decb1eaaf7125df19d414bfc298ae1cd

Sharing

Copy URL Twitter E-mail

General

Target

decb1eaaf7125df19d414bfc298ae1cd
Size

476KB
MD5

decb1eaaf7125df19d414bfc298ae1cd
SHA1

97c7f8d4f7607aefb7f43a155b711e302229ad5b
SHA256

ef97c42d9e6a030d953d6ff30da9812154ee629c9203bbba8980eaba12a6d813
SHA512

503eece5abcee92a4d79e22a2f4ad2982a20234d77ee147922b95dc57d761d91abb1f8a4c61675898d23038f57d53af542a2369aa88d9fdd1bd246746c084b69
SSDEEP

12288:kb+HThVBTYnYcR6CxoQLmZyCryxGUjWe+:Lzc7oCxoQLmZrkNie

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
decb1eaaf7125df19d414bfc298ae1cd

Files

decb1eaaf7125df19d414bfc298ae1cd
.exe windows:4 windows x86 arch:x86

c503b5fa00170528fc81e05563c02724

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleConvertIStorageToOLESTREAM
CLSIDFromProgID
OleQueryCreateFromData
WriteClassStg
OleFlushClipboard
OleRun
MkParseDisplayName
StringFromGUID2
OleSetClipboard
StgCreateDocfileOnILockBytes
OleUninitialize
OleSave
CoRevokeClassObject
StringFromCLSID
CoDisconnectObject
OleInitialize
OleCreateLinkFromData
OleCreateFromData
OleDoAutoConvert
OleCreateMenuDescriptor
GetClassFile
OleSaveToStream
OleIsCurrentClipboard
CreateStreamOnHGlobal
CreateDataAdviseHolder
OleCreateLink
CoLockObjectExternal
OleConvertOLESTREAMToIStorage
OleGetClipboard
OleLoadFromStream
CoFreeUnusedLibraries
BindMoniker
StgCreateDocfile
IsAccelerator
OleCreateLinkToFile
CLSIDFromString
CoGetMalloc
CreateILockBytesOnHGlobal
CoGetClassObject
CoIsOle1Class
StgOpenStorage
CoUnmarshalInterface
OleDuplicateData
ReleaseStgMedium
OleIsRunning
CoCreateInstance
OleLoad
CoRegisterClassObject
OleGetAutoConvert
IIDFromString
OleGetIconOfClass
DoDragDrop
StgIsStorageILockBytes
OleLockRunning
CreateOleAdviseHolder
OleTranslateAccelerator
StgOpenStorageOnILockBytes
OleCreateFromFile
CreateBindCtx
OleQueryLinkFromData
ProgIDFromCLSID
OleDestroyMenuDescriptor
CoMarshalInterface
CoRegisterMessageFilter
RevokeDragDrop
ReadClassStm
ReadClassStg
OleRegGetUserType
RegisterDragDrop
OleSetMenuDescriptor

