cb0aac80ab9c3eb07a99448d7eb898a30ddae2f13809e93d088d0ec57581fff1

Sharing

Copy URL

Twitter E-mail

General

Target

cb0aac80ab9c3eb07a99448d7eb898a30ddae2f13809e93d088d0ec57581fff1
Size

496KB
MD5

c3d0753aa18ae395ae312bedf3390f90
SHA1

94d86e9c0bc3e28ac18625df07484ab13c44338e
SHA256

cb0aac80ab9c3eb07a99448d7eb898a30ddae2f13809e93d088d0ec57581fff1
SHA512

d7d2bcca9ba04913f802c7f75b2314bfb0ed4e2250b08b4e5fbdd8e9ec673a260ca31d4a0953f92dfa20871ef1ecee0be4f17084e7b6a792f792edf54710c2c7
SSDEEP

6144:/pe63b5W9ALT/5+VxdMEW4UCXSGFHSrV2D6kWPzn8ROYrh7QIWU9iQGTuF4:Re6LsScVnMX4UCBFHFD6kWPz8RHQul2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
cb0aac80ab9c3eb07a99448d7eb898a30ddae2f13809e93d088d0ec57581fff1

Files

cb0aac80ab9c3eb07a99448d7eb898a30ddae2f13809e93d088d0ec57581fff1
.exe windows:4 windows x86 arch:x86

61dc8f7d3c7a221d1cf2ae50af1bdb45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
CreateThread
ExitThread
HeapReAlloc
HeapSize
GetACP
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
IsBadWritePtr
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapFree
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
Sleep
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
SetConsoleCtrlHandler
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
GetCommandLineA
GetStartupInfoA
RaiseException
HeapAlloc
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSize
GetFileAttributesA
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
InterlockedExchange
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
SetErrorMode
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GlobalFlags
lstrcpynA
FormatMessageA
LocalFree
MulDiv
SetLastError
ExitProcess
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
WaitForSingleObject
CloseHandle
GetModuleFileNameA
GlobalAlloc
lstrcmpA
GetCurrentThread
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
lstrlenA
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
VirtualAlloc
GetModuleHandleW
GetProcAddress
GetLastError
GetFileType

user32

ReleaseDC
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
CharToOemA
OemToCharA
wvsprintfA
PostQuitMessage
ShowOwnedPopups
SetCursor
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
InflateRect
GetClassNameA
GetDesktopWindow
GetDialogBaseUnits
LoadCursorA
DestroyMenu
LoadStringA
WaitMessage
GetWindowThreadProcessId
WindowFromPoint
InsertMenuA
DeleteMenu
GetMenuStringA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
CharUpperA
CheckMenuItem
EnableMenuItem
PostMessageA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
GetMenuCheckMarkDimensions
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetClientRect
PtInRect
ReleaseCapture
SetRect
OffsetRect
GetWindowRect
GetParent
GetDC
SetCapture
CopyRect
DrawFrameControl
LoadIconA
DrawStateA
CopyImage
DestroyIcon
DrawIconEx
GetSysColorBrush
FrameRect
DrawFocusRect
GetSystemMetrics
GetSysColor
MessageBeep
LoadBitmapA
GetMenuState
ModifyMenuA
SetScrollRange
SetMenuItemBitmaps
InvalidateRect
UpdateWindow
SendMessageA
EnableWindow
GetWindowTextA
UnregisterClassA

gdi32

SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
StartDocA
SetColorAdjustment
PolyBezierTo
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
SetRectRgn
CombineRgn
CreateFontIndirectA
DPtoLP
GetTextMetricsA
CreateRectRgnIndirect
PatBlt
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
DeleteObject
DeleteDC
Rectangle
CreateFontA
GetTextExtentPoint32A
SelectObject
PolylineTo
GetStockObject

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA
RegCloseKey
RegDeleteValueA
RegSetValueExA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles
SHGetFileInfoA

comctl32

ord13
ord14
ImageList_Create
ord17
ImageList_LoadImageA
ImageList_Merge
ImageList_Read
ImageList_Write
ImageList_Destroy

Sections

.text
Size: 296KB - Virtual size: 293KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61dc8f7d3c7a221d1cf2ae50af1bdb45

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 296KB - Virtual size: 293KB

.rdata Size: 56KB - Virtual size: 55KB

.data Size: 24KB - Virtual size: 41KB

.rsrc Size: 116KB - Virtual size: 114KB

.text
Size: 296KB - Virtual size: 293KB

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 24KB - Virtual size: 41KB

.rsrc
Size: 116KB - Virtual size: 114KB