c69989aa0743738681a53c493a616d30

Sharing

Copy URL Twitter E-mail

General

Target

c69989aa0743738681a53c493a616d30
Size

2.6MB
MD5

c69989aa0743738681a53c493a616d30
SHA1

4d5bff5b9c016fca0c8453c8cfd2945524d50ad9
SHA256

e3809769cb7045745037475cea8f9699097bcf911fde3db442c0eb556506f5dd
SHA512

af2eef12267b79248c3e049fb53528ea8683a2769cc83d78147a3148d105f4ccabdc7e8eab2e0162c4494344f1446a45c8e8ca4a2b577adbddf3e0b00391ca26
SSDEEP

49152:3nbKZOcpDyEt8U1KBAGYT11UbElAH2o1QDxqEEX7AkN6ddonWCmW/2tFZjJ8l95U:XsOcpDyEhwA711UbEeH2o1QDxqEEX7AX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c69989aa0743738681a53c493a616d30

Files

c69989aa0743738681a53c493a616d30
.exe windows:5 windows x86 arch:x86

ee557ec1d1a6b336650b3c5daaab4d70

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\jspro\MyloginNew\Release\Mylogin.pdb

Imports

dbghelp

MakeSureDirectoryPathExists

psapi

GetModuleFileNameExA

kernel32

SetUnhandledExceptionFilter
IsDebuggerPresent
IsValidCodePage
LCMapStringW
HeapCreate
GetStdHandle
IsProcessorFeaturePresent
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
GetTimeZoneInformation
GetDriveTypeW
GetStringTypeW
GetConsoleCP
GetConsoleMode
CompareStringW
GetCurrentDirectoryW
WriteConsoleW
GetProcessHeap
CreateFileW
SetEnvironmentVariableA
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceW
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
WritePrivateProfileStringA
Sleep
InitializeCriticalSection
GetLogicalDrives
CloseHandle
GetLastError
CreateDirectoryA
LoadLibraryA
CreateProcessA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleFileNameA
GetPrivateProfileSectionA
WritePrivateProfileSectionA
GetTickCount
CreateToolhelp32Snapshot
Process32First
Process32Next
OpenProcess
Module32First
Module32Next
lstrlenA
CopyFileA
MultiByteToWideChar
GetVersionExA
WriteProcessMemory
GetFullPathNameA
CreateFileA
VirtualAllocEx
GetProcAddress
GetCurrentProcessId
CreateRemoteThread
HeapSize
HeapQueryInformation
GetFileType
SetStdHandle
ExitProcess
ExitThread
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualAlloc
RtlUnwind
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapAlloc
HeapFree
DecodePointer
EncodePointer
GetSystemTimeAsFileTime
FindResourceExW
VirtualProtect
GetProfileIntA
SearchPathA
GetTempPathA
GetTempFileNameA
GetNumberFormatA
GetWindowsDirectoryA
SetErrorMode
lstrcpyA
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetOEMCP
FindResourceA
GlobalAlloc
WriteFile
GetCPInfo
GetACP
GlobalFlags
Thread32First
Thread32Next
OpenThread
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetVolumeInformationA
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
MoveFileA
lstrcmpiA
GetThreadLocale
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoA
lstrcmpA
GetModuleHandleW
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
LoadLibraryW
lstrcmpW
FileTimeToLocalFileTime
GetModuleHandleA
FindNextFileA
CreateEventA
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
InterlockedDecrement
GetModuleFileNameW
ActivateActCtx
ReleaseActCtx
CreateActCtxW
DeactivateActCtx
FreeResource
SetLastError
GlobalFree
GlobalSize
GlobalLock
TerminateThread
GlobalUnlock
FormatMessageA
lstrlenW
MulDiv
RaiseException
InterlockedExchange
FreeLibrary
LocalFree
LocalAlloc
FindClose
FindFirstFileA
UnmapViewOfFile
GetFileSize
FileTimeToSystemTime
SetFileTime
LocalFileTimeToFileTime
GetCurrentDirectoryA
SystemTimeToFileTime
SetFilePointer
ReadFile
WaitForSingleObject
GetStartupInfoA
CreatePipe
CreateThread
WaitForMultipleObjects
BeginUpdateResourceA
GetCurrentThreadId
GetSystemDirectoryA
GetFileAttributesA
RemoveDirectoryA
DeleteFileA
SetFileAttributesA
DeviceIoControl

