fcbb2e4eaaa7bc851b2c14456ce472d879575019a7a741836185f5f02171f134

Sharing

Copy URL Twitter E-mail

General

Target

fcbb2e4eaaa7bc851b2c14456ce472d879575019a7a741836185f5f02171f134
Size

5.5MB
MD5

510c1c91f119e0a9cf36fae19e030353
SHA1

518acf7adaec314b063ca1696ffc2caee91a3d29
SHA256

fcbb2e4eaaa7bc851b2c14456ce472d879575019a7a741836185f5f02171f134
SHA512

837c38286354044fb59cf59e070325acc965028638698d3422b861f07cce2d496329dcdb049bc23ae2a255533e9fa856a2efcffd24315c52a1a0da0e4fa46ae2
SSDEEP

98304:V1uvTXF5fzHOnRtyRxu0yieFhpdthJnv+JQI7b6FqGGJXK5G83UcEnqf4Eq:zurVBTMRtuA0yt5Fv+HUcHqwL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fcbb2e4eaaa7bc851b2c14456ce472d879575019a7a741836185f5f02171f134

Files

fcbb2e4eaaa7bc851b2c14456ce472d879575019a7a741836185f5f02171f134
.exe windows:5 windows x86 arch:x86

87b22aac75476b25166d7744af3f91b8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

sqlite3

sqlite3_errstr

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
swscanf
sscanf
strtod
rand
_except_handler3
qsort
wcsstr
wcsncpy
wcsncmp
wcslen
wcscmp
wcschr
strchr

comctl32

ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_ReplaceIcon

kernel32

lstrcpynA
lstrlenA
MulDiv
MultiByteToWideChar
ReadFile
ResetEvent
ResumeThread
lstrcpyA
SetFileAttributesA
SetFilePointer
SetThreadPriority
SizeofResource
Sleep
TerminateThread
WaitForSingleObject
WideCharToMultiByte
WritePrivateProfileStringA
GetLastError
GetStartupInfoA
lstrcmpiA
lstrcmpA
LockResource
LocalFree
LocalAlloc
LoadResource
InterlockedIncrement
InterlockedDecrement
GlobalUnlock
GlobalSize
GlobalLock
GlobalFree
GlobalAlloc
GetVersionExA
GetVersion
GetTempPathA
GetTempFileNameA
GetProcAddress
GetPrivateProfileStringA
GetPrivateProfileSectionNamesA
GetOEMCP
GetModuleHandleA
GetModuleFileNameA
GetFileAttributesA
GetExitCodeThread
GetCurrentDirectoryA
GetCPInfo
FreeLibrary
FindResourceA
EnumResourceTypesA
EnumResourceNamesA
EnumResourceLanguagesA
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
IsValidCodePage
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
ExitProcess
LeaveCriticalSection
LoadLibraryA
SetEvent

user32

IsDialogMessageA
IsIconic
IsMenu
IsRectEmpty
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
IsZoomed
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
LoadMenuA
LoadMenuIndirectA
LockWindowUpdate
LookupIconIdFromDirectoryEx
MapDialogRect
MapVirtualKeyA
MapVirtualKeyExA
MapWindowPoints
MessageBeep
MessageBoxA
MoveWindow
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PtInRect
RedrawWindow
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
ScreenToClient
SendMessageA
SendMessageTimeoutA
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetMenu
SetParent
SetRect
SetRectEmpty
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPos
SetWindowRgn
SetWindowsHookExA
ShowCaret
ShowScrollBar
ShowWindow
SystemParametersInfoA
TabbedTextOutA
ToAsciiEx
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UnionRect
UpdateWindow
VkKeyScanA
WaitMessage
WindowFromPoint
wsprintfA
IsClipboardFormatAvailable
InvertRect
InvalidateRect
IntersectRect
InsertMenuA
InflateRect
HideCaret
GrayStringA
GetWindowTextLengthA
GetWindowTextA
GetWindowRgn
GetWindowRect
GetTopWindow
GetTabbedTextExtentA
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSubMenu
GetParent
GetNextDlgTabItem
GetMessageA
GetMenuStringW
GetMenuStringA
GetMenuState
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
GetLastActivePopup
GetKeyState
GetKeyNameTextA
GetKeyboardState
GetKeyboardLayoutList
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDlgCtrlID
GetDialogBaseUnits
GetDCEx
GetCursorPos
GetClipboardFormatNameA
GetClipboardData
GetClientRect
GetClassNameA
GetClassLongA
GetCapture
GetAsyncKeyState
GetActiveWindow
FindWindowExA
FillRect
EqualRect
EnableWindow
EmptyClipboard
DrawTextA
DrawStateA
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageA
DestroyIcon
DestroyAcceleratorTable
DefWindowProcA
DeferWindowPos
CreatePopupMenu
CreateIconIndirect
CreateIconFromResourceEx
CreateAcceleratorTableA
IsChild
IsCharLowerA
CopyRect
CopyImage
GetWindowLongA
GetDesktopWindow
GetWindowLongW

gdi32

EndPage
EnumFontFamiliesA
EnumFontFamiliesExA
Escape
ExtCreateRegion
ExtFloodFill
ExtSelectClipRgn
ExtTextOutA
ExtTextOutW
EndDoc
GetBitmapBits
GetCharWidthA
GetClipBox
GetClipRgn
GetCurrentObject
GetCurrentPositionEx
GetDeviceCaps
GetDIBits
GetMapMode
Ellipse
DPtoLP
DeleteObject
FillPath
DeleteDC
GetObjectA
GetPixel
GetRgnBox
GetStockObject
CreateSolidBrush
GetTextColor
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextMetricsA
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
IntersectClipRect
LineTo
MoveToEx
OffsetViewportOrgEx
PatBlt
PolyBezierTo
Polyline
PtInRegion
PtVisible
Rectangle
RectVisible
RoundRect
SelectObject
SetAbortProc
SetBkColor
SetBkMode
SetBrushOrgEx
SetPixel
SetStretchBltMode
SetTextColor
StartDocA
StartPage
StretchBlt
StrokeAndFillPath
StrokePath
CreateRectRgnIndirect
CreateRectRgn
CreatePolygonRgn
CreatePen
GetTextAlign
CreatePatternBrush

winspool.drv

OpenPrinterW
EnumPrintersW

advapi32

RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

shell32

ShellExecuteA
SHGetFileInfoA

ole32

OleRun
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop

oleaut32

GetErrorInfo

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.g4747a
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.h4747b
Size: 4KB - Virtual size: 14.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.i4747c
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 600KB - Virtual size: 600KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.relod
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

87b22aac75476b25166d7744af3f91b8

Headers

File Characteristics

Imports

sqlite3

msvcrt

comctl32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.g4747a Size: 12KB - Virtual size: 8KB

.h4747b Size: 4KB - Virtual size: 14.0MB

.i4747c Size: 8KB - Virtual size: 4KB

.rsrc Size: 600KB - Virtual size: 600KB

.relod Size: 2.5MB - Virtual size: 2.5MB

.text
Size: 2.3MB - Virtual size: 2.3MB

.g4747a
Size: 12KB - Virtual size: 8KB

.h4747b
Size: 4KB - Virtual size: 14.0MB

.i4747c
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 600KB - Virtual size: 600KB

.relod
Size: 2.5MB - Virtual size: 2.5MB