0707cfd47743293d37378ee4465baf5c[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

0707cfd47743293d37378ee4465baf5c.exe
Size

3.1MB
MD5

0707cfd47743293d37378ee4465baf5c
SHA1

3ec3e1da7ca748292eb3d0990a763d58e04ebb09
SHA256

fb65c9da76587966b0fd53c34119aedd57e771899531146943b79bbb2cc129c3
SHA512

b989b282d247b5f64b98d658524cc2ae9ec44b105b31b8654c6868c4a545fb6a59310ca6c3bb9613d4b02e64d6bdb5e322c0498ba8572eb58adabe08d25f25c0
SSDEEP

98304:zIYSSR0z8vvZpdmI6RSTSGcNoIv0kGX4g7O9P9LfetG25NJn:zIdy0ohgBGImO9P9LfeHJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0707cfd47743293d37378ee4465baf5c.exe

Files

0707cfd47743293d37378ee4465baf5c.exe
.exe windows:5 windows x86 arch:x86

c7cd9a28c59d689112a5f72c9ae31817

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
FreeLibrary
lstrcmpW
MultiByteToWideChar
DeactivateActCtx
ActivateActCtx
GetLocaleInfoW
GlobalUnlock
ConvertDefaultLocale
GetUserDefaultUILanguage
GetCurrentThread
GlobalDeleteAtom
lstrcmpA
FreeResource
lstrcpyW
GetPrivateProfileIntW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetCurrentProcessId
SetThreadPriority
ResumeThread
GlobalAddAtomW
ReleaseActCtx
CompareStringW
GetVersionExW
GlobalFindAtomW
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCurrentDirectoryW
GlobalFlags
DeleteFileW
GlobalGetAtomNameW
lstrlenA
GetThreadLocale
FileTimeToSystemTime
lstrcmpiW
CreateFileW
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileW
GetVolumeInformationW
GetFullPathNameW
CopyFileW
GetFileAttributesExW
FileTimeToLocalFileTime
GetFileAttributesW
GetFileSizeEx
GetFileTime
GetTempFileNameW
GetTempPathW
GetWindowsDirectoryW
GetNumberFormatW
GetProfileIntW
SearchPathW
VirtualProtect
FindResourceExW
DecodePointer
EncodePointer
ExitThread
HeapSetInformation
GetStartupInfoW
RaiseException
RtlUnwind
ExitProcess
HeapReAlloc
HeapQueryInformation
HeapSize
GetSystemTimeAsFileTime
GetSystemInfo
VirtualQuery
SetStdHandle
GetFileType
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
LCMapStringW
GetConsoleCP
GetConsoleMode
WriteConsoleW
SetEnvironmentVariableA
LocalFree
MulDiv
GlobalSize
GlobalAlloc
GlobalLock
GetExitCodeProcess
OpenProcess
WriteProcessMemory
VirtualAlloc
FindResourceW
LoadResource
LockResource
SizeofResource
GetModuleHandleW
GetCommandLineA
CreateThread
GetConsoleWindow
CreateMutexW
GetTickCount
GetModuleFileNameW
TryEnterCriticalSection
SetWaitableTimer
CreateWaitableTimerW
lstrlenW
WideCharToMultiByte
ResetEvent
CancelIo
InterlockedExchange
CreateEventW
SetLastError
SwitchToThread
GetCurrentThreadId
GetLastError
FormatMessageW
SetEvent
Sleep
WaitForSingleObject
CloseHandle
CreateEventA
InterlockedDecrement
InterlockedIncrement
InterlockedCompareExchange
HeapDestroy
HeapCreate
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
HeapFree
HeapAlloc
LoadLibraryW
GetProcAddress
GetSystemDefaultUILanguage
VirtualFree