user32

DrawFrameControl
DrawEdge
EnableScrollBar
HideCaret
InvertRect
GetMenuDefaultItem
GetIconInfo
DrawIconEx
GetNextDlgGroupItem
LoadImageW
EmptyClipboard
CloseClipboard
SetClipboardData
CopyImage
OpenClipboard
DrawStateA
RegisterClipboardFormatA
EnumChildWindows
LockWindowUpdate
IsMenu
MonitorFromPoint
UnpackDDElParam
ReuseDDElParam
LoadMenuA
LoadImageA
DestroyIcon
LoadAcceleratorsA
InsertMenuItemA
BringWindowToTop
TranslateAcceleratorA
SetClassLongA
SetParent
CreatePopupMenu
NotifyWinEvent
SetWindowRgn
CreateAcceleratorTableA
LoadAcceleratorsW
DestroyAcceleratorTable
GetKeyboardState
GetKeyboardLayout
ToAsciiEx
PostThreadMessageA
LoadMenuW
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
DeleteMenu
WindowFromPoint
CharNextA
ReleaseCapture
SetCapture
InvalidateRgn
SetRect
IsRectEmpty
CopyAcceleratorTableA
IntersectRect
UnregisterClassA
RealChildWindowFromPoint
LoadCursorA
GetSysColorBrush
CharUpperA
DestroyMenu
GetMenuItemInfoA
ShowOwnedPopups
InflateRect
SetWindowContextHelpId
MapDialogRect
SystemParametersInfoA
OffsetRect
MessageBeep
IsZoomed
PostQuitMessage
MapVirtualKeyA
GetKeyNameTextA
WaitMessage
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ShowWindow
MoveWindow
UnionRect
IsDialogMessageA
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
EnableMenuItem
CheckMenuItem
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetUpdateRect
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
UpdateWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
SetWindowLongA
SetWindowPos
GetWindow
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
PeekMessageA
ValidateRect
GetLastActivePopup
UnhookWindowsHookEx
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
UpdateLayeredWindow
SetMenuDefaultItem
IsCharLowerA
MapVirtualKeyExA
IsClipboardFormatAvailable
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
DestroyWindow
IsWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetParent
GetNextDlgTabItem
EndDialog
GetMenuState
GetMenuStringA
GetMenuItemID
DestroyCursor
GetWindowRgn
GetDoubleClickTime
CreateMenu
SubtractRect
SetWindowTextA
CharUpperBuffA
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
GetDesktopWindow
wsprintfA
mouse_event
SetCursorPos
GetWindowThreadProcessId
PostMessageA
GetWindowTextA
CloseDesktop
EnumDesktopWindows
OpenDesktopA
KillTimer
IsWindowVisible
SetCursor
PtInRect
ScreenToClient
GetCursorPos
GetAsyncKeyState
DrawIcon
GetClientRect
IsIconic
SetTimer
LoadBitmapW
CopyIcon
GetCursor
LoadCursorW
AppendMenuA
GetSystemMenu
LoadIconW
InvalidateRect
GetWindowRect
RedrawWindow
GetSystemMetrics
CopyRect
DrawFocusRect
GetSysColor
FillRect
EnableWindow
MessageBoxA
SendMessageA
GetClassNameA
FrameRect
EndPaint

gdi32

GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
SelectPalette
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateRectRgnIndirect
PatBlt
CreateFontIndirectA
GetTextExtentPoint32A
GetTextMetricsA
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
GetRgnBox
GetBkColor
GetTextColor
CreateDIBitmap
CreateCompatibleBitmap
EnumFontFamiliesA
OffsetRgn
CreateRoundRectRgn
SetDIBColorTable
GetDIBits
RealizePalette
StretchBlt
SetPixel
CreateDIBSection
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
Rectangle
EnumFontFamiliesExA
GetWindowOrgEx
LPtoDP
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
ExtFloodFill
SetPaletteEntries
GetTextFaceA
SetPixelV
CreateRectRgn
SelectClipRgn
DeleteObject
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
CreateDCA
CopyMetaFileA
GetDeviceCaps
GetStockObject
BitBlt
CreateCompatibleDC
GetTextCharsetInfo
GetObjectA

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegDeleteKeyA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegQueryValueA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegEnumKeyExA
RegEnumValueA
RegEnumKeyA
RegDeleteValueA
RegCreateKeyExA
ControlService
CloseServiceHandle
ChangeServiceConfigA
StartServiceA
QueryServiceStatusEx
CreateServiceA
OpenServiceA
OpenSCManagerA
RegQueryValueExA

shell32

SHAppBarMessage
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
SHGetDesktopFolder
SHGetMalloc
ShellExecuteA
DragQueryFileA
DragFinish

comctl32

ImageList_GetIconSize
InitCommonControlsEx

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA
UrlUnescapeA
PathFileExistsA
PathRemoveFileSpecW

ole32

OleFlushClipboard
OleTranslateAccelerator
CoCreateInstance
CoUninitialize
CoTaskMemFree
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoCreateGuid
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoInitialize
OleLockRunning
OleIsCurrentClipboard
OleDestroyMenuDescriptor
DoDragDrop
OleGetClipboard
CoInitializeEx
CoRevokeClassObject
CoRegisterMessageFilter
OleCreateMenuDescriptor
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
IsAccelerator

oleaut32

SysFreeString
OleCreateFontIndirect
VarBstrFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SafeArrayCreate
SafeArrayGetElemsize
SafeArrayAccessData
SafeArrayUnaccessData
LoadRegTypeLi
SysAllocString
DispCallFunc
VariantCopy
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
SysStringLen

oledlg

ord8

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCloneImage
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

wininet

InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetQueryDataAvailable
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetReadFile
HttpQueryInfoA
InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetGetConnectedState

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

flag_dat
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee557ec1d1a6b336650b3c5daaab4d70

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

dbghelp

psapi

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

version

oleacc

wininet

imm32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 317KB - Virtual size: 316KB

.data Size: 36KB - Virtual size: 65KB

flag_dat Size: 512B - Virtual size: 4B

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 181KB - Virtual size: 181KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 317KB - Virtual size: 316KB

.data
Size: 36KB - Virtual size: 65KB

flag_dat
Size: 512B - Virtual size: 4B

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 181KB - Virtual size: 181KB