253cfcddb6768071338fd3ccc96d1fc2

Sharing

Copy URL

Twitter E-mail

General

Target

253cfcddb6768071338fd3ccc96d1fc2
Size

1.7MB
MD5

253cfcddb6768071338fd3ccc96d1fc2
SHA1

0ab4dcbc4b36df381f1c1c1b3b8fd3ddb6fc2ce8
SHA256

a0b2aafbbe9a61dce58573b553f8622ac33c54f40e75c2f4cbf89cc802157f89
SHA512

72f93f4b5d57072265b1fe2c0c277b642d4143d6109e2a1fe5933cee1db26b509e1f67e41dd70009a9e09f01cebf2849894d1cfbeea09da2fbb2861a9035584f
SSDEEP

49152:5EueQ3NQgauo32392fiTeRtqCislSoLn:5n2C392fiTeRUCDh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
253cfcddb6768071338fd3ccc96d1fc2

Files

253cfcddb6768071338fd3ccc96d1fc2
.exe windows:4 windows x86 arch:x86

b7469d2852a35ba82fd13ef1e806b7c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mmioRead
mmioClose
mmioDescend
mmioAscend
mmioOpenA

kernel32

LCMapStringA
LCMapStringW
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
GetEnvironmentStringsW
GetStdHandle
SetHandleCount
UnhandledExceptionFilter
SetStdHandle
SetEnvironmentVariableA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
IsBadCodePtr
VirtualAlloc
HeapSize
HeapReAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
SetUnhandledExceptionFilter
CompareStringW
CompareStringA
TerminateProcess
LockResource
GetVersion
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
LoadResource
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
IsBadWritePtr
GetTickCount
GetVersionExA
lstrcatA
lstrlenA
CreateDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
CopyFileA
GlobalAlloc
GlobalLock
GlobalHandle
GlobalUnlock
GlobalFree
lstrcpyA
MulDiv
lstrcmpA
GetLocalTime
GetACP
GetProfileStringA
GetSystemTime
GetTimeZoneInformation
GetCommandLineA
ExitProcess
HeapFree
GetStartupInfoA
HeapAlloc
RaiseException
RtlUnwind
GetOEMCP
SetErrorMode
SizeofResource
GlobalFlags
GetCPInfo
GetProcessVersion
TlsSetValue
TlsGetValue
LocalReAlloc
TlsFree
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
TlsAlloc
LocalLock
GetCurrentThread
LocalAlloc
SystemTimeToFileTime
LocalUnlock
SetFileAttributesA
GetShortPathNameA
LocalFileTimeToFileTime
GetFileSize
GetVolumeInformationA
GetThreadLocale
GetStringTypeExA
DeleteFileA
FindFirstFileA
FindClose
UnlockFile
MoveFileA
SetEndOfFile
SetFilePointer
LockFile
FlushFileBuffers
CreateFileA
WriteFile
ReadFile
GlobalReAlloc
GetCurrentProcess
DuplicateHandle
LocalFree
GlobalSize
FormatMessageA
lstrlenW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileTime
GetLastError
GetDiskFreeSpaceA
GetTempFileNameA
SetFileTime
GetFullPathNameA
WritePrivateProfileStringA
GetFileAttributesA
lstrcpynA
GetPrivateProfileStringA
GetPrivateProfileIntA
InterlockedDecrement
CloseHandle
WideCharToMultiByte
FindResourceA
InterlockedIncrement
SetLastError
GlobalAddAtomA

