53ef63b980b993c5e66660f40704ba8c219cc0f050822df65c07dcac7fa48631

Sharing

Copy URL Twitter E-mail

General

Target

53ef63b980b993c5e66660f40704ba8c219cc0f050822df65c07dcac7fa48631
Size

2.0MB
MD5

ef05a9428e2a1f98acad4bd35fa6a129
SHA1

a0ef8773836e5e088e472dffc418b82ec932134f
SHA256

53ef63b980b993c5e66660f40704ba8c219cc0f050822df65c07dcac7fa48631
SHA512

1f8f6e000baede68ef92c46ce7fb9cf89f54a862ab4497449f8dadea859d6288900ebf5a3368206cb30e47258052a4f34116bb2f260896302ac4045dafa7da58
SSDEEP

24576:VhlL+eycPlTCL9rmPjTeXv8s0Lm0bzAdUwwOmJzA2AZXMJ24UBnDCLTaz:Vhl3n9TS+2XvMPAdQKQEH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53ef63b980b993c5e66660f40704ba8c219cc0f050822df65c07dcac7fa48631

Files

53ef63b980b993c5e66660f40704ba8c219cc0f050822df65c07dcac7fa48631
.exe windows:4 windows x86 arch:x86

f5663fc040ebcab3da69580fb10a9b66

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

urlmon

CoGetClassObjectFromURL

msvcrt

_controlfp
__set_app_type
__p__fmode
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
_except_handler3

imagehlp

UpdateDebugInfoFileEx
ImageDirectoryEntryToData

kernel32

WriteConsoleA
WideCharToMultiByte
WriteConsoleW
WriteFile
WritePrivateProfileStringW
GetThreadLocale
LoadLibraryA
LeaveCriticalSection
ExitProcess
GetTickCount
EnterCriticalSection
InitializeCriticalSection
GetCommandLineA
IsValidCodePage
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetACP
CloseHandle
CompareStringA
CompareStringW
ConvertDefaultLocale
CreateFileA
CreateFileW
CreateThread
DeleteCriticalSection
DuplicateHandle
EnumResourceLanguagesW
EnumResourceNamesW
EnumResourceTypesW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileW
FindResourceW
FlushFileBuffers
FormatMessageW
FreeEnvironmentStringsW
FreeLibrary
FreeResource
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCPInfo
GetCurrentProcess
GetEnvironmentStringsW
GetFileAttributesW
GetFileTime
GetFileType
GetFullPathNameW
GetLastError
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemInfo
GetTimeZoneInformation
GetVersionExA
GetVersionExW
GetVolumeInformationW
GlobalAddAtomW
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomW
GlobalFlags
GlobalFree
GlobalHandle
GlobalLock
GlobalReAlloc
HeapAlloc
HeapCreate
HeapFree
HeapReAlloc
HeapSize
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
LCMapStringA
LCMapStringW
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LocalReAlloc
LocalSize
LockFile
LockResource
lstrcmpA
lstrcmpW
lstrlenA
lstrlenW
MulDiv
MultiByteToWideChar
OpenProcess
RaiseException
ReadFile
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetThreadExecutionState
SetUnhandledExceptionFilter
SizeofResource
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery

user32

CheckMenuItem
ClientToScreen
CopyAcceleratorTableW
CopyIcon
CharUpperW
CreateDialogIndirectParamW
CreateIconFromResourceEx
CreateIconIndirect
CreateWindowExW
DefDlgProcA
DefDlgProcW
DefFrameProcA
CallWindowProcW
DefMDIChildProcA
DefMDIChildProcW
DefWindowProcA
DefWindowProcW
DestroyIcon
DestroyMenu
DestroyWindow
DrawEdge
DrawFocusRect
DrawFrameControl
DrawIcon
DrawIconEx
DrawStateW
DrawTextExW
DrawTextW
EnableMenuItem
EnableScrollBar
EnableWindow
EndDialog
EndPaint
EnumWindows
EqualRect
FillRect
GetActiveWindow
GetCapture
GetClassInfoExW
GetClassInfoW
GetClassLongW
GetClassNameW
GetClientRect
GetCursorPos
GetDC
GetDlgCtrlID
GetDlgItem
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyState
GetLastActivePopup
GetMenuCheckMarkDimensions
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMessagePos
GetMessageTime
GetMessageW
GetNextDlgGroupItem
GetNextDlgTabItem
GetParent
GetPropW
GetScrollInfo
GetScrollPos
GetSubMenu
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetTopWindow
GetWindowDC
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
GrayStringW
InflateRect
IntersectRect
InvalidateRect
InvalidateRgn
IsChild
IsDialogMessageW
IsIconic
IsRectEmpty
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
KillTimer
LoadBitmapW
LoadCursorW
LoadIconW
LoadImageW
LoadMenuW
LookupIconIdFromDirectoryEx
MapDialogRect
MapWindowPoints
MessageBeep
MessageBoxW
ModifyMenuW
MoveWindow
OffsetRect
PeekMessageW
PostMessageW
PostQuitMessage
PostThreadMessageW
PtInRect
RegisterClassA
RegisterClassW
RegisterClipboardFormatW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemovePropW
ScreenToClient
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageTimeoutW
SendMessageW
SetActiveWindow
SetCapture
SetClassLongW
SetCursor
SetFocus
SetForegroundWindow
SetMenuItemBitmaps
SetPropW
SetRectEmpty
SetScrollInfo
SetScrollPos
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowLongW
SetWindowPos
SetWindowRgn
SetWindowsHookExW
SetWindowTextW
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutW
TranslateMessage
UnhookWindowsHookEx
UnregisterClassW
UpdateWindow
ValidateRect
CallWindowProcA
CallNextHookEx
BeginPaint
AppendMenuW
AdjustWindowRectEx
GetDesktopWindow
GetWindowLongW
CopyRect
CharNextW
DefFrameProcW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

comdlg32

GetFileTitleW

advapi32

RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyExW
RegOpenKeyW
RegQueryValueExW
RegQueryValueW

ole32

StgOpenStorageOnILockBytes
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoFreeUnusedLibraries
CoGetClassObject
CoRegisterMessageFilter
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CreateILockBytesOnHGlobal
OleFlushClipboard
OleInitialize
OleIsCurrentClipboard
OleUninitialize
StgCreateDocfileOnILockBytes

Sections

.text
Size: 416KB - Virtual size: 412KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 38B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 436KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vli001
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f5663fc040ebcab3da69580fb10a9b66

Headers

File Characteristics

Imports

urlmon

msvcrt

imagehlp

kernel32

user32

winspool.drv

comdlg32

advapi32

ole32

Sections

.text Size: 416KB - Virtual size: 412KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 14.0MB

.tls Size: 4KB - Virtual size: 38B

.rsrc Size: 436KB - Virtual size: 436KB

.vli001 Size: 1.2MB - Virtual size: 1.2MB

.text
Size: 416KB - Virtual size: 412KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 14.0MB

.tls
Size: 4KB - Virtual size: 38B

.rsrc
Size: 436KB - Virtual size: 436KB

.vli001
Size: 1.2MB - Virtual size: 1.2MB