fl_sim_p[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

fl_sim_p.exe
Size

1.5MB
MD5

2acb651975133b3e4935dcffd9198260
SHA1

23074d6335a005b6ff89731ffd637648bdcd0b8d
SHA256

80743c21cf68fd92a92712968298036549787f6410fa7d669670b5736b7ce0aa
SHA512

1c0170019fcf23b6989c410e8ea2fcbc0013e18ff8d28f295acb8b0752002f6a1a01a6b296efd8494f55c93404222f89a457f1d514ff30f47630508e1a18581b
SSDEEP

24576:UK9+T24Jz/gfBwsKZVDUAOD6fqQfc4bP2ncju2dJ9/:BjmUyRk2d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fl_sim_p.exe

Files

fl_sim_p.exe
.exe windows:4 windows x86 arch:x86

814d391352e2172bfca4f4db6c4db7e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

ad_anm

DLLInitANM
DLLGetContextHelp
DLLGetANM
DLLGetTitle
DLLGetNextTPC
DLLOpenFrame

ad_sym

DLLInitSym
DLLGetStr
DLLGetSymText
DLLGetSymbols

ad_cmn

DLLSuspendJob
DLLGetWMsg
DLLGetWMFName
DLLGetBMPName
DLLGetDXFName

ad_io

DLLDXFText
DLLDXFSolid
DLLDXFArc
DLLSaveOptions
DLLDXFFCirc
DLLDXFCirc
DLLDXFLine
DLLDXFVertex
DLLDXFPolyLine
DLLDXFSeqend
DLLDXFTables
DLLDXFHeader
DLLReadOptions
DLLDXFEllArc

ad_dde

sendeheiss
trenne
Init

ad_kb

DLLEncryptStr2
DLLGetRscText
DLLGetLispMsgTxt
DLLGetMessageText
DLLDecryptStr2
DLLEncryptStr
DLLGetModStr
DLLInitLang
DLLInitKB

simdll

?SIMDLLSendMessage@@YAHPAD@Z
?SIMDLLInit@@YAHPAD@Z
?SIMDLLGetInfo@@YAHHPAD@Z
?SIMDLLGetMessage@@YAHPAD@Z
?SIMDLLClearMessage@@YAHXZ
?SIMDLLStart@@YAHPBH@Z
?SIMNumWriteStr@@YAHPAD@Z
?SIMNumClrStr@@YAHXZ
?SIMDataReadStr@@YAHPAD@Z
?SIMDataWriteStr@@YAHPAD@Z
?SIMDataClrStr@@YAHXZ
?SIMNumReadStr@@YAHPAD@Z

kernel32

SetFilePointer
WriteFile
ReadFile
FlushFileBuffers
UnlockFile
SetEndOfFile
MoveFileA
LockFile
DeleteFileA
GetThreadLocale
GlobalFlags
SizeofResource
TlsAlloc
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
GetStringTypeExA
CreateFileA
GetCurrentProcess
GetOEMCP
GetFileSize
LocalFileTimeToFileTime
SystemTimeToFileTime
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapFree
HeapAlloc
RtlUnwind
HeapReAlloc
GetSystemTimeAsFileTime
ExitProcess
TerminateProcess
GetProfileIntA
GetProcessVersion
TlsGetValue
DuplicateHandle
RaiseException
GetACP
HeapSize
SetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalAlloc
SetFileTime
GetLastError
GetFileTime
GetFileAttributesA
GetFullPathNameA
GetTempFileNameA
GetCurrentThread
GetTickCount
GetModuleFileNameA
LocalFree
lstrcmpA
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalFindAtomA
MulDiv
lstrcmpiA
GlobalGetAtomNameA
GlobalDeleteAtom
GetModuleHandleA
MultiByteToWideChar
GlobalAddAtomA
GetVersion
InterlockedIncrement
WideCharToMultiByte
InterlockedDecrement
GetCurrentThreadId
CreateEventA
SuspendThread
SetEvent
SetThreadPriority
ResumeThread
LockResource
WaitForSingleObject
CloseHandle
GetSystemInfo
FindResourceA
LoadResource
CreateThread
GetVolumeInformationA
GetWindowsDirectoryA
PeekNamedPipe
GetDriveTypeA
InitializeCriticalSection
lstrcpynA
SetFileAttributesA
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitThread
lstrlenA
GetShortPathNameA
GetProfileStringA
lstrcatA
FindNextFileA
lstrcpyA
GetDiskFreeSpaceA
FindFirstFileA
FindClose
FreeLibrary
LoadLibraryA
GetProcAddress
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
RemoveDirectoryA
WinExec
SetErrorMode
GetCurrentDirectoryA
CreateDirectoryA
SetCurrentDirectoryA
_hwrite
Sleep
_lwrite
_lread
OpenFile
_llseek
GlobalAlloc
_hread
_lclose
GlobalUnlock
GlobalLock
GlobalHandle
GetStartupInfoA
GlobalFree
GetCommandLineA
GetCPInfo
GetFileInformationByHandle

