52f1c23a8c82ad8f4df24a082969b8e1

Sharing

Copy URL Twitter E-mail

General

Target

52f1c23a8c82ad8f4df24a082969b8e1
Size

5.1MB
MD5

52f1c23a8c82ad8f4df24a082969b8e1
SHA1

a877b6e8c6fd57210ff5c99f6347ece75947b3c1
SHA256

537a9813954850df16c0b637d49729ca44c8b5abcceea82431588af3e9323c74
SHA512

10f5793aefde5e2e3c90672ff2d97dbb2a3bf4282b10fe0c9607160abdc00aa30b39f9db922086e8133142df772ec5054ffce478adbf0ae3cc86fa0904f95946
SSDEEP

98304:fU7Na97p4284nKA7+hHNgxH5ZkfReJWChu:+yp4/4nK/hWLkf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
52f1c23a8c82ad8f4df24a082969b8e1

Files

52f1c23a8c82ad8f4df24a082969b8e1
.exe windows:4 windows x86 arch:x86

e9fb51d3f89d54d92f09f05cf35b79a1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExA
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegCreateKeyExA
RegSetValueExW
RegOpenKeyExW
RegQueryValueExA

comctl32

InitCommonControlsEx
ImageList_Destroy
ImageList_Create
ImageList_Add

crypt32

CryptUnprotectData
CryptProtectData

gdi32

DeleteObject
GetDeviceCaps
CreateFontIndirectA
CreateSolidBrush
GetStockObject
SelectObject
GetTextExtentPoint32W
Polygon
SetBkColor
TextOutW
CreatePen
MoveToEx
LineTo
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
DeleteDC
StretchDIBits
GetObjectA
SetPixelFormat
CreateDIBSection
DescribePixelFormat
SwapBuffers
SetPixel
StretchBlt
SetTextAlign
SetBkMode
Rectangle
SetTextColor
GetTextMetricsA
GetCurrentPositionEx
GetNearestColor
StartDocA
StartPage
EndPage
EndDoc
FillRgn
FrameRgn
CreateRoundRectRgn
CreatePolygonRgn
CreateRectRgn
CombineRgn

glu32

gluPerspective
gluProject
gluLookAt
gluUnProject
gluOrtho2D
gluNewTess
gluTessCallback
gluDeleteTess
gluTessVertex
gluTessBeginPolygon
gluTessEndPolygon
gluTessBeginContour
gluTessEndContour

kernel32

CreateMutexA
GetLastError
GetCommandLineW
GlobalFree
Sleep
GetWindowsDirectoryW
GetTempPathW
FileTimeToSystemTime
SystemTimeToFileTime
GetFileAttributesW
FindFirstFileW
FindClose
MoveFileW
CreateFileW
SetFileTime
CloseHandle
DeleteFileW
SetLastError
GetFileSize
SetFilePointer
ReadFile
SetEndOfFile
WriteFile
RemoveDirectoryW
FindNextFileW
CreateDirectoryW
GetDateFormatW
GetTimeFormatW
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetTickCount
LocalAlloc
LocalFree
FormatMessageA
GetVersionExA
GetSystemInfo
GetLocaleInfoA
MulDiv
GetCurrentProcessId
LocalFileTimeToFileTime
GlobalAlloc
GlobalLock
GlobalUnlock
FindResourceA
LoadResource
SizeofResource
LockResource
FreeResource
GlobalReAlloc
IsBadReadPtr
GlobalSize
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
CreateEventA
SetEvent
WaitForSingleObject
WaitForMultipleObjects
ReleaseMutex
LeaveCriticalSection
EnterCriticalSection
CreateFileA
lstrlenA
GetProcAddress
LoadLibraryA
FreeLibrary
GetSystemDirectoryA
GetModuleFileNameA
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
ExitProcess
RtlUnwind
GetCurrentProcess
DuplicateHandle
GetStdHandle
InitializeCriticalSection
DeleteCriticalSection
FindFirstFileA
FindNextFileA
CreateThread
ResumeThread
ExitThread
SleepEx
GetLocalTime
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentDirectoryA
DeleteFileA
GetDiskFreeSpaceA
FileTimeToLocalFileTime
GetFileInformationByHandle
PeekNamedPipe
GetFileType
TerminateThread
GetExitCodeThread
ExpandEnvironmentStringsA

opengl32

glPushMatrix
glTranslatef
glColor4f
glBegin
glVertex2f
glEnd
glPopMatrix
glVertex3f
glGetIntegerv
glViewport
glMatrixMode
glLoadIdentity
glGetDoublev
glClearColor
glClear
glEnable
glBlendFunc
glTexCoord2f
glDisable
glShadeModel
glHint
glAlphaFunc
glTexEnvi
glBindTexture
glFlush
wglCreateContext
glDeleteTextures
wglDeleteContext
wglMakeCurrent
glPushAttrib
glPopAttrib
glVertex2d
glLineWidth
glFinish
glPixelStorei
glReadPixels
glReadBuffer
glGetError
glGenTextures
glIsTexture
glTexParameteri
glTexImage2D
glGetString
wglGetCurrentContext
wglGetCurrentDC
glScalef
glTexCoord2d
glTexCoord1f
glTexImage1D
glPolygonMode
glRotatef
glVertex3d
glVertex3dv
glCallList
glGenLists
glNewList
glEndList
glDeleteLists

