92de77b8685132e16bffd38122d6272ba5d00d0ad70fdc776546420067a1f00e

Sharing

Copy URL

Twitter E-mail

General

Target

92de77b8685132e16bffd38122d6272ba5d00d0ad70fdc776546420067a1f00e
Size

992KB
MD5

1a77573857735076b4ac9f2b02e5f6a0
SHA1

cb7a0a8d4c98d02cd12a32617aea32bfb71217ba
SHA256

92de77b8685132e16bffd38122d6272ba5d00d0ad70fdc776546420067a1f00e
SHA512

3f11e409c1b5f3e8abe4704c13f300d26d62e9ab73e253fde3d851cb372ada5895f51ff784782428775c70c10744599571a290133159888fd58773dd8d37caac
SSDEEP

12288:ZiHLgHXT2EIjSv2bgSfFhISzatczMRyibag8e5h4TvJQyDTszBBBDNC:ZXT2njSv1XMM2g6zJQyDTOnBDA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
92de77b8685132e16bffd38122d6272ba5d00d0ad70fdc776546420067a1f00e

Files

92de77b8685132e16bffd38122d6272ba5d00d0ad70fdc776546420067a1f00e
.exe windows:4 windows x86 arch:x86

98547c802f78abf4bf685cf49d787df7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQuery
RtlUnwind
RaiseException
HeapSize
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCPInfo
GetSystemInfo
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
SetEnvironmentVariableA
VirtualAlloc
VirtualProtect
FindNextFileW
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapReAlloc
GetStartupInfoW
GetProcessHeap
HeapAlloc
HeapFree
GetFileAttributesW
FileTimeToLocalFileTime
SetErrorMode
FindFirstFileW
FindClose
GetCurrentProcess
DeleteFileW
MoveFileW
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
TlsGetValue
LocalAlloc
InterlockedIncrement
FileTimeToSystemTime
GetThreadLocale
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
LoadLibraryExW
CompareStringA
GetCurrentProcessId
InterlockedDecrement
GetModuleHandleA
GetVersionExW
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
FreeLibrary
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
FreeResource
FormatMessageW
LocalFree
MulDiv
WideCharToMultiByte
lstrlenA
ExitProcess
SetEndOfFile
UnlockFile
LockFile
GetFileSize
ReadFile
WriteFile
SetFilePointer
CreateFileW
FlushFileBuffers
GetProcAddress
GetModuleHandleW
LoadLibraryW
SetLastError
GetLocalTime
GetLastError
ConvertDefaultLocale
InterlockedExchange
lstrlenW
GlobalUnlock
GlobalLock
Sleep
GlobalAlloc
CreateProcessA
GlobalDeleteAtom
GlobalAddAtomA
GlobalFree
LeaveCriticalSection
GlobalSize
EnterCriticalSection
GlobalGetAtomNameA
CloseHandle
GlobalReAlloc
GetModuleFileNameW
GetTickCount
FindResourceW
LoadResource
LockResource
SizeofResource
GetACP
MultiByteToWideChar

user32

GetWindowThreadProcessId
GetMessageW
ValidateRect
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
TabbedTextOutW
MoveWindow
IsDialogMessageW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
GetMenu
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetScrollInfo
SetScrollInfo
SetWindowPlacement
DefWindowProcW
SystemParametersInfoA
GetWindowPlacement
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
GetWindowLongW
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
DrawTextW
DispatchMessageW
TranslateMessage
CopyRect
ShowScrollBar
CreateWindowExW
GetComboBoxInfo
GetCursorPos
DeferWindowPos
EndDeferWindowPos
BeginDeferWindowPos
MessageBoxW
ShowWindow
OpenClipboard
InflateRect
CheckMenuRadioItem
GetWindow
CloseClipboard
LoadBitmapW
InvertRect
SetWindowTextW
AdjustWindowRectEx
GetDesktopWindow
IsZoomed
GetScrollPos
GetClipboardData
EnumClipboardFormats
ToUnicode
SetCapture
LoadIconW
ClientToScreen
SetClipboardData
SetMenuInfo
GetMonitorInfoW
SetCursor
MonitorFromRect
WaitForInputIdle
EmptyClipboard
LoadImageW
SetScrollPos
AppendMenuW
EnableMenuItem
KillTimer
DrawIcon
FreeDDElParam
EqualRect
CheckMenuItem
PackDDElParam
ReleaseCapture
SetTimer
IsIconic
GetSystemMenu
CreatePopupMenu
InvalidateRect
UnregisterClassW
GetSysColorBrush
DestroyMenu
GetDlgCtrlID
ModifyMenuW
SetWindowLongW
GetParent
CallWindowProcW
GetDlgItem
GetSysColor
RedrawWindow
SystemParametersInfoW
LoadCursorW
IsWindowVisible
UpdateWindow
GetClientRect
ReleaseDC
PostQuitMessage
PeekMessageW
SetForegroundWindow
GetDC
PostMessageW
SetRect
GetSystemMetrics
IsWindow
GetWindowRect
SetWindowPos
ScreenToClient
PtInRect
SetWindowTextA
GetFocus
MapVirtualKeyW
GetKeyState
EnableWindow
SendMessageW
DestroyWindow
UnregisterClassA

gdi32

PtVisible
SaveDC
RectVisible
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
CreateBitmap
GetClipBox
IntersectClipRect
ExcludeClipRect
SetMapMode
SetStretchBltMode
SetBkMode
PatBlt
GetBkColor
GetTextColor
SetBkColor
SetTextColor
GetTextMetricsW
CreateSolidBrush
GetDIBits
GetDIBColorTable
RealizePalette
StretchBlt
CreateHalftonePalette
GetSystemPaletteEntries
GetStockObject
CreatePalette
CreateDIBSection
GetDeviceCaps
Rectangle
BitBlt
Ellipse
CreateCompatibleDC
SetPixelV
GetObjectW
DeleteDC
SetDIBColorTable
CreateCompatibleBitmap
GetPixel
SelectPalette
DeleteObject
SelectObject
CreateFontIndirectW
GetTextExtentPoint32W
RestoreDC

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyW
RegQueryInfoKeyW
RegOpenKeyExA
RegDeleteKeyW
RegDeleteValueW
RegDeleteValueA
RegSetValueExW
RegQueryValueExW
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegEnumValueW
RegEnumValueA
RegQueryInfoKeyA

shell32

DragQueryFileW
DragFinish
ShellExecuteW

shlwapi

PathRemoveExtensionW
PathFindFileNameW
PathFindExtensionW

oleaut32

VariantClear
VariantChangeType
VariantInit

gdiplus

GdipAlloc
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFile
GdiplusShutdown
GdiplusStartup
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipDisposeImage
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipFree

Sections

.text
Size: 768KB - Virtual size: 764KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 152KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98547c802f78abf4bf685cf49d787df7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

shlwapi

oleaut32

gdiplus

Sections

.text Size: 768KB - Virtual size: 764KB

.rdata Size: 152KB - Virtual size: 150KB

.data Size: 24KB - Virtual size: 40KB

.rsrc Size: 44KB - Virtual size: 43KB

.text
Size: 768KB - Virtual size: 764KB

.rdata
Size: 152KB - Virtual size: 150KB

.data
Size: 24KB - Virtual size: 40KB

.rsrc
Size: 44KB - Virtual size: 43KB