user32

SetTimer
KillTimer
SetRectEmpty
EnumDisplayMonitors
SetLayeredWindowAttributes
CharNextW
OffsetRect
CopyAcceleratorTableW
IsRectEmpty
SetRect
IntersectRect
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
LoadMenuW
SetWindowRgn
RedrawWindow
NotifyWinEvent
GetAsyncKeyState
IsZoomed
CharUpperW
UnionRect
EnableScrollBar
UpdateLayeredWindow
MonitorFromPoint
IsMenu
CreatePopupMenu
SetMenuDefaultItem
GetMenuDefaultItem
DestroyIcon
TranslateAcceleratorW
BringWindowToTop
InsertMenuItemW
LoadAcceleratorsW
LoadImageW
ReuseDDElParam
UnpackDDElParam
SetParent
DestroyAcceleratorTable
SetClassLongW
DrawIconEx
DrawEdge
DrawFrameControl
DrawFocusRect
ToUnicodeEx
MapVirtualKeyW
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableW
SetCursorPos
LockWindowUpdate
RegisterClipboardFormatW
InvertRect
HideCaret
GetIconInfo
CopyImage
OpenClipboard
SetClipboardData
CloseClipboard
EmptyClipboard
FrameRect
CopyIcon
CharUpperBuffW
PostThreadMessageW
GetKeyNameTextW
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
CreateMenu
IsClipboardFormatAvailable
GetUpdateRect
GetDoubleClickTime
IsCharLowerW
MapVirtualKeyExW
SubtractRect
DestroyCursor
GetWindowRgn
WinHelpW
IsChild
GetCapture
GetClassLongW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
RealChildWindowFromPoint
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
SetWindowLongW
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
InflateRect
CopyRect
GetClassNameW
InvalidateRect
UpdateWindow
DrawStateW
ShowOwnedPopups
SetCursor
GetMessageW
IsWindowVisible
GetKeyState
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
SetWindowsHookExW
UnhookWindowsHookEx
GetCursorPos
CallNextHookEx
GetFocus
PtInRect
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
GetWindowThreadProcessId
GetLastActivePopup
MessageBoxW
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
RegisterWindowMessageW
GetWindow
SetWindowContextHelpId
GetParent
MapDialogRect
SetWindowPos
PostQuitMessage
PostMessageW
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
PeekMessageW
TranslateMessage
DispatchMessageW
MsgWaitForMultipleObjects
ShowWindow
PostThreadMessageA
GetInputState
LoadIconW
GetSystemMenu
AppendMenuW
SendMessageW
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetWindowRect
ScreenToClient
GetDC
EnableWindow
DeleteMenu
WaitMessage
ReleaseCapture
WindowFromPoint
SetCapture
GetSysColorBrush
LoadCursorW
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
SendDlgItemMessageW
SetScrollRange
SendDlgItemMessageA
GetWindowTextLengthW

gdi32

GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
GetBkColor
GetTextColor
GetRgnBox
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
CreateRoundRectRgn
CreateDIBSection
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
CopyMetaFileW
CreateDCW
SaveDC
RestoreDC
SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
CreateRectRgnIndirect
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
SelectObject
CreateCompatibleBitmap
CreateDIBitmap
GetTextExtentPoint32W
CreateFontIndirectW
CreateHatchBrush
CreateSolidBrush
CreatePen
GetObjectType
SelectPalette
GetStockObject
CreateCompatibleDC
CreateBitmap
CreatePatternBrush
GetLayout
SetLayout
DeleteObject
SelectClipRgn
CreateRectRgn
GetObjectW
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
GetDeviceCaps
SetPixelV
GetTextFaceW
GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
LPtoDP
SetPaletteEntries
ExtFloodFill
EnumFontFamiliesExW
Rectangle
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
GetSystemPaletteEntries
OffsetRgn
SetDIBColorTable
StretchBlt
SetPixel
OffsetWindowOrgEx

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
RegSetValueExW
RegCloseKey
RegQueryValueExW
RegCreateKeyW

msimg32

AlphaBlend
TransparentBlt

comctl32

ImageList_GetIconSize
InitCommonControlsEx

shlwapi

PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW
PathRemoveFileSpecW

oledlg

OleUIBusyW

ws2_32

WSASetLastError
WSAEnumNetworkEvents
shutdown
WSACloseEvent
WSAResetEvent
WSAEventSelect
WSAWaitForMultipleEvents
WSAGetLastError
WSAStartup
WSACleanup
setsockopt
closesocket
socket
gethostbyname
htons
connect
WSAIoctl
select
recv
send
WSACreateEvent

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

winmm

PlaySoundW
timeGetTime

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

comdlg32

GetFileTitleW

shell32

SHGetDesktopFolder
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW
DragFinish
DragQueryFileW
ShellExecuteW
SHAppBarMessage
SHGetSpecialFolderLocation

ole32

OleTranslateAccelerator
IsAccelerator
OleLockRunning
CoRevokeClassObject
CoRegisterMessageFilter
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CLSIDFromProgID
OleDestroyMenuDescriptor
CoCreateGuid
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
OleCreateMenuDescriptor
CoTaskMemFree
CoInitializeEx
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitialize
CoCreateInstance
CoUninitialize
CLSIDFromString

oleaut32

SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
SysStringLen
VariantCopy
SysAllocString
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
OleCreateFontIndirect
SysFreeString

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c7cd9a28c59d689112a5f72c9ae31817

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msimg32

comctl32

shlwapi

oledlg

ws2_32

gdiplus

winmm

oleacc

imm32

winspool.drv

comdlg32

shell32

ole32

oleaut32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 277KB - Virtual size: 277KB

.data Size: 27KB - Virtual size: 64KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 165KB - Virtual size: 164KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 277KB - Virtual size: 277KB

.data
Size: 27KB - Virtual size: 64KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 165KB - Virtual size: 164KB