kernel32

LCMapStringA
FindNextFileA
SetCurrentDirectoryA
CloseHandle
GlobalUnlock
FileTimeToLocalFileTime
GetWindowsDirectoryA
GlobalLock
lstrcpyA
FreeResource
ReleaseSemaphore
GetEnvironmentStringsW
MulDiv
MultiByteToWideChar
GetCurrentDirectoryA
CreateSemaphoreA
HeapCreate
GetModuleFileNameA
GetModuleHandleA
GetFileType
GetSystemDefaultLCID
GetSystemInfo
GetStringTypeA
DeleteCriticalSection
GetModuleFileNameW
CreateProcessW
GlobalAddAtomA
GetFileTime
GetEnvironmentStrings
SearchPathA
LockFile
lstrcpynA
GetProcAddress
WinExec
FlushFileBuffers
GetDriveTypeA
Sleep
GlobalDeleteAtom
SetEvent
InitializeCriticalSection
GlobalAlloc
TlsFree
HeapAlloc
GetCPInfo
FindFirstFileA
SetErrorMode
LoadLibraryExA
SetLastError
RaiseException
HeapReAlloc
IsDBCSLeadByte
VirtualProtect
GetStartupInfoA
RemoveDirectoryA
LoadLibraryA
lstrcmpiA
GetCurrentProcess
GetProfileStringA
InterlockedDecrement
SetEndOfFile
FlushInstructionCache
ExitProcess
IsBadCodePtr
lstrcmpiW
_lclose
GetCommandLineA
CreateEventA
SizeofResource
FreeLibrary
LeaveCriticalSection
GetCurrentThreadId
FormatMessageW
SetHandleCount
GetACP
ResetEvent
ReadFile
GlobalFree
DeleteFileA
VirtualFree
GlobalSize
GetUserDefaultLCID
GetLastError
FileTimeToSystemTime
GetVersion
SetLocalTime
lstrcmpA
TerminateProcess
GlobalReAlloc
CompareStringA
GlobalHandle
CreateThread
SetFileAttributesA
EnterCriticalSection
InterlockedIncrement
SetEnvironmentVariableA
GetLocaleInfoA
lstrlenA
CreateProcessA
HeapFree
TlsGetValue
FreeEnvironmentStringsA
FormatMessageA
GetStringTypeExA
IsBadReadPtr
CreateFileA
LoadResource
GetVolumeInformationA
HeapDestroy
GetDateFormatA
ResumeThread
TlsSetValue
GetTimeZoneInformation
VirtualQuery
GetUserDefaultLangID
CompareStringW
VirtualAlloc
FreeEnvironmentStringsW
GetTickCount
GetStdHandle
GetFullPathNameA
GetTempPathA
LCMapStringW
GetOEMCP
GetLocalTime
_lwrite
_llseek
GetExitCodeProcess
_lread
FindResourceA
GetStringTypeW
GetShortPathNameA
WriteFile
CreateDirectoryA
GetFileAttributesA
UnhandledExceptionFilter
lstrcatA
SetFilePointer
ExitThread
WaitForSingleObject
UnlockFile
TlsAlloc
HeapSize
DuplicateHandle
GetSystemDirectoryA
MoveFileA
GetCurrentProcessId
GetSystemTime
GetSystemDefaultLangID
WideCharToMultiByte
GetTempFileNameA
FindClose
GetVersionExA
LockResource
RtlUnwind
SystemTimeToFileTime
SetFileTime
SetStdHandle

ntdll

RtlAddCompoundAce

ddraw

DirectDrawEnumerateA

advapi32

RegDeleteValueW
RegOpenKeyW
RegSetValueExA
RegCreateKeyW
DeregisterEventSource
RegSetValueA
RegDeleteValueA
RegQueryValueExA
RegOpenKeyA
RegEnumValueA
OpenProcessToken
RegCloseKey
LookupPrivilegeValueA
RegEnumKeyW
RegQueryValueExW
RegEnumValueW
RegEnumKeyA
RegQueryInfoKeyA
InitializeSecurityDescriptor
RegSetValueExW
RegisterEventSourceA
RegCreateKeyA
RegDeleteKeyA
AdjustTokenPrivileges
RegQueryValueA
SetSecurityDescriptorDacl
ReportEventA
RegDeleteKeyW
RegOpenKeyExA

