deltatalev13_28493[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

deltatalev13_28493.zip
Size

31.2MB
MD5

4dce296f9cd935e52d4a4b7f1a600b8d
SHA1

0664fc66503f03776ca8def0b8d8902ad04f6e53
SHA256

0b5dd95e56bfe90f4ccae9cb672ebc675040af40cf28ae49dd3124b33d23f3a4
SHA512

01a3a1e27588be48fd04c5c22e51c3a90ac426c8d8feb21d8a412adc1f427419d639cb8af21e5c0726b198f3953d2cd3f7c9b65b04c2c9b42c9cd2276b7ebe9e
SSDEEP

393216:xrIQCn3uQ1djothzLvv9+zv7aehcBox2tfeuVO/40YAL7Bqfg7VJnUI7qFdf56FZ:xrto3ukkX/dpycBqgmz1LxVJUD6B5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/DeltaPatcher.exe

Files

deltatalev13_28493.zip
.zip
1.0_to_1.3.xdelta
1.1_to_1.3.xdelta
1.2_to_1.3.xdelta
DeltaPatcher.exe
.exe windows:5 windows x86 arch:x86

ae9ad6e53fd4e90a69526ad746c15111

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
HeapAlloc
HeapFree
GetModuleFileNameA
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
GetConsoleCP
ReadConsoleW
GetConsoleMode
FlushFileBuffers
FreeLibraryAndExitThread
ExitThread
DeleteFileW
MoveFileExW
GetFullPathNameW
HeapReAlloc
GetModuleHandleExW
LoadLibraryExW
RtlUnwind
InitializeSListHead
GetStartupInfoW
WaitForSingleObjectEx
ResetEvent
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStringTypeW
LCMapStringW
CompareStringW
SwitchToThread
InitializeCriticalSectionAndSpinCount
DecodePointer
EncodePointer
SetEndOfFile
GetCurrentDirectoryW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
FindFirstFileExA
FindNextFileA
GetCommandLineA
GetProcessHeap
CreateFileA
GetStartupInfoA
FormatMessageA
SystemTimeToFileTime
GetLocalTime
SetFilePointerEx
GetFileSizeEx
VirtualFree
VirtualAlloc
IsBadStringPtrA
IsBadReadPtr
GetUserDefaultUILanguage
SetThreadLocale
FindNextFileW
GetDriveTypeW
GetLogicalDriveStringsW
InterlockedExchange
QueryPerformanceFrequency
QueryPerformanceCounter
PeekNamedPipe
EnumSystemLocalesW
ReadFile
WriteFile
WaitForMultipleObjects
CreateThread
ExpandEnvironmentStringsW
CreateEventW
SetEvent
GetProcAddress
GetCPInfo
IsValidCodePage
GetVersionExW
FindResourceW
GetEnvironmentVariableW
GetModuleFileNameW
GetNativeSystemInfo
SizeofResource
LoadResource
IsDebuggerPresent
TerminateProcess
LockResource
GetSystemTimeAsFileTime
OutputDebugStringW
GetModuleHandleW
GetCurrentProcessId
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
WaitForSingleObject
ResumeThread
TerminateThread
SetThreadPriority
GetCurrentThread
RaiseException
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
CopyFileW
SetCurrentDirectoryW
GetFileType
WideCharToMultiByte
FormatMessageW
MultiByteToWideChar
FindFirstFileW
GetFileAttributesW
CreateFileW
GetTempFileNameW
GetTempPathW
CloseHandle
FindClose
HeapSize
GetLongPathNameW
GetThreadLocale
GetLocaleInfoW
GetACP
SetErrorMode
GlobalHandle
GlobalSize
LoadLibraryW
FreeLibrary
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
SetLastError
GetLastError
GetCurrentThreadId
ExitProcess
MulDiv
WriteConsoleW
WriteConsoleA
AttachConsole
FreeConsole
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
FillConsoleOutputCharacterW
ReadConsoleOutputCharacterA
GetStdHandle
GetCommandLineW
SetStdHandle
LocalFree

