cc1b5eeded53d48a7babf6526330feaaddcc681783f6f2e670d484c91de75a44

Sharing

Copy URL Twitter E-mail

General

Target

cc1b5eeded53d48a7babf6526330feaaddcc681783f6f2e670d484c91de75a44
Size

2.1MB
MD5

6867229f1d76582c5619c7d165cda876
SHA1

5749fed1396b1a873e32f18b5c2ac69ae028ca87
SHA256

cc1b5eeded53d48a7babf6526330feaaddcc681783f6f2e670d484c91de75a44
SHA512

36238ef83206855b15ca9cc95c1e0b2712a7ef98b33123632614e9c6678d5ba855b3ba8d4c209cf8dfb8d7824b7b418ea707a25d62415cc9caa451d3f5ea8ad7
SSDEEP

24576:bHoZqFc5dhoqh+5t6Al7RJRxfp9gfu3iV4XJ9ghJMklvn3/CZBrxpkye9AYUWamx:L2hat6gDYxV4XJWhpn3/CZZJQamx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cc1b5eeded53d48a7babf6526330feaaddcc681783f6f2e670d484c91de75a44

Files

cc1b5eeded53d48a7babf6526330feaaddcc681783f6f2e670d484c91de75a44
.exe windows:6 windows x86 arch:x86

b558e44f9c89cb81251df7f7c9885101

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerGetLineInfoW
mixerClose
mixerGetID
timeGetTime
timeBeginPeriod
mixerGetLineControlsW
mixerSetControlDetails
mixerGetControlDetailsW
mixerOpen
mixerGetNumDevs
waveOutClose
waveOutOpen
mciGetErrorStringW
mciSendStringW
PlaySoundW
timeEndPeriod

kernel32

FlushFileBuffers
GetFileSize
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
DuplicateHandle
GetThreadLocale
GetFileSizeEx
GetFileTime
LocalFileTimeToFileTime
SetFileAttributesW
SetFileTime
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
VirtualProtect
CreateEventW
SuspendThread
ResumeThread
lstrcmpA
GetCurrentThread
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LocalReAlloc
GlobalFlags
CompareStringW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
FindResourceExW
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryA
LoadLibraryExW
GetSystemDirectoryW
EncodePointer
IsValidCodePage
FormatMessageW
MulDiv
SetLastError
OutputDebugStringA
GetACP
LocalUnlock
LocalLock
GetCurrentThreadId
GetModuleFileNameA
lstrlenW
GetPriorityClass
SetPriorityClass
GetThreadPriority
SetThreadPriority
GetCurrentProcess
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
RaiseException
DecodePointer
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
lstrcpyW
GetModuleHandleW
AttachConsole
GenerateConsoleCtrlEvent
WideCharToMultiByte
WritePrivateProfileStringW
OutputDebugStringW
FreeResource
RtlUnwind
SetStdHandle
GetFileType
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetCommandLineA
GetCommandLineW
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualQuery
GetStdHandle
ExitProcess
GetStringTypeW
GetTimeZoneInformation
LCMapStringW
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetPrivateProfileStringW
GetPrivateProfileIntW
GetModuleFileNameW
GetVersionExW
CreateProcessW
GetExitCodeProcess
CreateMutexW
GetTempPathW
QueryPerformanceFrequency
MultiByteToWideChar
LoadLibraryW
FreeLibrary
DeleteCriticalSection
TryEnterCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
FileTimeToSystemTime
GetFileAttributesExW
GetConsoleCP
FindFirstFileExW
GetCurrentProcessId
FileTimeToLocalFileTime
GlobalHandle
GlobalSize
CloseHandle
WriteFile
CreateFileW
_llseek
_lclose
_lread
OpenFile
LocalFree
LocalAlloc
GlobalReAlloc
GetProcAddress
GetModuleHandleA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
DeleteFileW
GetTimeFormatW
GetDateFormatW
GetWindowsDirectoryW
GetLocalTime
GetLastError
GetVersion
WaitForSingleObject
ResetEvent
SetEvent
QueryPerformanceCounter
SetErrorMode
GetVolumeInformationW
GetFullPathNameW
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
CreateDirectoryW
SetCurrentDirectoryW
FindResourceW
SizeofResource
LockResource
LoadResource
GetTickCount
Sleep
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
LoadLibraryExA
GetLocaleInfoW