user32

PeekMessageA
DdeCreateDataHandle
SetCaretPos
CharLowerA
IsRectEmpty
IsWindow
EnumClipboardFormats
GetSystemMetrics
BringWindowToTop
GetClipboardFormatNameA
SubtractRect
GetMenuItemCount
DefWindowProcA
CreateWindowExA
DrawMenuBar
IsZoomed
IsWindowEnabled
GetDlgItem
GetClassNameA
DdePostAdvise
GetKeyState
DdeQueryConvInfo
SetMenu
MessageBoxIndirectA
MessageBoxA
SetDlgItemTextA
OpenClipboard
GetCaretBlinkTime
BeginPaint
FillRect
DdeCreateStringHandleA
RegisterClassExA
GetSubMenu
GetKeyboardState
GetMenuStringA
CreateMenu
CreatePopupMenu
EnableMenuItem
GetDC
SetMenuDefaultItem
RemoveMenu
WinHelpA
GetIconInfo
TranslateMessage
GetMenuItemID
VkKeyScanW
AttachThreadInput
RegisterClipboardFormatA
DdeFreeDataHandle
CharNextA
CharLowerBuffW
EnumThreadWindows
SetScrollPos
ShowCursor
EndDialog
IsIconic
CopyRect
RemovePropA
TabbedTextOutA
GetSystemMenu
InvalidateRgn
CharToOemBuffA
GetClassInfoA
DefFrameProcA
CreateIcon
CharUpperBuffA
AdjustWindowRectEx
GetScrollPos
SetForegroundWindow
CheckMenuItem
DdeAbandonTransaction
DdeGetLastError
SetWindowLongA
EndPaint
DestroyAcceleratorTable
DdeUninitialize
DrawIcon
GetDoubleClickTime
SystemParametersInfoA
GetActiveWindow
SetMenuItemInfoA
ReleaseCapture
CopyAcceleratorTableA
SetPropA
LoadAcceleratorsA
GetMenuState
ModifyMenuA
DestroyCaret
EmptyClipboard
SendDlgItemMessageA
DdeNameService
PeekMessageW
GetWindowTextA
InvalidateRect
IsDialogMessageA
IsClipboardFormatAvailable
MsgWaitForMultipleObjects
AdjustWindowRect
PostThreadMessageA
CreateCursor
LoadCursorA
SetWindowsHookExA
EqualRect
CharToOemA
DdeSetUserHandle
DdeDisconnect
GetDesktopWindow
LoadStringA
GetQueueStatus
GetDCEx
IsWindowVisible
IsChild
GetPropA
GetUpdateRgn
CharUpperBuffW
EndDeferWindowPos
DestroyIcon
UnregisterClassA
DrawFrameControl
GetKeyboardLayout
ShowCaret
GetClientRect
GetAsyncKeyState
HideCaret
GetWindowThreadProcessId
GetWindowRgn
SetWindowTextA
LoadImageA
FrameRect
DdeCmpStringHandles
SetScrollRange
BeginDeferWindowPos
FindWindowW
DialogBoxParamA
GetCursorPos
GetCaretPos
IntersectRect
AppendMenuA
DdeGetData
CallNextHookEx
LockWindowUpdate
CreateAcceleratorTableA
GetForegroundWindow
SetCursorPos
GetTabbedTextExtentA
GetWindowRect
GetLastActivePopup
SetRect
IsCharAlphaA
GetParent
SetWindowPos
LoadIconA
GetClipboardData
SendMessageA
DeleteMenu
ScreenToClient
MessageBeep
GetWindowTextLengthA
FindWindowA
InsertMenuA
GetMessagePos
GetWindowDC
DestroyCursor
SetCursor
UnhookWindowsHookEx
ReleaseDC
DispatchMessageA
ClipCursor
GetFocus
DdeConnect
SetFocus
GetWindowLongA
MoveWindow
CloseClipboard
WaitMessage
GetMenu
WaitForInputIdle
OemToCharA
GetWindow
MapWindowPoints
ToAscii
CharLowerBuffA
PtInRect
InflateRect
CharUpperA
PostQuitMessage
SetWindowRgn
SetWindowsHookExW
keybd_event
GetSysColor
CallWindowProcA
CharPrevA
DrawFocusRect
DdeQueryStringA
GetMessageTime
EnableWindow
KillTimer
SetCapture
SetWindowContextHelpId
GetMenuItemInfoA
ShowWindow
CreateCaret
DdeFreeStringHandle
PostMessageW
SetTimer
DdeInitializeA
DrawTextA
UpdateWindow
SetClipboardData
WindowFromPoint
GetCursor
SetScrollInfo
LoadBitmapA
DeferWindowPos
GetClassInfoExA
SetParent
VkKeyScanA
ClientToScreen
RegisterClassA
OffsetRect
ShowScrollBar
TranslateMDISysAccel
TrackPopupMenu
CreateDialogParamA
GetCapture
PostMessageA
DefMDIChildProcA
GetUpdateRect
DestroyWindow
DdeClientTransaction
SetActiveWindow
DestroyMenu
wsprintfA
SetKeyboardState
GetScrollInfo