user32

MonitorFromPoint
EnumDisplaySettingsW
ChangeDisplaySettingsExW
SetMenu
GetClipboardFormatNameW
RegisterClipboardFormatW
FindWindowExW
ChildWindowFromPoint
GetComboBoxInfo
GetDesktopWindow
UnionRect
EndPaint
BeginPaint
GetWindowDC
ValidateRgn
TranslateAcceleratorW
DestroyAcceleratorTable
CreateAcceleratorTableW
GetCaretBlinkTime
GetDoubleClickTime
DrawIconEx
ValidateRect
PostThreadMessageW
GetMessageW
GetClassNameW
MessageBeep
GetWindowTextW
IsRectEmpty
GetClassInfoW
PostMessageW
HideCaret
GetWindowTextLengthW
keybd_event
IsMenu
OffsetRect
MonitorFromWindow
SetRectEmpty
DrawFocusRect
DrawTextW
DestroyCursor
InsertMenuItemW
SetMenuInfo
RemoveMenu
ModifyMenuW
AppendMenuW
InsertMenuW
DestroyMenu
CreatePopupMenu
CreateMenu
DdePostAdvise
SetRect
GetSysColorBrush
DrawStateW
SetMenuItemInfoW
GetMenuItemID
GetSubMenu
CheckMenuItem
GetMenuState
DrawFrameControl
DdeFreeDataHandle
DestroyIcon
SetForegroundWindow
EnableMenuItem
GetSystemMenu
DrawMenuBar
GetDialogBaseUnits
CreateDialogIndirectParamW
IsZoomed
DdeCreateStringHandleW
IsIconic
DdeQueryStringW
RegisterClassW
UnregisterClassW
GetKeyState
MessageBoxW
GetMonitorInfoW
EnumDisplayMonitors
wsprintfW
MsgWaitForMultipleObjects
SetTimer
KillTimer
DdeInitializeW
DdeUninitialize
DdeConnect
CopyRect
DdeDisconnect
FlashWindowEx
SetLayeredWindowAttributes
GetWindowPlacement
SetWindowRgn
GetDlgItem
IsClipboardFormatAvailable
SystemParametersInfoW
GetScrollInfo
SetScrollInfo
IsDialogMessageW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetProcessDefaultLayout
LoadCursorW
LoadBitmapW
LoadIconW
GetIconInfo
LoadImageW
GetDC
ReleaseDC
CreateIconIndirect
TranslateMessage
DispatchMessageW
PeekMessageW
RegisterHotKey
UnregisterHotKey
GetMessagePos
DdeNameService
DdeClientTransaction
DdeCreateDataHandle
CheckMenuRadioItem
DdeGetData
SetParent
GetParent
SetWindowLongW
GetWindowLongW
PtInRect
InflateRect
FillRect
GetSysColor
ChildWindowFromPointEx
WindowFromPoint
MapWindowPoints
ScreenToClient
ClientToScreen
GetCursorPos
SetCursor
GetMessageTime
SendMessageW
DefWindowProcW
PostQuitMessage
DrawEdge
DdeGetLastError
CallWindowProcW
CreateWindowExW
IsWindow
DestroyWindow
ShowWindow
AnimateWindow
MoveWindow
SetWindowPos
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
SetFocus
GetActiveWindow
GetFocus
GetAsyncKeyState
VkKeyScanW
MapVirtualKeyW
GetCapture
SetCapture
DdeFreeStringHandle
BringWindowToTop
CreateDialogParamW
SetCursorPos
GetWindowRect
GetClientRect
SetWindowTextW
EnableScrollBar
ScrollWindow
RedrawWindow
InvalidateRect
GetUpdateRgn
UpdateWindow
GetMenuItemInfoW
TrackPopupMenu
GetMenuItemCount
GetSystemMetrics
IsWindowEnabled
EnableWindow
ReleaseCapture