user32

RealChildWindowFromPoint
GetSysColorBrush
SetWindowContextHelpId
RegisterClipboardFormatW
PostQuitMessage
CharNextW
TranslateMessage
GetMessageW
MapDialogRect
CharUpperW
GetCursorPos
GetDesktopWindow
CreateDialogIndirectParamW
IsDialogMessageW
IsWindowEnabled
SendDlgItemMessageW
IsDlgButtonChecked
SetDlgItemTextW
GetMonitorInfoW
MonitorFromWindow
GetTopWindow
GetClassLongW
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
SetActiveWindow
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgCtrlID
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
IsChild
IsMenu
GetClassInfoExW
GetClassInfoW
GetMessageTime
GetMessagePos
DispatchMessageW
RegisterWindowMessageW
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
GetWindowTextLengthW
GetScrollPos
ScreenToClient
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
GetMenuItemCount
GetMenuItemID
SendDlgItemMessageA
WinHelpW
GetClassNameW
SetRect
MessageBoxW
SetWindowTextW
EndPaint
BeginPaint
EnableMenuItem
GetSystemMenu
GetDialogBaseUnits
CheckDlgButton
GetDlgItem
EndDialog
DialogBoxIndirectParamW
MoveWindow
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
RegisterClassW
LoadStringW
DestroyWindow
CreateWindowExW
RegisterClassExW
GetWindow
GetWindowTextW
WaitForInputIdle
DrawTextW
UnregisterClassW
CopyIcon
MessageBeep
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetCapture
ReleaseCapture
CopyAcceleratorTableW
InvalidateRgn
IsRectEmpty
SetWindowLongW
SetLayeredWindowAttributes
GetNextDlgGroupItem
PostThreadMessageW
CallWindowProcW
ScrollDC
DrawIcon
GetWindowThreadProcessId
EnumWindows
SendMessageTimeoutW
wsprintfW
ChangeDisplaySettingsExW
UnionRect
GetSystemMetrics
GetWindowPlacement
RedrawWindow
LoadIconW
GetLastActivePopup
FindWindowW
IsIconic
DefWindowProcW
PeekMessageW
GetGestureInfo
ShowCursor
SetForegroundWindow
GetForegroundWindow
KillTimer
mouse_event
GetAsyncKeyState
GetFocus
BringWindowToTop
IsWindow
UnregisterPowerSettingNotification
IntersectRect
SetWindowPos
GetIconInfo
CreateIconIndirect
LoadImageW
DestroyIcon
DestroyCursor
GetParent
GetWindowLongW
OffsetRect
CopyRect
FrameRect
FillRect
DrawFocusRect
GetSysColor
WindowFromPoint
ClientToScreen
SetCursor
DrawStateW
TrackPopupMenuEx
GetSubMenu
DestroyMenu
GetActiveWindow
GetNextDlgTabItem
InflateRect
SystemParametersInfoW
SetRectEmpty
GetClientRect
ValidateRect
InvalidateRect
UpdateWindow
SetTimer
ReleaseDC
GetDC
SetFocus
ShowWindow
LoadCursorW
EnableWindow
SendMessageW
GetWindowRect
PostMessageW
SetMenuItemInfoW

gdi32

SetMapMode
GetWindowExtEx
MoveToEx
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
GetMapMode
GetBkColor
GetTextColor
EnumFontFamiliesExW
GetRgnBox
StretchDIBits
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
CreateCompatibleDC
BitBlt
SetDIBitsToDevice
GetSystemPaletteEntries
GetDIBits
GetPaletteEntries
SetDIBits
GetViewportExtEx
Escape
CreatePen
SetBkMode
CreatePolygonRgn
CreateRectRgn
CreateEllipticRgn
CombineRgn
GetDCOrgEx
GetClipBox
CreateSolidBrush
CreateFontIndirectW
GetICMProfileW
CreateDCW
SelectPalette
GetDeviceCaps
CreatePalette
CreateDIBitmap
SetTextColor
SetPixel
GetStockObject
GetPixel
CreateCompatibleBitmap
CreateBitmap
RealizePalette
ExtTextOutW
SetBkColor
GetObjectW
CreateDIBSection
SetStretchBltMode
StretchBlt
SelectObject
PatBlt
DeleteObject
DeleteDC

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegDeleteKeyW
RegOpenKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegSetValueW
RegCreateKeyW
RegOpenKeyW
RegSetValueExW
RegQueryValueExW

shell32

SHGetDesktopFolder
SHGetPathFromIDListW
ShellExecuteExW
ShellExecuteW
SHGetMalloc

comctl32

_TrackMouseEvent

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW

ole32

CoTaskMemFree
CoTaskMemAlloc
PropVariantClear
CoCreateInstance
StringFromGUID2
CoInitialize
CoUninitialize
CoCreateGuid
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CreateStreamOnHGlobal
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter

oleaut32

VariantCopy
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElement
VariantInit
VariantClear
VariantChangeType
SysFreeString
SystemTimeToVariantTime
VariantTimeToSystemTime
VarBstrFromDate
SysAllocStringLen
VarDateFromStr
OleCreateFontIndirect
SysStringLen
SafeArrayDestroy
SysAllocString

oledlg

OleUIBusyW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 924KB - Virtual size: 924KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 484KB - Virtual size: 484KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b558e44f9c89cb81251df7f7c9885101

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

version

oleacc

Sections

.text Size: 924KB - Virtual size: 924KB

.rdata Size: 484KB - Virtual size: 484KB

.data Size: 61KB - Virtual size: 99KB

.rsrc Size: 138KB - Virtual size: 138KB

.text
Size: 924KB - Virtual size: 924KB

.rdata
Size: 484KB - Virtual size: 484KB

.data
Size: 61KB - Virtual size: 99KB

.rsrc
Size: 138KB - Virtual size: 138KB