6684f828f20f168cfa0c8f4bf051bc767f2543e02e787198e4181b7948d9f926

Sharing

Copy URL

Twitter E-mail

General

Target

6684f828f20f168cfa0c8f4bf051bc767f2543e02e787198e4181b7948d9f926
Size

724KB
MD5

7359c001fab41c7b9d111be8710ee86c
SHA1

5b066a8150aa71e9e4aa4ff11a9fe041ee972f28
SHA256

6684f828f20f168cfa0c8f4bf051bc767f2543e02e787198e4181b7948d9f926
SHA512

4b990e4c2966f9a6cff7b2067d76409c8596c03c4977317934163be17b70ee8cdbdfe7303f93606db88b2346151517ed178ed143c213541bd43000d6b2eaf2cf
SSDEEP

12288:PheussQEt0ekrV1Ub8fmr2gNyfHnVmBqumCghCVIpACSbTU7f:PheussJ2V64GKfHnGqum1hCVIpACSc7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6684f828f20f168cfa0c8f4bf051bc767f2543e02e787198e4181b7948d9f926

Files

6684f828f20f168cfa0c8f4bf051bc767f2543e02e787198e4181b7948d9f926
.exe windows:4 windows x86 arch:x86

b9d4a1fa37e853c1cd27acb4127a74e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextExA
wsprintfA
CharUpperA
GetWindowTextA
FindWindowA
EnumChildWindows
SendMessageTimeoutA
IsWindowEnabled
SetMenuItemInfoA
RemoveMenu
SetTimer
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
CloseClipboard
GetClassNameA
LoadBitmapA
SetMenu
TrackPopupMenu
GetMenuItemInfoA
InsertMenuItemA
ModifyMenuA
CreatePopupMenu
CreateMenu
ScreenToClient
WindowFromPoint
SetCapture
EnableScrollBar
ShowScrollBar
MapWindowPoints
DrawMenuBar
GetWindowDC
CreateIconIndirect
GetComboBoxInfo
SetScrollRange
DestroyIcon
GetClassLongA
SetClassLongA
SetWindowTextA
EnableWindow
IntersectRect
RedrawWindow
IsZoomed
MessageBoxA
DestroyMenu
MessageBoxIndirectA
GetDlgItem
GetScrollInfo
CopyRect
GetMenuCheckMarkDimensions
PostQuitMessage
GetScrollBarInfo
DrawTextA
LoadImageA
GetIconInfo
LoadIconA
RegisterClassExA
AdjustWindowRect
GetKeyState
ReleaseCapture
GetFocus
GetParent
KillTimer
SetScrollPos
IsWindowVisible
CallWindowProcA
DrawFrameControl
InflateRect
DrawIconEx
DrawFocusRect
FrameRect
BeginPaint
EndPaint
RealChildWindowFromPoint
GetSysColor
SetRect
PostMessageA
DefWindowProcA
GetSystemMetrics
CreateWindowExA
SetWindowLongA
SystemParametersInfoA
ClientToScreen
SetCursorPos
LoadCursorA
SetCursor
SetScrollInfo
ScrollWindowEx
CreateCaret
UpdateWindow
DestroyCaret
DestroyWindow
InvalidateRect
ValidateRect
ShowWindow
HideCaret
FillRect
SetCaretPos
ShowCaret
keybd_event
InvalidateRgn
SetWindowPos
ValidateRgn
SendMessageA
RegisterClassA
IsRectEmpty
EnableMenuItem
GetSystemMenu
CreateDialogParamA
GetUpdateRect
SetFocus
DispatchMessageA
TranslateMessage
GetMessageA
PeekMessageA
GetClientRect
GetWindowLongA
GetDC
ReleaseDC
MoveWindow
GetWindowRect
OemToCharA

