48a03809f7e1d5449b1b826c9159e273da5ddebc717ae0f6bf241f0a0bd1349c

Sharing

Copy URL Twitter E-mail

General

Target

48a03809f7e1d5449b1b826c9159e273da5ddebc717ae0f6bf241f0a0bd1349c
Size

3.7MB
MD5

84d4acc2a781fc7808487f0f2aee2cde
SHA1

4acdbe9f55601aa78fd097d8996f7235d35c4b57
SHA256

48a03809f7e1d5449b1b826c9159e273da5ddebc717ae0f6bf241f0a0bd1349c
SHA512

22832057d054078155c69323e4b8889ae499078b511a58c5aafb964a43f3913ca23051889df8ad32543d30ff2106d85f96b15acc934784f82a1946a0cc728b41
SSDEEP

98304:HUV2269CghwCoNvvqpMZQy+EGFclM8FLOAkGkzdnEVomFHKnPM:HUVdgh30GFclM8FLOyomFHKnP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48a03809f7e1d5449b1b826c9159e273da5ddebc717ae0f6bf241f0a0bd1349c

Files

48a03809f7e1d5449b1b826c9159e273da5ddebc717ae0f6bf241f0a0bd1349c
.exe windows:6 windows x86 arch:x86

4c3a52971ca734c9f941d682b5c5d5db

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\code\ProgramTool\Release\ProgramTool.pdb

Imports

kernel32

GetTimeZoneInformation
GetDriveTypeW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
LCMapStringW
ExitProcess
GetStdHandle
QueryPerformanceFrequency
IsValidCodePage
GetEnvironmentStringsW
GetSystemInfo
HeapQueryInformation
GetFileType
SetStdHandle
GetCommandLineW
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
RtlUnwind
RaiseException
OutputDebugStringW
FindFirstFileExW
GetACP
GetOEMCP
VirtualQuery
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
WaitForSingleObjectEx
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
GetTempFileNameW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetTempPathW
GetTickCount64
FindResourceExW
VerifyVersionInfoW
VerSetConditionMask
GetCurrentDirectoryW
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
VirtualProtect
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalGetAtomNameW
InitializeCriticalSectionAndSpinCount
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileW
FileTimeToLocalFileTime
CopyFileW
FormatMessageW
LocalFree
GlobalSize
GetCurrentProcessId
SetThreadPriority
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcpyW
WideCharToMultiByte
lstrcmpA
GetVersionExW
GetCurrentThread
GetThreadLocale
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
DeleteFileW
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryA
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
SetLastError
EncodePointer
OutputDebugStringA
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
EscapeCommFunction
WriteFile
ReadFile
PurgeComm
SetCommTimeouts
SetCommState
GetCommState
CreateFileW
GetModuleFileNameW
GetLocalTime
Sleep
CreateThread
TerminateThread
MultiByteToWideChar
ResetEvent
SetEvent
WaitForSingleObject
LockResource
SizeofResource
LoadResource
FindResourceW
GlobalAlloc
ResumeThread
GlobalFree
MulDiv
CreateEventW
GlobalUnlock
GlobalLock
CloseHandle
VirtualAlloc
WriteConsoleW

