fa21c65f9efea20aeb82d6ea36f1f0a436993daf77b07325a2d1a1894352473c

Sharing

Copy URL Twitter E-mail

General

Target

fa21c65f9efea20aeb82d6ea36f1f0a436993daf77b07325a2d1a1894352473c
Size

308KB
MD5

2bda31b533b946d563cd1ecaf7976d55
SHA1

75de1fe5f606b60ef2b13459f1a9f1bd2a6bef23
SHA256

fa21c65f9efea20aeb82d6ea36f1f0a436993daf77b07325a2d1a1894352473c
SHA512

5bd3c077d544d7c6ad9930e13d17a1c4fb17597f2b96aafcfe6f5c43b584616152e3af1bbf8cb73fe95bf34ec460ddb6693e004cbbbe9c61a6484603e1dc562f
SSDEEP

6144:42oOiMCkcTZr6URgyJfTV5Bvpl8swmIynkYxDG:42o74cTZr69yJf5518sUYk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa21c65f9efea20aeb82d6ea36f1f0a436993daf77b07325a2d1a1894352473c

Files

fa21c65f9efea20aeb82d6ea36f1f0a436993daf77b07325a2d1a1894352473c
.exe windows:4 windows x86 arch:x86

b6b74a801e3b912fee1fe436a131c784

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeW
IsBadReadPtr
GetEnvironmentVariableA
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileType
GetProfileStringA
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetTimeZoneInformation
GetACP
HeapReAlloc
RaiseException
TerminateProcess
HeapAlloc
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
GetOEMCP
GetCPInfo
GetProcessVersion
GetCurrentDirectoryA
SizeofResource
GlobalFlags
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
TlsAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SetLastError
MulDiv
LocalFree
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetTempFileNameA
GetFileAttributesA
FreeLibrary
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalFindAtomA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalAddAtomA
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
lstrcmpA
LockResource
FindResourceA
LoadResource
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
lstrcpynA
GlobalFree
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
lstrlenA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
GetLastError
VirtualAlloc
GetModuleFileNameA
CreateFileA
HeapSize
GlobalMemoryStatus
SetStdHandle
GetStringTypeA
HeapFree
LocalAlloc
GetEnvironmentStrings
CreatePipe
GetModuleHandleA
GlobalAlloc
GlobalLock
GlobalHandle
GlobalUnlock
IsBadCodePtr

user32

GetDesktopWindow
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
InflateRect
SetCursorPos
IsZoomed
SetParent
IsRectEmpty
AppendMenuA
DeleteMenu
GetSystemMenu
SetTimer
KillTimer
WindowFromPoint
wvsprintfA
LoadStringA
GetClassNameA
InsertMenuA
GetMenuStringA
GetSysColorBrush
DestroyIcon
FindWindowA
GetTabbedTextExtentA
InvertRect
GetDCEx
LockWindowUpdate
GetDC
ReleaseDC
DestroyCursor
LoadIconA
MapWindowPoints
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
WinHelpA
GetClassInfoA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
TranslateAcceleratorA
GetWindowPlacement
GetWindowRect
SetFocus
ShowWindow
SetWindowPos
SetWindowLongA
GetDlgCtrlID
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
SetCursor
ShowOwnedPopups
PostQuitMessage
GetNextDlgTabItem
EndDialog
GetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SendMessageA
MessageBoxA
GetSystemMetrics
SetActiveWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
CharNextA
IsWindowUnicode
PostMessageA
LoadCursorA
CharUpperA
wsprintfA
GetCapture
RedrawWindow
ReleaseCapture
OffsetRect
SetCapture
InvalidateRect
GetClientRect
GetSysColor
LoadImageA
EnableWindow
FindWindowW
UpdateWindow
ToUnicodeEx
LoadAcceleratorsA
SetRectEmpty
PtInRect
FillRect
IsIconic
SetRect
RegisterClassA
GetMessageTime

gdi32

DPtoLP
CreatePen
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
StartDocA
SetAbortProc
CreateDCA
DeleteDC
SaveDC
RestoreDC
SelectObject
SelectPalette
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
Rectangle
DeleteObject
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetRectRgn
CombineRgn
CreateRectRgnIndirect
CreateFontIndirectA
GetTextExtentPoint32A
GetTextMetricsA
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
LPtoDP
GetBkColor
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
GetStockObject
PatBlt
GetDeviceCaps
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
RealizePalette
StretchDIBits
CreatePalette
CreateCompatibleDC
GetObjectA
BitBlt
SetBkMode
CreateDIBitmap
GetTextExtentPointA
GetCharacterPlacementW

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
GetFileTitleA
PrintDlgA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyExA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegOpenKeyA
RegCloseKey

shell32

DragQueryFileA
DragFinish
SHGetFileInfoA
ExtractIconA

comctl32

ord17

Sections

.text
Size: 212KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6b74a801e3b912fee1fe436a131c784

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 212KB - Virtual size: 208KB

.rdata Size: 48KB - Virtual size: 46KB

.data Size: 20KB - Virtual size: 35KB

.rsrc Size: 24KB - Virtual size: 21KB

.text
Size: 212KB - Virtual size: 208KB

.rdata
Size: 48KB - Virtual size: 46KB

.data
Size: 20KB - Virtual size: 35KB

.rsrc
Size: 24KB - Virtual size: 21KB