtual size: 87KB

.data Size: 44KB - Virtual size: 60KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 728KB - Virtual size: 725KB

.rdata
Size: 88KB - Virtual size: 87KB

.data
Size: 44KB - Virtual size: 60KB

.rsrc
Size: 32KB - Virtual size: 31KB