5723a2f2ba71bada00215f9905a35bafea53305a6d9658c121af2fc3df6e27ec

Sharing

Copy URL Twitter E-mail

General

Target

5723a2f2ba71bada00215f9905a35bafea53305a6d9658c121af2fc3df6e27ec
Size

416KB
MD5

7e86746dd60ea6f42b75b0f3270b3d68
SHA1

51cd96e34f73d5c976be41626211c4d516a729ae
SHA256

5723a2f2ba71bada00215f9905a35bafea53305a6d9658c121af2fc3df6e27ec
SHA512

be52c54771252dc61101590d75bfa46572018006cc94a395203778aa86119fe9581d2b5267e5cc7b471b47baf682e4ce1973021bdd3c1f819538cbba5a3f784e
SSDEEP

6144:zhbeKfqHs9uJfT3EVVza9+3l4NG0s/2meKKwTSVZZkFk2r+o7qqDLuEJ:zEKfqHs9uJfmVGI3almeKKwWXSMRqnu6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5723a2f2ba71bada00215f9905a35bafea53305a6d9658c121af2fc3df6e27ec

Files

5723a2f2ba71bada00215f9905a35bafea53305a6d9658c121af2fc3df6e27ec
.exe windows:4 windows x86 arch:x86

26f70feeacf263da5f3f0a439959d5e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
GetTickCount
GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
GlobalSize
CopyFileA
SizeofResource
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetOEMCP
FileTimeToLocalFileTime
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
CreateThread
ExitThread
RaiseException
HeapReAlloc
HeapSize
GetACP
GetStringTypeA
GetStringTypeW
GetLocalTime
HeapFree
GetFullPathNameA
CreateProcessA
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
GetCPInfo
GetStringTypeExA
UnlockFile
MoveFileA
SetEndOfFile
DuplicateHandle
LockFile
FlushFileBuffers
GetProcessVersion
SetErrorMode
GetThreadLocale
GlobalAddAtomA
GetVersion
GlobalGetAtomNameA
GetCurrentDirectoryA
GlobalFindAtomA
GetModuleHandleA
TlsGetValue
GlobalFlags
MulDiv
EnterCriticalSection
LocalReAlloc
TlsSetValue
TlsFree
GlobalReAlloc
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
TlsAlloc
FormatMessageA
LocalAlloc
SetLastError
InterlockedIncrement
LocalFree
InterlockedDecrement
LockResource
FindResourceA
LoadResource
ResumeThread
SuspendThread
SetThreadPriority
GetCurrentThread
SetEvent
GlobalDeleteAtom
GetLongPathNameW
GetCurrentThreadId
IsDBCSLeadByte
FindFirstFileA
GetLongPathNameA
MoveFileExA
RemoveDirectoryA
lstrcmpA
SetFileAttributesA
GetEnvironmentVariableA
FindNextFileA
FindClose
CreateDirectoryA
GetCurrentProcessId
GetTempFileNameA
GetExitCodeProcess
lstrlenW
WaitForSingleObject
GetShortPathNameW
GetShortPathNameA
GetModuleFileNameW
GlobalAlloc
GetVersionExA
WriteFile
GlobalUnlock
GlobalLock
GlobalHandle
WideCharToMultiByte
GlobalFree
lstrcatA
FatalAppExitA
LCMapStringA
GetModuleFileNameA
CreateEventA
GetPrivateProfileSectionNamesA
lstrcpyA
lstrcmpiA
HeapDestroy
LCMapStringW
PulseEvent
GetVolumeInformationA
GetWindowsDirectoryA
GetProcAddress
GetLastError
GetProfileStringA
DeleteFileA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
FreeLibrary
LoadLibraryA
GetFileAttributesA
OpenMutexA
lstrcpynA
CloseHandle
ReadFile
SetFilePointer
GetFileSize
CreateFileA
Sleep
MultiByteToWideChar
lstrlenA
GetCurrentProcess

user32

GetTopWindow
IsChild
GetCapture
WinHelpA
CreateDialogIndirectParamA
GetClassInfoA
RegisterClassA
GetMenu
GetSubMenu
GetMenuItemID
TrackPopupMenu
GetDialogBaseUnits
EndDialog
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
DestroyIcon
PostThreadMessageA
GetForegroundWindow
DestroyWindow
SetForegroundWindow
SetWindowPlacement
wvsprintfA
GetWindowPlacement
ShowWindow
MoveWindow
SetWindowLongA
GetWindowTextLengthA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
RegisterWindowMessageA
GetDlgItemTextA
GetDlgItemInt
GetDlgItem
CheckRadioButton
CheckDlgButton
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ScreenToClient
GetMenuStringA
DeleteMenu
RemoveMenu
AppendMenuA
RegisterClipboardFormatA
InflateRect
DestroyMenu
CharUpperA
MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
CharNextA
LoadStringA
GetSysColorBrush
LoadCursorA
LoadIconA
UpdateWindow
MapWindowPoints
GetSysColor
SetActiveWindow
IsWindow
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetMessageTime
GetMessagePos
SetDlgItemTextA
InsertMenuA
GetMenuItemCount
GetDesktopWindow
GetWindowTextA
SetWindowTextA
ClientToScreen
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameA
UnhookWindowsHookEx
OemToCharA
CharToOemA
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
EnableWindow
SetCursor
ShowOwnedPopups
SendMessageA
PostMessageA
PostQuitMessage
TranslateMessage
DispatchMessageA
PeekMessageA
MsgWaitForMultipleObjects
wsprintfA
ExitWindowsEx
SetFocus
GetSystemMetrics
SendDlgItemMessageA
SetDlgItemInt
CreateWindowExA
InvalidateRect
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode

