5b05f4ad8bb9262a35bec6eeba871c3bb4ee02af6641905dbeb10c8144e71b00

Sharing

Copy URL

Twitter E-mail

General

Target

5b05f4ad8bb9262a35bec6eeba871c3bb4ee02af6641905dbeb10c8144e71b00
Size

3.6MB
MD5

19f513094cd9d0d307f0f4d51f7dcc5d
SHA1

cee42f94e1382ca582c09613c2e89f0d59f10ac8
SHA256

5b05f4ad8bb9262a35bec6eeba871c3bb4ee02af6641905dbeb10c8144e71b00
SHA512

6bb6f024e4d92946b6bac251697138f6b6dfc8746741730749a8f1f6c7c87603c75b1eea3da4c0e62fdf6c8b80c5b11a8ba5bc525eaa51cb54fe35cb017c87a7
SSDEEP

49152:tYUuh744VBPvkKASXfEA/gd7WMvcTb9N79Ui21Ne7tqHrcQdEO0k9:tYph7vVPKNbvuUn6tqHr71J9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b05f4ad8bb9262a35bec6eeba871c3bb4ee02af6641905dbeb10c8144e71b00

Files

5b05f4ad8bb9262a35bec6eeba871c3bb4ee02af6641905dbeb10c8144e71b00
.exe windows:5 windows x86 arch:x86

c3b50c5ce32877e4a4d0343433317dee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

comctl32

_TrackMouseEvent
ImageList_Create
ImageList_Destroy
ImageList_DrawEx
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_LoadImageA
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetImageCount
ImageList_Add

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

wininet

InternetCloseHandle

kernel32

LCMapStringW
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LocalLock
LocalReAlloc
LocalUnlock
LockFile
LockResource
lstrcatA
lstrcmpA
lstrcmpiA
lstrcmpW
lstrcpyA
lstrcpynA
lstrlenA
lstrlenW
MapViewOfFile
MoveFileA
MoveFileExW
MulDiv
MultiByteToWideChar
OpenFileMappingW
IsValidLocale
OutputDebugStringW
PeekNamedPipe
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSemaphore
ResetEvent
ResumeThread
SearchPathA
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
UnmapViewOfFile
VirtualAlloc
VirtualProtect
VirtualQuery
WaitForSingleObjectEx
WideCharToMultiByte
WinExec
WriteConsoleW
WriteFile
WritePrivateProfileStringA
WritePrivateProfileStringW
IsValidCodePage
IsProcessorFeaturePresent
IsDBCSLeadByteEx
InterlockedDecrement
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalGetAtomNameA
GlobalFree
GlobalFlags
GlobalFindAtomA
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetWindowsDirectoryA
GetVolumeInformationA
GetVersionExA
GetUserDefaultLCID
GetTimeZoneInformation
GetTimeFormatW
GetThreadLocale
GetTempPathW
GetTempPathA
GetTempFileNameW
GetTempFileNameA
GetSystemTimeAsFileTime
GetSystemInfo
GetSystemDirectoryW
GetStringTypeW
GetStdHandle
GetProfileIntA
GetProcessHeap
GetProcAddress
GetPrivateProfileStringW
GetPrivateProfileStringA
GetPrivateProfileIntA
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLastError
GetFullPathNameA
GetFileType
GetFileTime
GetFileAttributesW
GetFileAttributesExW
GetFileAttributesExA
GetFileAttributesA
GetExitCodeProcess
GetEnvironmentStringsW
GetDateFormatW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetCurrentDirectoryA
GetCPInfo
GetConsoleMode
GetConsoleCP
GetCommandLineW
GetACP
FreeLibraryAndExitThread
FreeEnvironmentStringsW
FormatMessageW
FormatMessageA
FlushFileBuffers
FindResourceW
FindResourceExW
FindResourceA
FindNextFileA
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitProcess
EnumSystemLocalesW
DuplicateHandle
DeleteFileW
DeleteFileA
DeleteCriticalSection
DebugBreak
CreateThread
CreateSemaphoreA
CreateProcessW
CreateMutexA
CreateFileW
CreateFileMappingW
CreateFileA
CreateEventW
CreateEventA
CreateDirectoryW
CopyFileA
CompareStringW
CompareStringA
CompareFileTime
CloseHandle
GetStartupInfoW
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
OutputDebugStringA
GetStartupInfoA