kernel32

GetDriveTypeA
FindClose
FileTimeToLocalFileTime
FindFirstFileA
GetFileInformationByHandle
GetFullPathNameA
SetEndOfFile
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
RaiseException
FlushFileBuffers
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
MoveFileA
RtlUnwind
SetConsoleCtrlHandler
HeapReAlloc
TerminateProcess
GetTimeZoneInformation
HeapAlloc
HeapFree
ExitProcess
GetVersion
GetStartupInfoA
SetFilePointerEx
GetTempFileNameA
GetTempPathA
DeleteFileA
GetSystemDirectoryA
GetLastError
CreateProcessA
GetEnvironmentVariableA
SetEnvironmentVariableA
CreateDirectoryA
RemoveDirectoryA
GlobalUnlock
GlobalLock
GlobalAlloc
WideCharToMultiByte
MultiByteToWideChar
Sleep
Beep
CloseHandle
CreateFileA
GetTickCount
GetSystemTime
GetProcAddress
LoadLibraryA
GetVersionExA
GetCurrentProcess
WriteFile
GetCommandLineA
GetModuleHandleA
SetCurrentDirectoryA
GetCurrentDirectoryA
MulDiv
GetLocalTime
GlobalFree
GetExitCodeProcess
WaitForSingleObject
CreatePipe
FileTimeToSystemTime
GetFileTime
CreateMutexA
ExitThread
CreateThread
ReleaseMutex
SetThreadPriority
GetThreadPriority
GetCurrentThread
ReadFile
GetFileAttributesA
GetModuleFileNameA
GetFileAttributesExA
DeviceIoControl
WaitNamedPipeA
SetFilePointer
GetFileSize
LockFile
UnlockFile
SetEnvironmentVariableW
GlobalReAlloc
lstrcmpiA
lstrcpyA
GetProfileStringA
GetCurrentProcessId

comctl32

ImageList_ReplaceIcon
ImageList_Add
_TrackMouseEvent
ord17
InitCommonControlsEx
ImageList_Create

gdi32

AbortDoc
CreateDCA
StartDocA
StartPage
EndDoc
EndPage
SetAbortProc
SetStretchBltMode
StretchDIBits
GetDIBits
GetSystemPaletteEntries
GetStockObject
Rectangle
EndPath
StrokePath
StrokeAndFillPath
BeginPath
Arc
Pie
Ellipse
GetBkColor
SetPixel
SelectPalette
RealizePalette
CreateDIBitmap
CreatePalette
CreatePatternBrush
GetPixel
CreateDIBSection
CreateBrushIndirect
GetBkMode
GetObjectA
ExtTextOutA
BitBlt
StretchBlt
SetBkMode
GetTextColor
RectVisible
TextOutA
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
GetMapMode
SetMapMode
SetBkColor
SetTextColor
CreateSolidBrush
GetDeviceCaps
CreatePen
SetROP2
MoveToEx
LineTo
GetTextExtentPoint32A
GetCurrentObject
SelectObject
GetTextMetricsA
DeleteObject
CreateFontIndirectA
CreateFontA

gdiplus

GdipCreateBitmapFromFileICM
GdipFree
GdipCloneImage
GdipCreateBitmapFromFile
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipGetImageWidth
GdiplusShutdown
GdipAlloc
GdipGetImageThumbnail
GdipDisposeImage
GdipGetImageHeight

comdlg32

PrintDlgExA
ChooseFontA
GetSaveFileNameA
GetOpenFileNameA

advapi32

GetUserNameA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
LookupPrivilegeNameA
RegQueryInfoKeyA
RegCloseKey
OpenProcessToken
GetTokenInformation

shell32

SHGetDesktopFolder
SHBrowseForFolderA
ShellExecuteExA
SHGetPathFromIDListA

ole32

CreateStreamOnHGlobal
CoInitialize
CoUninitialize

oleaut32

OleLoadPicture

wsock32

WSAStartup
WSACleanup
gethostname

winspool.drv

DocumentPropertiesA
ClosePrinter
EnumPrintersA
OpenPrinterA
GetPrinterA

wininet

InternetWriteFile
InternetQueryDataAvailable
InternetReadFile
InternetOpenA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
HttpQueryInfoA
FtpGetFileA
InternetCloseHandle

Sections

.text
Size: 616KB - Virtual size: 613KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 19.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b9d4a1fa37e853c1cd27acb4127a74e7

Headers

File Characteristics

Imports

user32

kernel32

comctl32

gdi32

gdiplus

comdlg32

advapi32

shell32

ole32

oleaut32

wsock32

winspool.drv

wininet

Sections

.text Size: 616KB - Virtual size: 613KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 88KB - Virtual size: 19.3MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 616KB - Virtual size: 613KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 88KB - Virtual size: 19.3MB

.rsrc
Size: 4KB - Virtual size: 3KB