2333a29d2d54802e5ba959e1065e46176776c26b4b4776c2f0a72cd12e135999

Sharing

Copy URL Twitter E-mail

General

Target

2333a29d2d54802e5ba959e1065e46176776c26b4b4776c2f0a72cd12e135999
Size

3.4MB
MD5

16df3b8cba5d9da8fe885c19844d0b32
SHA1

9d23bb71d833fb4d8a9bcac069a0ee2a867a48b7
SHA256

2333a29d2d54802e5ba959e1065e46176776c26b4b4776c2f0a72cd12e135999
SHA512

46fa694aff825ecbb8f522422e3d603576a0523c4a9fa8ec513331c6c484c2466c82a6bc14fc7bcf6df8688a6d3271745a4b0e22f4b9a67157b191be46931034
SSDEEP

98304:GA8j3eDwIFWe1/59yHI2KeuMgW1r1d79jfyPuFVY42kLPzIzpI8HQJcubgKmYDD0:GA8j3eDwIFWe1XyHTz7jd79j6+cubgTv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2333a29d2d54802e5ba959e1065e46176776c26b4b4776c2f0a72cd12e135999

Files

2333a29d2d54802e5ba959e1065e46176776c26b4b4776c2f0a72cd12e135999
.exe windows:4 windows x86 arch:x86

6e85f2bbe6d43df778794746e05d688b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

ImageList_Add
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_GetIcon
ImageList_GetImageCount
ImageList_Remove
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_SetImageCount
InitCommonControls
InitCommonControlsEx

comdlg32

ChooseColorW
ChooseFontW
GetOpenFileNameW
GetSaveFileNameW
PageSetupDlgW
PrintDlgW

gdi32

BitBlt
CloseEnhMetaFile
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCW
CreateEnhMetaFileW
CreateFontIndirectW
CreateFontW
CreatePatternBrush
CreatePen
CreateSolidBrush
DPtoLP
DeleteDC
DeleteEnhMetaFile
DeleteObject
Ellipse
EndDoc
EndPage
ExtFloodFill
ExtTextOutW
GetCurrentObject
GetDIBits
GetDeviceCaps
GetEnhMetaFileHeader
GetMapMode
GetObjectW
GetStockObject
GetTextExtentPoint32W
GetTextMetricsW
LineTo
MoveToEx
PatBlt
PlayEnhMetaFile
Polygon
Rectangle
RoundRect
SelectObject
SetBkColor
SetBkMode
SetMapMode
SetPixel
SetROP2
SetStretchBltMode
SetTextColor
StartDocW
StartPage
StretchBlt
TextOutW

gdiplus

GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromHICON
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipCreateHBITMAPFromBitmap
GdipCreatePen1
GdipCreateSolidFill
GdipDeleteBrush
GdipDeleteGraphics
GdipDeletePen
GdipDisposeImage
GdipDrawImageRect
GdipDrawLine
GdipDrawRectangle
GdipFillRectangle
GdipGetImageHeight
GdipGetImageWidth
GdipLoadImageFromFile
GdiplusShutdown
GdiplusStartup

kernel32

Beep
CloseHandle
ContinueDebugEvent
CopyFileA
CopyFileW
CreateFileMappingW
CreateFileW
CreatePipe
CreateProcessW
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
FileTimeToSystemTime
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FillConsoleOutputCharacterW
FindClose
FindFirstFileW
FindResourceW
FormatMessageW
FreeConsole
FreeLibrary
GetBinaryTypeW
GetConsoleCP
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentThreadId
GetExitCodeProcess
GetFileSize
GetLargestConsoleWindowSize
GetLastError
GetLocaleInfoA
GetLogicalDriveStringsW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProfileStringW
GetStartupInfoW
GetStdHandle
GetThreadContext
GetTickCount
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadResource
LockFile
LockResource
MapViewOfFile
MoveFileW
MulDiv
MultiByteToWideChar
OpenProcess
PeekConsoleInputA
QueryDosDeviceW
QueryPerformanceCounter
QueryPerformanceFrequency
ReadConsoleInputA
ReadFile
ReadProcessMemory
ReleaseSemaphore
ResumeThread
ScrollConsoleScreenBufferA
ScrollConsoleScreenBufferW
SearchPathW
SetConsoleCtrlHandler
SetConsoleCursorPosition
SetConsoleMode
SetConsoleWindowInfo
SetHandleInformation
SetThreadContext
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnlockFile
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForDebugEvent
WaitForSingleObject
WideCharToMultiByte
WriteConsoleInputA
WriteConsoleOutputA
WriteConsoleOutputW
WriteFile
WriteProcessMemory
lstrcmpiW

