11fc6f994db2a0a8a6ef59dd1c0b12588baa080cf1f96e8b82729fc212415814

Sharing

Copy URL Twitter E-mail

General

Target

11fc6f994db2a0a8a6ef59dd1c0b12588baa080cf1f96e8b82729fc212415814
Size

724KB
MD5

7e1c9c00e5472fefda021a956d23b11b
SHA1

f2f0802210d7b89e1fca62ef8f6bb3dabec905a0
SHA256

11fc6f994db2a0a8a6ef59dd1c0b12588baa080cf1f96e8b82729fc212415814
SHA512

dfcfd93a7d27a90348b6c2b201972054ce8919b10affc3c6fefd436a850c9b086fe3cae44192baf8144f4e846c5e56300f7cf3f9a7c91b3608f8049e894bcbd6
SSDEEP

12288:8pkNl/d+6cndBY/rkZ5gZOcj/lAb6K/KhK3Ropj5aOU3Za5:8pkNlLABYTkM9iKhK3Ropj5aOz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11fc6f994db2a0a8a6ef59dd1c0b12588baa080cf1f96e8b82729fc212415814

Files

11fc6f994db2a0a8a6ef59dd1c0b12588baa080cf1f96e8b82729fc212415814
.exe windows:4 windows x86 arch:x86

da30b3f1438fd0c873965181490ba9ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextExA
wsprintfA
CharUpperA
GetWindowTextA
FindWindowA
EnumChildWindows
SendMessageTimeoutA
IsWindowEnabled
SetMenuItemInfoA
RemoveMenu
SetTimer
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
CloseClipboard
GetClassNameA
LoadBitmapA
SetMenu
TrackPopupMenu
GetMenuItemInfoA
InsertMenuItemA
ModifyMenuA
CreatePopupMenu
CreateMenu
ScreenToClient
WindowFromPoint
SetCapture
EnableScrollBar
ShowScrollBar
MapWindowPoints
DrawMenuBar
GetWindowDC
CreateIconIndirect
GetComboBoxInfo
SetScrollRange
DestroyIcon
GetClassLongA
SetClassLongA
SetWindowTextA
EnableWindow
IntersectRect
RedrawWindow
IsZoomed
MessageBoxA
DestroyMenu
MessageBoxIndirectA
GetDlgItem
GetScrollInfo
CopyRect
GetMenuCheckMarkDimensions
PostQuitMessage
GetScrollBarInfo
DrawTextA
LoadImageA
GetIconInfo
LoadIconA
RegisterClassExA
AdjustWindowRect
GetKeyState
ReleaseCapture
GetFocus
GetParent
KillTimer
SetScrollPos
IsWindowVisible
CallWindowProcA
DrawFrameControl
InflateRect
DrawIconEx
DrawFocusRect
FrameRect
BeginPaint
EndPaint
RealChildWindowFromPoint
GetSysColor
SetRect
PostMessageA
DefWindowProcA
GetSystemMetrics
CreateWindowExA
SetWindowLongA
SystemParametersInfoA
ClientToScreen
SetCursorPos
LoadCursorA
SetCursor
SetScrollInfo
ScrollWindowEx
CreateCaret
UpdateWindow
DestroyCaret
DestroyWindow
InvalidateRect
ValidateRect
ShowWindow
HideCaret
FillRect
SetCaretPos
ShowCaret
keybd_event
InvalidateRgn
SetWindowPos
ValidateRgn
SendMessageA
RegisterClassA
IsRectEmpty
EnableMenuItem
GetSystemMenu
CreateDialogParamA
GetUpdateRect
SetFocus
DispatchMessageA
TranslateMessage
GetMessageA
PeekMessageA
GetClientRect
GetWindowLongA
GetDC
ReleaseDC
MoveWindow
GetWindowRect
OemToCharA