user32

ShowScrollBar
GetScrollRange
GetScrollInfo
ScrollWindow
EndDeferWindowPos
SetScrollRange
SetScrollInfo
BeginDeferWindowPos
MapWindowPoints
SendDlgItemMessageA
DeferWindowPos
SetDlgItemTextA
IsDialogMessageA
MoveWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
GetMenuCheckMarkDimensions
FindWindowA
IsRectEmpty
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
PostQuitMessage
ShowOwnedPopups
LoadStringA
DestroyCursor
SetRect
GetDCEx
CharUpperA
SetParent
GetSystemMenu
GetClassNameA
GetSysColorBrush
InsertMenuA
DestroyIcon
PostThreadMessageA
GetTabbedTextExtentA
InvertRect
CreateWindowExA
GetMessageA
GetKeyState
CallNextHookEx
ValidateRect
SetWindowsHookExA
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
RegisterClipboardFormatA
GetMessageTime
CloseWindow
AppendMenuA
GetMenuStringA
SetScrollPos
GetScrollPos
CreateMenu
LockWindowUpdate
SetWindowPos
LoadImageA
LoadIconA
IsWindowVisible
GetDlgCtrlID
DrawMenuBar
InflateRect
IsWindow
SetWindowLongA
RedrawWindow
GetForegroundWindow
RegisterClassA
WinHelpA
KillTimer
SetTimer
MessageBeep
ReleaseCapture
SetCapture
PtInRect
GetParent
GetCapture
ClientToScreen
EqualRect
CopyRect
GetAsyncKeyState
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetCursorPos
WindowFromPoint
SetForegroundWindow
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
DeleteMenu
UpdateWindow
PostMessageA
EnumWindows
GetWindowTextA
LoadBitmapA
LoadCursorA
ChildWindowFromPoint
GetSystemMetrics
SetWindowTextA
GetSysColor
GetDC
ReleaseDC
ShowWindow
GetWindow
TranslateMessage
DispatchMessageA
PeekMessageA
FillRect
FrameRect
DrawFocusRect
EnableWindow
SendMessageA
IsZoomed
IsIconic
GetWindowRect
InvalidateRect
GetClientRect
TrackPopupMenu
GetWindowTextLengthA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetTopWindow
MessageBoxA
IsChild
ModifyMenuA
CreatePopupMenu
GetMessagePos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetLastActivePopup
GetFocus
UnpackDDElParam
ReuseDDElParam
SetMenu
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
GetDesktopWindow
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
wsprintfA
AdjustWindowRectEx
DefMDIChildProcA
TranslateAcceleratorA
TranslateMDISysAccel
DefFrameProcA
GetDlgItem
IsWindowEnabled
OpenIcon
BringWindowToTop
SetCursor
ScreenToClient
DefWindowProcA
IsWindowUnicode
CharNextA
DefDlgProcA
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA

gdi32

GetTextExtentPointA
DeleteDC
GetWindowOrgEx
GetTextFaceA
GetROP2
GetBkMode
GetTextAlign
GetPolyFillMode
GetStretchBltMode
GetTextColor
GetNearestColor
GetBkColor
GetTextMetricsA
SetAbortProc
GetViewportOrgEx
GetCharWidthA
CombineRgn
SetRectRgn
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreatePatternBrush
GetWindowExtEx
GetViewportExtEx
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
BitBlt
SelectObject
SetBkColor
CreateBitmap
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectA
CreatePalette
GetDeviceCaps
SetDIBitsToDevice
GetSystemPaletteEntries
RealizePalette
SelectPalette
StretchDIBits
SetStretchBltMode
RestoreDC
CreateDCA
SaveDC
GetDIBits
IntersectClipRect
GetStockObject
GetTextExtentPoint32A
CreateSolidBrush
PatBlt
GetBitmapDimensionEx
CreateRectRgn
CreateFontA
EndDoc
SetBitmapDimensionEx
EndPage
StartPage
AbortDoc
CreateEnhMetaFileA
StretchBlt
CloseEnhMetaFile
SetMetaFileBitsEx
Arc
DeleteMetaFile
Ellipse
SetPixel
Pie
Rectangle
GetTextExtentExPointA
CreateDIBitmap
ExtCreatePen
CreateHatchBrush
CreatePen
GetMetaFileBitsEx
CloseMetaFile
CreateFontIndirectA
LineTo
MoveToEx
CreateMetaFileA
PlayEnhMetaFile
SetWinMetaFileBits
DeleteEnhMetaFile
GetClipBox
CreateRectRgnIndirect
LPtoDP
DPtoLP
SetTextColor
SetPolyFillMode
SetROP2
SetBkMode
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
SelectClipRgn
SetTextAlign
GetCurrentPositionEx
StartDocA
Polygon
DeleteObject

comdlg32

GetSaveFileNameA
CommDlgExtendedError
GetFileTitleA
ChooseFontA
GetOpenFileNameA
PrintDlgA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
GetFileSecurityA
RegQueryValueA
RegOpenKeyA
RegCreateKeyA
RegSetValueA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
SetFileSecurityA

shell32

SHGetFileInfoA
DragAcceptFiles
DragQueryFileA
DragFinish
ShellExecuteA
ExtractIconA

comctl32

ord17

oledlg

ord8

ole32

OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleFlushClipboard
OleUninitialize

Exports

Exports

?DdeCallBack@@YAHPAD0000@Z

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 356KB - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

814d391352e2172bfca4f4db6c4db7e8

Headers

File Characteristics

Imports

winmm

ad_anm

ad_sym

ad_cmn

ad_io

ad_dde

ad_kb

simdll

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

Exports

Exports

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.rdata Size: 92KB - Virtual size: 90KB

.data Size: 28KB - Virtual size: 52KB

.rsrc Size: 356KB - Virtual size: 354KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.rdata
Size: 92KB - Virtual size: 90KB

.data
Size: 28KB - Virtual size: 52KB

.rsrc
Size: 356KB - Virtual size: 354KB