user32

GetNextDlgGroupItem
CopyAcceleratorTableA
PostThreadMessageA
UnionRect
RegisterClipboardFormatA
IsZoomed
CharNextA
GetTabbedTextExtentA
GetWindowThreadProcessId
WaitMessage
CharUpperA
FindWindowA
DestroyCursor
WindowFromPoint
GetSystemMenu
DeleteMenu
IsRectEmpty
SetParent
UnpackDDElParam
ReuseDDElParam
SetMenu
DestroyMenu
LoadAcceleratorsA
SetRectEmpty
DefMDIChildProcA
DrawMenuBar
TranslateAcceleratorA
TranslateMDISysAccel
DefFrameProcA
SetRect
BringWindowToTop
MapDialogRect
GetAsyncKeyState
GetMessageA
ValidateRect
GetCursorPos
EndDialog
CreateDialogIndirectParamA
EndPaint
BeginPaint
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
MoveWindow
IsDialogMessageA
SetDlgItemTextA
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
LoadStringA
GetDCEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
WinHelpA
GetClassInfoA
PostQuitMessage
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
DestroyIcon
LoadIconA
DlgDirSelectExA
DlgDirListA
AppendMenuA
CreatePopupMenu
GetFocus
LockWindowUpdate
ReleaseDC
GetDC
RedrawWindow
IsIconic
DrawIcon
MessageBeep
LoadMenuA
GetSubMenu
SetWindowTextA
LoadCursorA
LoadCursorFromFileA
GetSysColorBrush
InvertRect
ShowOwnedPopups
GetClassNameA
SetWindowContextHelpId
DispatchMessageA
AdjustWindowRectEx
RegisterClassA
SetCursor
GetDesktopWindow
UpdateWindow
KillTimer
SetTimer
PostMessageA
wsprintfA
GetSystemMetrics
LoadBitmapA
GetKeyState
GetWindowLongA
GrayStringA
DrawTextA
TabbedTextOutA
DrawFocusRect
DrawStateA
FrameRect
FillRect
InflateRect
CopyRect
GetSysColor
GetParent
GetCapture
GetActiveWindow
LoadImageA
IsChild
InvalidateRect
SetCapture
ClientToScreen
GetWindowRect
PtInRect
ReleaseCapture
SendMessageA
GetClientRect
OffsetRect
IsWindow
EnableWindow
SetFocus
SetActiveWindow
TranslateMessage
ExcludeUpdateRgn
DefDlgProcA
ShowCaret
UnregisterClassA
IsWindowUnicode
HideCaret

gdi32

CreateDIBitmap
GetTextExtentPointA
RealizePalette
SelectObject
RestoreDC
CreatePen
SetPolyFillMode
SetROP2
SetBkMode
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
IntersectClipRect
SelectClipRgn
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
GetStockObject
SaveDC
CreateRectRgn
GetWindowExtEx
GetViewportExtEx
CreatePatternBrush
AbortDoc
EndDoc
GetCharWidthA
StartPage
DPtoLP
EndPage
CreateDCA
Rectangle
SetAbortProc
LPtoDP
GetTextColor
GetViewportOrgEx
SetRectRgn
CombineRgn
GetMapMode
GetStretchBltMode
GetPolyFillMode
GetNearestColor
GetBkMode
GetROP2
GetTextAlign
GetWindowOrgEx
GetTextFaceA
StartDocA
DeleteDC
PatBlt
CreateBitmap
CreateRectRgnIndirect
SetTextColor
GetClipBox
SetBkColor
GetTextMetricsA
GetTextExtentPoint32A
GetObjectA
GetDIBits
DeleteObject
CreatePalette
SelectPalette
SetStretchBltMode
SetDIBitsToDevice
StretchDIBits
GetDeviceCaps
CreateFontA
CreateFontIndirectA
EnumFontFamiliesA
GetBkColor
CreateSolidBrush
BitBlt
TextOutA
RectVisible
ExtTextOutA
CreateCompatibleDC
CreateCompatibleBitmap
PtVisible
Escape

comdlg32

GetFileTitleA
CommDlgExtendedError
GetOpenFileNameA
PrintDlgA
GetSaveFileNameA
ChooseFontA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteValueA
RegCreateKeyA
RegCloseKey
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueA
RegDeleteKeyA
SetFileSecurityA
GetFileSecurityA
RegOpenKeyA
RegQueryValueA

shell32

ExtractIconA
SHGetFileInfoA
DragFinish
DragQueryFileA
SHGetMalloc
SHGetDesktopFolder
ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA

comctl32

ImageList_DrawEx
ImageList_Destroy
ImageList_Draw
ImageList_GetIconSize
ImageList_AddMasked
ImageList_GetIcon
ord17
ImageList_Create
PropertySheetA

oledlg

ord8

ole32

CoTaskMemAlloc
CoTaskMemFree
CoGetClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoRevokeClassObject
CoFreeUnusedLibraries
OleUninitialize
CoUninitialize
OleInitialize
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CLSIDFromString
CLSIDFromProgID
CoInitialize

olepro32

ord253

oleaut32

VariantTimeToSystemTime
SysStringLen
VarBstrFromDate
VariantClear
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
VariantInit
SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString

urlmon

CreateURLMoniker

Sections

.text
Size: 624KB - Virtual size: 620KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 900KB - Virtual size: 896KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7469d2852a35ba82fd13ef1e806b7c2

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

urlmon

Sections

.text Size: 624KB - Virtual size: 620KB

.rdata Size: 136KB - Virtual size: 135KB

.data Size: 44KB - Virtual size: 59KB

.rsrc Size: 900KB - Virtual size: 896KB

.text
Size: 624KB - Virtual size: 620KB

.rdata
Size: 136KB - Virtual size: 135KB

.data
Size: 44KB - Virtual size: 59KB

.rsrc
Size: 900KB - Virtual size: 896KB