shell32

CommandLineToArgvW
ShellExecuteW

user32

FindWindowA
SendMessageA
MessageBoxW
GetPropA
TranslateMessage
DispatchMessageA
GetMessageA
PostQuitMessage
CreateWindowExW
ShowWindow
FindWindowW
IsWindowVisible
SetForegroundWindow
MessageBeep
SetMenu
SetPropA
RemovePropA
GetWindowPlacement
SetWindowPlacement
SetWindowTextW
MoveWindow
CopyRect
ClientToScreen
GetWindowLongA
GetMenu
AdjustWindowRectEx
InvalidateRect
GetDC
ReleaseDC
SetFocus
SetWindowPos
GetActiveWindow
GetWindowTextLengthA
GetWindowTextW
GetWindowRect
GetClientRect
GetWindow
ScreenToClient
GetCursorPos
BeginPaint
EndPaint
DefWindowProcW
FlashWindow
GetParent
MonitorFromWindow
GetMonitorInfoA
GetAsyncKeyState
GetFocus
EnumChildWindows
IsWindowEnabled
SetCapture
ReleaseCapture
GetWindowThreadProcessId
GetTopWindow
BringWindowToTop
TileWindows
CascadeWindows
GetSystemMetrics
GetDesktopWindow
PostMessageA
GetSysColor
FillRect
DrawEdge
FrameRect
TrackMouseEvent
GetWindowDC
CopyImage
EnableWindow
SetWindowLongA
SendMessageW
DestroyIcon
LoadImageA
SystemParametersInfoA
DestroyWindow
SetTimer
KillTimer
CallWindowProcA
LoadIconA
LoadCursorA
RegisterClassExW
GetClassInfoW
RegisterClassW
WindowFromPoint
SetCursor
OpenClipboard
GetClipboardData
CloseClipboard
SetClipboardData
IsClipboardFormatAvailable
RegisterClipboardFormatA
EmptyClipboard
CreatePopupMenu
CreateMenu
GetSubMenu
DeleteMenu
DestroyMenu
GetMenuItemCount
AppendMenuW
AppendMenuA
InsertMenuW
SetMenuItemInfoW
EnableMenuItem
GetMenuStringW
GetMenuItemID
TrackPopupMenu
TranslateAcceleratorA
MapVirtualKeyA
GetKeyNameTextA
DestroyAcceleratorTable
GetClassLongA
UpdateWindow
MessageBoxA
CreateWindowExA
LoadBitmapA
SetScrollInfo
GetScrollPos
SetScrollPos
DefWindowProcA
RegisterClassA
UnregisterClassA
wsprintfA
SetWindowRgn
CreateAcceleratorTableA

winmm

timeGetTime

wsock32

WSACleanup
WSAStartup
send
recv
closesocket
htons
ntohs
inet_ntoa
ioctlsocket
bind
getsockname
getsockopt
getprotobyname
setsockopt
socket
connect
inet_addr
WSASetLastError
gethostbyname
WSAGetLastError
select
__WSAFDIsSet
accept
listen
sendto
recvfrom

comdlg32

ChooseColorA
GetOpenFileNameW
GetSaveFileNameW
ChooseFontA
PageSetupDlgA
PrintDlgA

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 464KB - Virtual size: 462KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.exc
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 356KB - Virtual size: 355KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 304KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9fb51d3f89d54d92f09f05cf35b79a1

Headers

File Characteristics

Imports

advapi32

comctl32

crypt32

gdi32

glu32

kernel32

opengl32

shell32

user32

winmm

wsock32

comdlg32

Sections

.text Size: 2.0MB - Virtual size: 2.0MB

.rdata Size: 464KB - Virtual size: 462KB

.exc Size: 108KB - Virtual size: 104KB

.data Size: 356KB - Virtual size: 355KB

.CRT Size: 4KB - Virtual size: 700B

.rsrc Size: 1.8MB - Virtual size: 1.8MB

.idata Size: 12KB - Virtual size: 9KB

.bss Size: - Virtual size: 11KB

.reloc Size: 304KB - Virtual size: 302KB

.text
Size: 2.0MB - Virtual size: 2.0MB

.rdata
Size: 464KB - Virtual size: 462KB

.exc
Size: 108KB - Virtual size: 104KB

.data
Size: 356KB - Virtual size: 355KB

.CRT
Size: 4KB - Virtual size: 700B

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

.idata
Size: 12KB - Virtual size: 9KB

.bss
Size: - Virtual size: 11KB

.reloc
Size: 304KB - Virtual size: 302KB