user32

ReleaseCapture
SetCapture
WaitMessage
GetAsyncKeyState
RealChildWindowFromPoint
LoadCursorW
CopyImage
IntersectRect
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
SetRectEmpty
SendDlgItemMessageA
MapVirtualKeyW
GetKeyNameTextW
RemoveMenu
InsertMenuW
GetMenuState
GetMenuStringW
GetWindowThreadProcessId
SetCursor
ShowOwnedPopups
GetCursorPos
TranslateMessage
GetMessageW
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
DrawIconEx
IsRectEmpty
OffsetRect
InflateRect
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawStateW
DrawFrameControl
DrawEdge
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
ClientToScreen
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
CharUpperW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
EqualRect
MapWindowPoints
ScreenToClient
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
BeginPaint
SetForegroundWindow
DeleteMenu
SetTimer
KillTimer
GetUpdateRect
EnableWindow
SetRect
GetDC
ReleaseDC
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
CharNextW
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DestroyIcon
LoadImageW
SetParent
IsWindowVisible
EndDeferWindowPos
MonitorFromPoint
TrackMouseEvent
IsZoomed
NotifyWinEvent
SetCursorPos
UnionRect
BringWindowToTop
WindowFromPoint
InvalidateRect
FillRect
GetSysColor
CopyRect
LoadIconW
GetSystemMenu
AppendMenuW
SendMessageW
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
LoadBitmapW
wsprintfW
UnregisterClassW
LoadMenuW
GetSubMenu
GetWindowRect
GetParent
RegisterWindowMessageW
DispatchMessageW
PeekMessageW
GetMessagePos
GetMessageTime
PostMessageW
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
SetClassLongW
CreateWindowExW
IsWindow
IsMenu
IsChild
DestroyWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
UpdateLayeredWindow
LoadAcceleratorsW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
RegisterClipboardFormatW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableW
SubtractRect
CharUpperBuffW
FrameRect
IsClipboardFormatAvailable
PostThreadMessageW
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
GetComboBoxInfo
HideCaret
InvertRect
CreateMenu
DestroyCursor
GetWindowRgn
DestroyAcceleratorTable
ModifyMenuW
SetMenuDefaultItem
GetMenuDefaultItem
CopyIcon
GetIconInfo
GetDoubleClickTime
EnableScrollBar
LockWindowUpdate
CreatePopupMenu

gdi32

ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateEllipticRgn
CreateRectRgnIndirect
Ellipse
Escape
GetTextColor
GetTextExtentPoint32W
PatBlt
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsW
CopyMetaFileW
CreateDCW
CreateFontIndirectW
GetMapMode
SetRectRgn
DPtoLP
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
EnumFontFamiliesExW
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceW
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateBitmap
GetObjectW
SetTextColor
SetBkColor
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
DeleteObject
DeleteDC
SelectObject
GetBkColor
CreateSolidBrush
GetDeviceCaps

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegSetValueExW
RegEnumValueW
RegEnumKeyExW
RegQueryValueW
RegEnumKeyW
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey

shell32

ShellExecuteW
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
DragFinish
DragQueryFileW
SHAppBarMessage
SHGetDesktopFolder
SHBrowseForFolderW

comctl32

InitCommonControlsEx

shlwapi

PathStripToRootW
PathFindExtensionW
PathFindFileNameW
StrFormatKBSizeW
PathRemoveFileSpecW
PathIsUNCW

uxtheme

DrawThemeText
GetThemeSysColor
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed
GetThemePartSize
DrawThemeParentBackground
GetWindowTheme
IsThemeBackgroundPartiallyTransparent

ole32

DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
CoRevokeClassObject
OleFlushClipboard
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoRegisterMessageFilter
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitializeEx
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
CreateStreamOnHGlobal
OleIsCurrentClipboard
ReleaseStgMedium

oleaut32

VarBstrFromDate
VariantCopy
LoadTypeLi
SafeArrayDestroy
SystemTimeToVariantTime
SysStringLen
OleCreateFontIndirect
SysFreeString
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
VariantTimeToSystemTime

oledlg

OleUIBusyW

gdiplus

GdipCreateFromHDC
GdipDrawImageRectI
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 333KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c3a52971ca734c9f941d682b5c5d5db

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 333KB - Virtual size: 332KB

.data Size: 23KB - Virtual size: 41KB

.rsrc Size: 1.7MB - Virtual size: 1.7MB

.reloc Size: 139KB - Virtual size: 139KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 333KB - Virtual size: 332KB

.data
Size: 23KB - Virtual size: 41KB

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

.reloc
Size: 139KB - Virtual size: 139KB