71c3a44a8a48fad99e97be4a8bc80fd662f638cc4ff4ba8695ea03821b3c6f44

Sharing

Copy URL Twitter E-mail

General

Target

71c3a44a8a48fad99e97be4a8bc80fd662f638cc4ff4ba8695ea03821b3c6f44
Size

2.1MB
MD5

4006b4ba776df25e81138213ba40d6cd
SHA1

81c797aec1aaf50ea959fcf4b93ddd5188240c5f
SHA256

71c3a44a8a48fad99e97be4a8bc80fd662f638cc4ff4ba8695ea03821b3c6f44
SHA512

c675768bf3af0832527064d62c7512f6b2829a6dcefb10959a8caeca88cdd67764a307740399011262350f973e6f38fbf7de6c88213d221d2a770518418b1ced
SSDEEP

24576:uzaUUdf6MMStcZJCVbByHNoSnPtX42sAlPMJ5TTB7PIu:SUVmQbByH2Sn1X4Vz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71c3a44a8a48fad99e97be4a8bc80fd662f638cc4ff4ba8695ea03821b3c6f44

Files

71c3a44a8a48fad99e97be4a8bc80fd662f638cc4ff4ba8695ea03821b3c6f44
.exe windows:4 windows x86 arch:x86

8d2bc606698ae4c31e97fd215205cd12

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetClassImageList
SetupDiGetClassImageIndex
SetupDiDestroyClassImageList
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

kernel32

GetOEMCP
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
InterlockedIncrement
GetCurrentDirectoryA
GetTickCount
FileTimeToLocalFileTime
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcmpA
RaiseException
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
UnlockFile
LockFile
FlushFileBuffers
InterlockedDecrement
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
FreeResource
SetLastError
GlobalFree
SetErrorMode
FormatMessageA
LocalFree
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
CloseHandle
CreateEventA
SetEvent
ResetEvent
WaitForSingleObject
SizeofResource
LockResource
LoadResource
FindResourceA
WideCharToMultiByte
Sleep
GetModuleHandleA
GetVersion
MultiByteToWideChar
lstrlenA
GetCPInfo
lstrlenW
GetLastError
CreateMutexA
lstrcpynA
GetModuleFileNameA
GetLocalTime
GetPrivateProfileStringA
GetPrivateProfileStructA
WritePrivateProfileStringA
WritePrivateProfileStructA
CreateFileA
GetFileAttributesA
RtlUnwind
ExitThread
CreateThread
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
HeapSize
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetTimeZoneInformation
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetDriveTypeA
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
CreateSemaphoreA
ReleaseSemaphore
ReadFile
DeviceIoControl
GetStringTypeExA
CompareStringW
CompareStringA
lstrcmpiA
GetFileTime
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
MulDiv
CreateDirectoryA
GetSystemTime
DeleteFileA
FindFirstFileA
FindNextFileA
FindClose
GetProcAddress
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
lstrcatA
WinExec
lstrcpyA
GlobalSize
GlobalLock
GlobalAlloc
GlobalUnlock
WriteFile
UnmapViewOfFile
SetFilePointer
SetEndOfFile
GetFileSize
MapViewOfFile
CreateFileMappingA
CopyFileA