gdi32

ExtFloodFill
GetBkColor
LineTo
MoveToEx
ExtTextOutW
Arc
Ellipse
GetClipBox
GetObjectType
GetPixel
GetStockObject
MaskBlt
Pie
PolyPolygon
Rectangle
RoundRect
ExtSelectClipRgn
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPixel
SetPolyFillMode
StretchDIBits
SetROP2
GetWorldTransform
SetWorldTransform
ModifyWorldTransform
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
PolyBezier
SetViewportExtEx
SetWindowExtEx
CreatePatternBrush
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePen
ExtCreatePen
CreateHatchBrush
CreateDIBitmap
GetDIBits
CreateDIBSection
GetDIBColorTable
SetDIBColorTable
EqualRgn
GetRgnBox
PtInRegion
GetCharABCWidthsW
GetTextExtentExPointW
CreateICW
CreateDCW
GetSystemPaletteEntries
SetViewportOrgEx
CloseEnhMetaFile
CreateEnhMetaFileW
DeleteEnhMetaFile
GetEnhMetaFileW
GetEnhMetaFileHeader
PlayEnhMetaFile
EnumFontFamiliesExW
SetAbortProc
StartDocW
EndDoc
StartPage
EndPage
SelectClipRgn
RectInRegion
CreateRectRgnIndirect
CombineRgn
GetWindowExtEx
GetGraphicsMode
GetViewportExtEx
SetStretchBltMode
StretchBlt
SetTextColor
SetBkMode
GetTextExtentPoint32W
CreateSolidBrush
OffsetRgn
GetRegionData
ExtCreateRegion
GdiFlush
SetBrushOrgEx
SelectPalette
RealizePalette
CreateRectRgn
ExcludeClipRect
DeleteObject
GetObjectW
BitBlt
CreateBitmap
CreateBitmapIndirect
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
SelectObject
SetBkColor
CreateFontIndirectW
GetDeviceCaps
GetOutlineTextMetricsW
SetWindowOrgEx
GetTextMetricsW

comdlg32

PrintDlgW
ChooseFontW
CommDlgExtendedError
GetSaveFileNameW
GetOpenFileNameW
PageSetupDlgW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW
GetPrinterW

shell32

ExtractIconW
ExtractIconExW
SHGetFolderPathW
ord6
SHGetFileInfoW
CommandLineToArgvW
ShellExecuteExW
DragAcceptFiles
DragFinish
DragQueryPoint
DragQueryFileW

shlwapi

SHAutoComplete

comctl32

ord16
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_Replace
ImageList_Draw
ImageList_SetBkColor
ImageList_Add
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
ord17

ole32

ReleaseStgMedium
CoTaskMemAlloc
RevokeDragDrop
OleFlushClipboard
OleSetClipboard
CoLockObjectExternal
CoTaskMemFree
OleUninitialize
OleInitialize
RegisterDragDrop
OleIsCurrentClipboard
OleGetClipboard
CoCreateInstance

rpcrt4

UuidToStringW
RpcStringFreeW

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegEnumValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
GetUserNameW

oleacc

LresultFromObject

uxtheme

IsThemePartDefined
IsAppThemed
IsThemeActive
GetCurrentThemeName
SetWindowTheme
GetThemeBackgroundExtent
GetThemeFont
GetThemeSysFont
GetThemeSysColor
GetThemeMargins
GetThemeInt
GetThemePartSize
DrawThemeParentBackground
GetThemeColor
IsThemeBackgroundPartiallyTransparent
GetThemeBackgroundContentRect
DrawThemeBackground
CloseThemeData
OpenThemeData

msimg32

AlphaBlend
GradientFill

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1017KB - Virtual size: 1016KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 387KB - Virtual size: 387KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 261KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
originalUT_to_1.3.xdelta
v1.3 Changelog.txt

Sharing

General

Malware Config

Signatures

Files

ae9ad6e53fd4e90a69526ad746c15111

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

shell32

shlwapi

comctl32

ole32

rpcrt4

advapi32

oleacc

uxtheme

msimg32

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.rdata Size: 1017KB - Virtual size: 1016KB

.data Size: 59KB - Virtual size: 235KB

.rsrc Size: 387KB - Virtual size: 387KB

.reloc Size: 261KB - Virtual size: 261KB

.text
Size: 2.8MB - Virtual size: 2.8MB

.rdata
Size: 1017KB - Virtual size: 1016KB

.data
Size: 59KB - Virtual size: 235KB

.rsrc
Size: 387KB - Virtual size: 387KB

.reloc
Size: 261KB - Virtual size: 261KB