kernel32

GetDriveTypeA
FindClose
FileTimeToLocalFileTime
FindFirstFileA
GetFileInformationByHandle
GetFullPathNameA
SetEndOfFile
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
RaiseException
FlushFileBuffers
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
MoveFileA
RtlUnwind
SetConsoleCtrlHandler
HeapAlloc
HeapReAlloc
TerminateProcess
HeapFree
GetTimeZoneInformation
ExitProcess
GetVersion
GetStartupInfoA
SetFilePointerEx
GetTempFileNameA
GetTempPathA
DeleteFileA
GetSystemDirectoryA
GetLastError
CreateProcessA
GetEnvironmentVariableA
SetEnvironmentVariableA
CreateDirectoryA
RemoveDirectoryA
GlobalUnlock
GlobalLock
GlobalAlloc
WideCharToMultiByte
MultiByteToWideChar
Sleep
Beep
CloseHandle
CreateFileA
GetTickCount
GetSystemTime
GetProcAddress
LoadLibraryA
GetVersionExA
GetCurrentProcess
WriteFile
GetCommandLineA
GetModuleHandleA
SetCurrentDirectoryA
GetCurrentDirectoryA
MulDiv
GetLocalTime
GlobalFree
GetExitCodeProcess
WaitForSingleObject
CreatePipe
FileTimeToSystemTime
GetFileTime
CreateMutexA
ExitThread
CreateThread
ReleaseMutex
SetThreadPriority
GetThreadPriority
GetCurrentThread
ReadFile
GetFileAttributesA
GetModuleFileNameA
GetFileAttributesExA
DeviceIoControl
WaitNamedPipeA
SetFilePointer
GetFileSize
LockFile
UnlockFile
SetEnvironmentVariableW
GlobalReAlloc
lstrcmpiA
lstrcpyA
GetProfileStringA
GetCurrentProcessId

comctl32

ImageList_ReplaceIcon
ImageList_Add
_TrackMouseEvent
ord17
InitCommonControlsEx
ImageList_Create

gdi32

AbortDoc
CreateDCA
StartDocA
StartPage
EndDoc
EndPage
SetAbortProc
SetStretchBltMode
StretchDIBits
GetDIBits
GetSystemPaletteEntries
GetStockObject
Rectangle
EndPath
StrokePath
StrokeAndFillPath
BeginPath
Arc
Pie
Ellipse
GetBkColor
SetPixel
SelectPalette
RealizePalette
CreateDIBitmap
CreatePalette
CreatePatternBrush
GetPixel
CreateDIBSection
CreateBrushIndirect
GetBkMode
GetObjectA
ExtTextOutA
BitBlt
StretchBlt
SetBkMode
GetTextColor
RectVisible
TextOutA
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
GetMapMode
SetMapMode
SetBkColor
SetTextColor
CreateSolidBrush
GetDeviceCaps
CreatePen
SetROP2
MoveToEx
LineTo
GetTextExtentPoint32A
GetCurrentObject
SelectObject
GetTextMetricsA
DeleteObject
CreateFontIndirectA
CreateFontA

gdiplus

GdipCreateBitmapFromFileICM
GdipFree
GdipCloneImage
GdipCreateBitmapFromFile
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipGetImageWidth
GdiplusShutdown
GdipAlloc
GdipGetImageThumbnail
GdipDisposeImage
GdipGetImageHeight

comdlg32

PrintDlgExA
ChooseFontA
GetSaveFileNameA
GetOpenFileNameA

advapi32

GetUserNameA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
LookupPrivilegeNameA
RegQueryInfoKeyA
RegCloseKey
OpenProcessToken
GetTokenInformation

shell32

SHGetDesktopFolder
SHBrowseForFolderA
ShellExecuteExA
SHGetPathFromIDListA

ole32

CreateStreamOnHGlobal
CoInitialize
CoUninitialize

oleaut32

OleLoadPicture

wsock32

WSAStartup
WSACleanup
gethostname

winspool.drv

DocumentPropertiesA
ClosePrinter
EnumPrintersA
OpenPrinterA
GetPrinterA

wininet

InternetWriteFile
InternetQueryDataAvailable
InternetReadFile
InternetOpenA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
HttpQueryInfoA
FtpGetFileA
InternetCloseHandle

Sections

.text
Size: 616KB - Virtual size: 613KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 19.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

da30b3f1438fd0c873965181490ba9ea

Headers

File Characteristics

Imports

user32

kernel32

comctl32

gdi32

gdiplus

comdlg32

advapi32

shell32

ole32

oleaut32

wsock32

winspool.drv

wininet

Sections

.text Size: 616KB - Virtual size: 613KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 88KB - Virtual size: 19.3MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 616KB - Virtual size: 613KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 88KB - Virtual size: 19.3MB

.rsrc
Size: 4KB - Virtual size: 3KB