olepro32

ord253

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegCloseKey
RegCreateKeyA
RegEnumKeyA
RegQueryValueA
RegSetValueA
RegOpenKeyA
GetUserNameA
RegOpenKeyExA
RegQueryValueExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA

ole32

WriteFmtUserTypeStg
CreateBindCtx
OleDuplicateData
WriteClassStg
SetConvertStg
OleInitialize
CoDisconnectObject
OleRun
CoTaskMemAlloc
CoFreeUnusedLibraries
OleUninitialize
CoTaskMemFree
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoTreatAsClass
OleRegGetUserType
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromProgID
OleSetClipboard
OleFlushClipboard
CLSIDFromString
ReleaseStgMedium
CoRegisterMessageFilter
CoRegisterClassObject
CoRevokeClassObject
CoUninitialize
OleIsCurrentClipboard
CreateStreamOnHGlobal
StringFromGUID2
CoCreateInstance
CoInitialize

oleaut32

LoadTypeLi
SysStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayUnlock
SafeArrayLock
SafeArrayPtrOfIndex
SafeArrayAllocDescriptor
SafeArrayAllocData
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SysStringByteLen
SysAllocStringByteLen
SafeArrayRedim
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SysReAllocStringLen
VariantChangeType
VariantCopy
VariantTimeToSystemTime
SysAllocStringLen
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetVartype
SysAllocString
VariantInit
VariantClear
SafeArrayCopy
SafeArrayGetElement
SafeArrayPutElement
SafeArrayDestroy
SafeArrayCreate
SysFreeString

gdi32

ExtCreatePen
GetWindowExtEx
GetViewportExtEx
CreateDIBitmap
CreateCompatibleDC
BitBlt
GetTextExtentPointA
GetTextExtentPoint32A
CreateDCA
GetTextMetricsA
CreateFontIndirectA
CreateRectRgnIndirect
CopyMetaFileA
SetRectRgn
CreateSolidBrush
CombineRgn
PatBlt
GetMapMode
CreatePen
DPtoLP
GetBkColor
LPtoDP
GetObjectA
GetDCOrgEx
GetTextColor
ExtTextOutA
TextOutA
Escape
PtVisible
CreateDIBPatternBrushPt
RectVisible
CreateHatchBrush
CreateBitmap
CreatePatternBrush
DeleteDC
StartDocA
DeleteObject
RestoreDC
SelectObject
SaveDC
SelectPalette
SetBkColor
GetStockObject
SetPolyFillMode
SetROP2
SetBkMode
SetTextColor
SetMapMode
SetStretchBltMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
SetWindowOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetClipBox
SetWindowExtEx
ExcludeClipRect
IntersectClipRect
SelectClipRgn
MoveToEx
LineTo
OffsetClipRgn
SetTextJustification
SetTextCharacterExtra
SetTextAlign
GetCurrentPositionEx
ArcTo
SetMapperFlags
PolyDraw
PolylineTo
SetArcDirection
PolyBezierTo
GetClipRgn
SetColorAdjustment
SelectClipPath
ExtSelectClipRgn
CreateRectRgn
GetObjectType
EnumMetaFile
PlayMetaFileRecord
PlayMetaFile
GetDeviceCaps

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

shell32

DragAcceptFiles
ExtractIconA
SHGetFileInfoA

comctl32

ord17

oledlg

ord8

Sections

.text
Size: 304KB - Virtual size: 300KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26f70feeacf263da5f3f0a439959d5e6

Headers

File Characteristics

Imports

kernel32

user32

olepro32

advapi32

ole32

oleaut32

gdi32

comdlg32

winspool.drv

shell32

comctl32

oledlg

Sections

.text Size: 304KB - Virtual size: 300KB

.rdata Size: 64KB - Virtual size: 60KB

.data Size: 40KB - Virtual size: 53KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 304KB - Virtual size: 300KB

.rdata
Size: 64KB - Virtual size: 60KB

.data
Size: 40KB - Virtual size: 53KB

.rsrc
Size: 4KB - Virtual size: 1KB