ae96f7fd1edaf04ad0d64bb079850d9c7228d22b7195791d0bda9df87509fb7d

Sharing

Copy URL Twitter E-mail

General

Target

ae96f7fd1edaf04ad0d64bb079850d9c7228d22b7195791d0bda9df87509fb7d
Size

688KB
MD5

536fcbe9fc89fc97eaf5dd4268d64401
SHA1

565d123cba5d96ca4ccf7b77f4224c575a5c6e02
SHA256

ae96f7fd1edaf04ad0d64bb079850d9c7228d22b7195791d0bda9df87509fb7d
SHA512

0cff9e25116953edf6c3aea158539352709c35a6d19b67e891ed68d4a12a6be96f7e74dd609a82d4d215fcbae3da92d6fc856699da6e5c3a1ead1cd195fbbb54
SSDEEP

12288:KfAV/jdtO8P2D6Avm1VezCwhQsWLHW7bAK9RBuWkEWFmWXzy:sAV/jzO8eD6AvQdLHGbAK9/uW1WAkzy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae96f7fd1edaf04ad0d64bb079850d9c7228d22b7195791d0bda9df87509fb7d

Files

ae96f7fd1edaf04ad0d64bb079850d9c7228d22b7195791d0bda9df87509fb7d
.exe windows:4 windows x86 arch:x86

637aff16cc9f5bbbd1e2d7716cbf1956

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
GlobalAlloc
FormatMessageA
GetCPInfo
IsDBCSLeadByte
OpenEventA
GetTempPathA
lstrcpynA
GetTimeZoneInformation
GetSystemTime
HeapFree
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetStringTypeA
GetStringTypeW
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
RtlUnwind
SetHandleCount
GetStdHandle
GetFileType
TerminateProcess
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
FlushFileBuffers
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
SetStdHandle
RaiseException
CompareStringA
CompareStringW
SetEnvironmentVariableA
GlobalUnlock
GlobalFree
GetFileSize
SetEndOfFile
SetFilePointer
ReadFile
CopyFileA
DeleteFileA
Sleep
ReleaseMutex
SetEvent
CreateEventA
SetThreadPriority
GetUserDefaultLCID
lstrcmpiA
GlobalGetAtomNameA
GlobalDeleteAtom
WaitForSingleObject
SystemTimeToFileTime
CompareFileTime
FileTimeToSystemTime
FindResourceA
LoadResource
LockResource
SizeofResource
GetSystemDirectoryA
CreateFileA
GetFileTime
WriteFile
SetFileTime
lstrcatA
FindFirstFileA
lstrcpyA
LoadLibraryA
GetProcAddress
FreeLibrary
FindNextFileA
FindClose
SetUnhandledExceptionFilter
CreateSemaphoreA
CloseHandle
GlobalAddAtomA
lstrlenA
GetModuleHandleA
VirtualQuery
CreateMutexA
GetLocalTime
CreateThread
CreateProcessA
GetTickCount
GetModuleFileNameA
VirtualFree
lstrcmpA
GetLocaleInfoA
GetNumberFormatA
VirtualAlloc
GetLastError

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

user32

SetMenu
LoadMenuA
GetWindowPlacement
MapDialogRect
DialogBoxIndirectParamA
CreateDialogIndirectParamA
GetDCEx
MessageBeep
DrawEdge
EndDialog
SendDlgItemMessageA
IsDlgButtonChecked
GetDlgItem
CheckDlgButton
SetDlgItemInt
GetDlgItemTextA
SetDlgItemTextA
GetDlgItemInt
CheckRadioButton
FrameRect
InflateRect
GetParent
GetNextDlgTabItem
GetDlgCtrlID
IsDialogMessageA
IsWindowVisible
DeleteMenu
SetMenuItemInfoA
GetSubMenu
ReleaseCapture
SetCapture
GetKeyState
GetCursorPos
ClientToScreen
DrawTextA
TrackPopupMenu
EnumWindows
GetClassNameA
GetSystemMenu
PtInRect
ScrollWindowEx
SetScrollPos
GetScrollInfo
SetScrollInfo
DialogBoxParamA
GetWindowTextA
GetWindow
CallWindowProcA
PostQuitMessage
GetWindowLongA
SetWindowLongA
SetTimer
PostMessageA
GetSysColor
DrawFocusRect
FillRect
BeginPaint
EndPaint
SetWindowPos
WinHelpA
PostThreadMessageA
SetWindowTextA
KillTimer
GetFocus
ReplyMessage
DefWindowProcA
GetMenu
GetWindowRect
ScreenToClient
InvalidateRect
PeekMessageA
GetClientRect
GetDC
SetFocus
EnableWindow
SetCursor
DestroyWindow
SendMessageA
EnableMenuItem
CheckMenuItem
FindWindowA
SetForegroundWindow
ShowWindow
SendMessageTimeoutA
LoadIconA
LoadCursorA
RegisterClassA
GetSystemMetrics
MessageBoxA
CreateWindowExA
CharUpperA
CharNextA
LoadStringA
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
UpdateWindow
ReleaseDC

gdi32

CreateBitmap
GetTextExtentPoint32A
LineTo
MoveToEx
Polyline
SetWindowExtEx
SetViewportExtEx
SetViewportOrgEx
SetMapMode
GetWindowExtEx
GetStockObject
GetViewportExtEx
LPtoDP
CreatePatternBrush
SetTextColor
Polygon
DeleteDC
EndDoc
EndPage
SetWindowOrgEx
StartPage
StartDocA
SetAbortProc
CreateDCA
TextOutA
SetTextAlign
CreateICA
PatBlt
SetBkMode
CreateFontA
GetTextFaceA
GetDeviceCaps
GetSystemPaletteEntries
Rectangle
GetTextMetricsA
SelectObject
SetBkColor
ExtTextOutA
DPtoLP
CreateSolidBrush
CreatePen
GetTextExtentPointA
DeleteObject

comdlg32

ChooseColorA
GetSaveFileNameA
CommDlgExtendedError
GetOpenFileNameA
GetFileTitleA

winmm

waveOutUnprepareHeader
mmioOpenA
mmioClose
mmioAscend
mmioRead
mmioDescend
mmioWrite
mmioCreateChunk
waveOutRestart
waveOutPause
waveOutPrepareHeader
timeSetEvent
timeKillEvent
timeBeginPeriod
timeGetDevCaps
timeEndPeriod
waveOutReset
waveOutClose
waveOutOpen
waveOutWrite

comctl32

CreateToolbarEx
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_Draw
ImageList_Destroy
ord17
ord16

shell32

ShellExecuteA

Sections

.text
Size: 292KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 340KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

637aff16cc9f5bbbd1e2d7716cbf1956

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

comdlg32

winmm

comctl32

shell32

Sections

.text Size: 292KB - Virtual size: 288KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 40KB - Virtual size: 130KB

.rsrc Size: 340KB - Virtual size: 339KB

.text
Size: 292KB - Virtual size: 288KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 40KB - Virtual size: 130KB

.rsrc
Size: 340KB - Virtual size: 339KB