user32

LoadImageW
LoadMenuA
LoadMenuW
LoadStringA
LoadStringW
LockWindowUpdate
MapDialogRect
MapVirtualKeyA
MapVirtualKeyExA
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxW
ModifyMenuA
MoveWindow
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClassExA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
SendDlgItemMessageA
SendMessageA
SetActiveWindow
SetCapture
SetClassLongA
SetClipboardData
SetCursorPos
SetFocus
SetForegroundWindow
SetMenuDefaultItem
SetMenuItemBitmaps
SetMenuItemInfoA
SetParent
SetPropA
SetRect
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowsHookExA
SetWindowTextA
ShowOwnedPopups
ShowScrollBar
ShowWindow
SubtractRect
SystemParametersInfoA
TabbedTextOutA
ToAsciiEx
TrackPopupMenu
TranslateAcceleratorA
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UpdateWindow
ValidateRect
WaitMessage
WinHelpA
LoadImageA
LoadIconW
LoadIconA
LoadCursorW
LoadCursorA
LoadBitmapW
LoadAcceleratorsW
LoadAcceleratorsA
KillTimer
IsZoomed
IsWindowVisible
IsWindowEnabled
IsRectEmpty
IsMenu
IsIconic
IsDialogMessageA
IsClipboardFormatAvailable
IsChild
IsCharLowerA
IsCharAlphaNumericA
InvertRect
InvalidateRgn
InvalidateRect
IntersectRect
InsertMenuItemA
InsertMenuA
InflateRect
HideCaret
GrayStringA
GetWindowThreadProcessId
GetWindowTextLengthA
GetWindowTextA
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowDC
GetUpdateRect
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropA
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessageTime
GetMessagePos
GetMessageA
GetMenuStringA
GetMenuState
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
GetMenuCheckMarkDimensions
GetKeyState
GetKeyNameTextA
GetKeyboardState
GetKeyboardLayout
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassLongA
GetClassInfoExA
GetClassInfoA
GetCaretPos
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FillRect
EqualRect
EnumChildWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextExA
DrawTextA
DrawStateA
DrawMenuBar
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DestroyAcceleratorTable
DeleteMenu
DefWindowProcA
DefMDIChildProcA
ReuseDDElParam
DefFrameProcA
UnpackDDElParam
CreateWindowExA
CreatePopupMenu
CreateMenu
CreateIconIndirect
CreateDialogIndirectParamA
CreateAcceleratorTableA
CopyRect
CopyImage
CopyIcon
CopyAcceleratorTableA
CloseClipboard
ClientToScreen
CheckMenuItem
CheckDlgButton
CharUpperBuffA
CharUpperA
CharNextW
CharNextA
CallWindowProcA
CallNextHookEx
BringWindowToTop
BeginPaint
BeginDeferWindowPos
AppendMenuA
AdjustWindowRectEx
GetLastActivePopup

gdi32

GetBkColor
GetBoundsRect
GetCharWidthA
GetClipBox
GetCurrentObject
GetDeviceCaps
GetDIBits
GetGlyphOutlineA
GetGlyphOutlineW
GetKerningPairsA
GetMapMode
GetNearestPaletteIndex
GetObjectA
GetObjectType
GetOutlineTextMetricsA
GetPaletteEntries
GetPixel
GetRgnBox
GetStockObject
GetSystemPaletteEntries
GetTextCharsetInfo
GetTextColor
GetTextExtentPoint32A
GetTextFaceA
GetTextMetricsA
EnumFontsA
GetViewportExtEx
GetViewportOrgEx
CombineRgn
GetWindowOrgEx
IntersectClipRect
LineTo
LPtoDP
MoveToEx
FrameRgn
OffsetViewportOrgEx
OffsetWindowOrgEx
PatBlt
Polyline
PtInRegion
PtVisible
RealizePalette
Rectangle
RectVisible
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetDIBColorTable
SetDIBits
SetDIBitsToDevice
SetMapMode
SetPaletteEntries
SetPixelV
SetPolyFillMode
SetRectRgn
SetROP2
SetStretchBltMode
SetTextAlign
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StretchDIBits
FillRgn
ExtTextOutA
ExtSelectClipRgn
ExtFloodFill
ExtCreatePen
ExcludeClipRect
CreateDCA
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
OffsetRgn
CopyMetaFileA
BitBlt
GetWindowExtEx
StartPage
EnumFontFamiliesExA
EnumFontFamiliesA
Ellipse
DPtoLP
DeleteObject
DeleteDC
CreateSolidBrush
CreateRoundRectRgn
CreateRectRgnIndirect
CreateRectRgn
CreatePolygonRgn
CreatePatternBrush
CreatePalette
CreateHatchBrush
CreateFontIndirectA
CreateFontA
CreateEllipticRgn
CreateDIBSection
CreateDIBitmap
Escape

advapi32

RegQueryValueExW
RegQueryValueExA
RegQueryValueA
RegQueryInfoKeyA
RegOpenKeyExW
RegOpenKeyExA
RegEnumValueA
RegEnumKeyExA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey
RegSetValueExA

shell32

DragFinish
DragQueryFileA
DragAcceptFiles

ole32

OleIsCurrentClipboard
OleLockRunning
OleTranslateAccelerator
OleUninitialize
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
OleInitialize
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
CoRegisterMessageFilter
CoLockObjectExternal
CoInitialize
CoGetClassObject
CoFreeUnusedLibraries
CoDisconnectObject
CoCreateInstance
CoCreateGuid
CLSIDFromString
CLSIDFromProgID
OleGetClipboard
OleFlushClipboard
OleDuplicateData
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
CoUninitialize
DoDragDrop

shlwapi

PathFindExtensionA
PathFindFileNameA
PathIsUNCA
PathStripToRootA
PathRemoveFileSpecW
PathCompactPathA

msvcrt

_controlfp
__set_app_type
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
__p__fmode
__p__commode

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 132KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.libstd7
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c3b50c5ce32877e4a4d0343433317dee

Headers

File Characteristics

Imports

winmm

comctl32

version

wininet

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

msvcrt

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 4KB - Virtual size: 4.0MB

.rsrc Size: 132KB - Virtual size: 130KB

.libstd7 Size: 1.2MB - Virtual size: 1.2MB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 4.0MB

.rsrc
Size: 132KB - Virtual size: 130KB

.libstd7
Size: 1.2MB - Virtual size: 1.2MB