user32

UnpackDDElParam
CopyAcceleratorTableA
InvalidateRgn
PostThreadMessageA
GetNextDlgGroupItem
ReuseDDElParam
InsertMenuItemA
CharNextA
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
WindowFromPoint
SetRectEmpty
GetMessageA
TranslateMessage
ValidateRect
GetWindowDC
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
IsDialogMessageA
WinHelpA
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetWindowTextLengthA
GetForegroundWindow
DispatchMessageA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
PeekMessageA
ScrollWindow
RegisterClassExA
IsWindowEnabled
DestroyWindow
MapWindowPoints
SetWindowTextA
SetWindowPos
GetWindowTextA
ShowWindow
GetAsyncKeyState
SetFocus
MoveWindow
DrawFrameControl
GetDesktopWindow
CreateWindowExA
BeginPaint
EndPaint
CallWindowProcA
LoadImageA
GetIconInfo
GetWindowLongA
FrameRect
DestroyCursor
GrayStringA
DrawTextExA
TabbedTextOutA
RegisterWindowMessageA
BringWindowToTop
CharLowerBuffA
LockWindowUpdate
SetMenuDefaultItem
TrackPopupMenu
CharUpperA
BeginDeferWindowPos
EndDeferWindowPos
GetClassLongA
wsprintfA
SetParent
GetWindow
GetDCEx
GetSystemMenu
IsRectEmpty
OffsetRect
IsChild
EqualRect
GetClassInfoA
DefWindowProcA
IsWindowVisible
MessageBoxA
DestroyMenu
SetMenu
ScreenToClient
SetWindowLongA
CopyIcon
MessageBeep
GetParent
InflateRect
SetScrollPos
EmptyClipboard
RegisterClipboardFormatA
SetScrollInfo
EnableScrollBar
DestroyCaret
ShowCaret
SetCaretPos
CreateCaret
DragDetect
PtInRect
GetKeyState
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
SetClipboardData
OpenClipboard
SetCapture
ReleaseCapture
SetCursor
PostQuitMessage
LoadAcceleratorsA
GetDlgCtrlID
LoadIconA
GetFocus
KillTimer
SetTimer
UpdateWindow
IsZoomed
GetMenu
CheckMenuItem
TranslateAcceleratorA
DrawIcon
SetForegroundWindow
GetLastActivePopup
FindWindowA
IsIconic
ShowScrollBar
RedrawWindow
DrawFocusRect
PostMessageA
IsWindow
InvalidateRect
GetClientRect
LoadBitmapA
LoadCursorA
DrawStateA
GetMenuItemInfoA
GetSysColorBrush
GetSystemMetrics
SystemParametersInfoA
DrawTextA
GetSysColor
DrawIconEx
DestroyIcon
ReleaseDC
GetDC
ModifyMenuA
InsertMenuA
GetMenuState
GetMenuItemID
GetMenuItemCount
AppendMenuA
DeleteMenu
CreatePopupMenu
CreateMenu
DrawEdge
FillRect
CopyRect
SetRect
GetCursorPos
GetMessagePos
ClientToScreen
LoadMenuA
GetSubMenu
EnableMenuItem
EnableWindow
GetWindowRect
SendMessageA
GetMenuStringA
EndDialog
GetNextDlgTabItem
GetDlgItem
CreateDialogIndirectParamA
SetActiveWindow
GetActiveWindow
GetWindowPlacement
IntersectRect
UnregisterClassA
RegisterClassA
GetScrollInfo
DeferWindowPos
AdjustWindowRectEx

gdi32

DPtoLP
GetMapMode
SetRectRgn
StretchDIBits
CreateRectRgnIndirect
CreatePatternBrush
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetPixel
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
IntersectClipRect
ExcludeClipRect
SetMapMode
SetROP2
RestoreDC
SaveDC
CreateBitmap
GetClipBox
CopyMetaFileA
CombineRgn
MoveToEx
LineTo
GetRgnBox
SetBkMode
GetDIBits
SetDIBits
SetTextAlign
SetTextColor
SetBkColor
ExtCreatePen
GetWindowOrgEx
GetViewportOrgEx
CreateRectRgn
SetTextJustification
Escape
RectVisible
PtVisible
GetCurrentObject
GetBkColor
Rectangle
StretchBlt
GetTextColor
EnumFontFamiliesA
ExtTextOutA
GetDeviceCaps
GetStockObject
SetBoundsRect
GetCharWidthA
TextOutA
CreateFontA
GetTextMetricsA
GetObjectA
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
GetTextExtentPoint32W
GetTextExtentPoint32A
SetPixel
BitBlt
PatBlt
Ellipse
GetBkMode
CreateCompatibleDC
CreateCompatibleBitmap
CreateFontIndirectA
CreateSolidBrush
CreatePen

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyA
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegEnumKeyA
RegCloseKey

shell32

DragQueryFileA
DragFinish
Shell_NotifyIconA
ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc

comctl32

ImageList_Destroy
ImageList_Create
ImageList_GetImageInfo
ImageList_GetIcon
ImageList_GetBkColor
ImageList_SetBkColor
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_Draw
ImageList_AddMasked
ImageList_ReplaceIcon
ord17
ImageList_LoadImageA
ImageList_DrawIndirect

shlwapi

PathFindFileNameA
PathFindExtensionA
PathIsUNCA
PathStripToRootA

oledlg

ord8

ole32

OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
OleGetClipboard
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CoGetClassObject
StgOpenStorageOnILockBytes
OleDuplicateData
ReleaseStgMedium
CoTaskMemAlloc
CoTaskMemFree
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoRevokeClassObject
CoRegisterMessageFilter
CreateStreamOnHGlobal
CLSIDFromProgID
CLSIDFromString

oleaut32

VariantInit
SysAllocStringLen
OleCreateFontIndirect
VariantClear
SysAllocStringByteLen
SysStringLen
SysFreeString
VariantCopy
SafeArrayDestroy
SystemTimeToVariantTime
SysAllocString
VariantChangeType

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 928KB - Virtual size: 927KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 212KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 956KB - Virtual size: 955KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d2bc606698ae4c31e97fd215205cd12

Headers

File Characteristics

Imports

setupapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

version

Sections

.text Size: 928KB - Virtual size: 927KB

.rdata Size: 212KB - Virtual size: 209KB

.data Size: 20KB - Virtual size: 40KB

.rsrc Size: 956KB - Virtual size: 955KB

.text
Size: 928KB - Virtual size: 927KB

.rdata
Size: 212KB - Virtual size: 209KB

.data
Size: 20KB - Virtual size: 40KB

.rsrc
Size: 956KB - Virtual size: 955KB