gdi32

GetClipBox
CloseMetaFile
EndDoc
GetROP2
GetWindowExtEx
SaveDC
LineTo
BitBlt
SetDIBColorTable
GetCurrentObject
CreateDIBSection
StretchBlt
CreatePatternBrush
PathToRegion
OffsetWindowOrgEx
CreateSolidBrush
SetWindowOrgEx
CreateDCA
CreateCompatibleDC
CopyEnhMetaFileA
ExcludeClipRect
CreateBrushIndirect
CreateCompatibleBitmap
SetTextColor
SetBkColor
PlayEnhMetaFile
SetViewportExtEx
PlayMetaFile
CloseEnhMetaFile
CreateRectRgn
StartDocA
PatBlt
CopyMetaFileA
Arc
DeleteEnhMetaFile
PtInRegion
RestoreDC
GetPixel
ResetDCA
GetSystemPaletteEntries
BeginPath
EndPage
CreateHatchBrush
SetStretchBltMode
StretchDIBits
GetPaletteEntries
CombineRgn
SetBrushOrgEx
CreateEllipticRgnIndirect
GetTextMetricsA
GetDIBits
CreateBitmap
UnrealizeObject
EndPath
RealizePalette
IntersectClipRect
TextOutA
RoundRect
GetEnhMetaFileHeader
GetMapMode
GetTextColor
DeleteObject
SetMapMode
SetPixelV
SetViewportOrgEx
SetRectRgn
EnumFontsA
GetBitmapBits
GetObjectType
CreateHalftonePalette
Pie
StartPage
Ellipse
CreateICA
CreateFontIndirectA
ExtCreateRegion
GetTextExtentPoint32A
MoveToEx
Rectangle
GetNearestColor
CreatePenIndirect
DeleteDC
ScaleViewportExtEx
CreateMetaFileA
CreateDIBitmap
SetAbortProc
GetWindowOrgEx
CreatePalette
WidenPath
GetBkColor
AbortDoc
GetStockObject
TranslateCharsetInfo
CreateRoundRectRgn
OffsetRgn
GetViewportExtEx
SelectClipRgn
GetObjectA
DeleteMetaFile
SetWindowExtEx
GetTextExtentPointA
SetROP2
CreatePen
ExtTextOutA
GetDeviceCaps
SelectPalette
ScaleWindowExtEx
CreateRectRgnIndirect
CreateEnhMetaFileA
Escape
SelectObject
SetBkMode

Sections

.text
Size: 4KB - Virtual size: 904B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 420KB - Virtual size: 418KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c503b5fa00170528fc81e05563c02724

Headers

File Characteristics

Imports

ole32

kernel32

ntdll

ddraw

advapi32

user32

gdi32

Sections

.text Size: 4KB - Virtual size: 904B

.rdata Size: 12KB - Virtual size: 8KB

.rsrc Size: 420KB - Virtual size: 418KB

.idata Size: 16KB - Virtual size: 15KB

.data Size: 20KB - Virtual size: 2.4MB

.text
Size: 4KB - Virtual size: 904B

.rdata
Size: 12KB - Virtual size: 8KB

.rsrc
Size: 420KB - Virtual size: 418KB

.idata
Size: 16KB - Virtual size: 15KB

.data
Size: 20KB - Virtual size: 2.4MB