msimg32

AlphaBlend

msvcrt

__getmainargs
__initenv
__mb_cur_max
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_amsg_exit
_beginthreadex
_cexit
_chdir
_commode
_controlfp
_errno
_filelengthi64
_fileno
_findclose
_fmode
_fpreset
_get_osfhandle
_i64toa
_initterm
_iob
_itoa
_itow
_mkdir
_onexit
_pclose
_popen
_putenv
_snprintf
_snwprintf
_strdup
_stricmp
_strnicmp
_ui64toa
_ultoa
_ultow
abort
atoi
calloc
exit
fclose
feof
fflush
fgetpos
fgets
floor
fopen
fprintf
fputc
fputs
fread
free
freopen
fsetpos
fwrite
getc
getenv
isalpha
islower
isspace
isupper
iswctype
localeconv
log10
malloc
mbstowcs
memcmp
memcpy
memmove
memset
localtime
modf
pow
realloc
remove
setlocale
setvbuf
signal
strcat
strchr
strcmp
strcpy
strerror
strlen
strncmp
strrchr
strtol
strtoul
tolower
toupper
towlower
towupper
ungetc
vfprintf
time
wcschr
wcscmp
wcscspn
wcslen
wcsncmp
wcsstr
wcstombs
wcstoul
_findnext
_findfirst

ole32

CoTaskMemFree
CreateStreamOnHGlobal

oleaut32

SystemTimeToVariantTime

psapi

GetMappedFileNameW

shell32

DragAcceptFiles
DragFinish
DragQueryFileW
ExtractIconExW
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteW

shlwapi

PathFileExistsW

user32

BeginPaint
BringWindowToTop
CallWindowProcW
CheckMenuItem
CheckMenuRadioItem
ChildWindowFromPoint
ClientToScreen
ClipCursor
CloseClipboard
CreateAcceleratorTableW
CreateCaret
CreateMenu
CreatePopupMenu
CreateWindowExW
DefFrameProcW
DefMDIChildProcW
DefWindowProcW
DeleteMenu
DestroyAcceleratorTable
DestroyCaret
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DispatchMessageW
DrawFocusRect
DrawFrameControl
DrawIconEx
DrawMenuBar
DrawTextW
EmptyClipboard
EnableMenuItem
EnableWindow
EndPaint
EnumChildWindows
EnumDisplaySettingsW
EnumThreadWindows
FillRect
FindWindowExW
FrameRect
GetAncestor
GetCapture
GetClassInfoExW
GetClassNameW
GetClientRect
GetClipboardData
GetComboBoxInfo
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDlgCtrlID
GetDlgItem
GetFocus
GetIconInfo
GetKeyState
GetMenuBarInfo
GetMenuInfo
GetMenuItemInfoW
GetMessagePos
GetMessageW
GetParent
GetPropW
GetScrollInfo
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetWindow
GetWindowDC
GetWindowLongW
GetWindowRect
GetWindowTextW
HideCaret
InflateRect
InsertMenuItemW
InvalidateRect
InvertRect
IsClipboardFormatAvailable
IsDialogMessageW
IsIconic
IsMenu
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadCursorW
LoadIconW
LoadImageW
LockWindowUpdate
MapVirtualKeyA
MapWindowPoints
MessageBeep
MessageBoxW
MoveWindow
OffsetRect
OpenClipboard
PeekMessageW
PostMessageW
PtInRect
RedrawWindow
RegisterClassExW
RegisterClipboardFormatW
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropW
ScreenToClient
ScrollWindow
ScrollWindowEx
SendMessageW
SetCapture
SetCaretPos
SetClassLongW
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetLayeredWindowAttributes
SetMenu
SetMenuInfo
SetMenuItemInfoW
SetParent
SetPropW
SetRect
SetScrollInfo
SetTimer
SetWindowLongW
SetWindowPos
SetWindowTextA
SetWindowTextW
ShowCaret
ShowWindow
SystemParametersInfoW
TrackMouseEvent
TrackPopupMenu
TrackPopupMenuEx
TranslateAcceleratorW
TranslateMessage
UnregisterClassW
UpdateWindow
VkKeyScanA
WinHelpW

uxtheme

CloseThemeData
DrawThemeBackground
DrawThemeParentBackground
GetThemeColor
GetThemePartSize
IsAppThemed
OpenThemeData
SetWindowTheme

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

winmm

timeGetTime

winspool.drv

ClosePrinter
DocumentPropertiesW
GetPrinterW
OpenPrinterW

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 37.8MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e85f2bbe6d43df778794746e05d688b

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

comdlg32

gdi32

gdiplus

kernel32

msimg32

msvcrt

ole32

oleaut32

psapi

shell32

shlwapi

user32

uxtheme

version

winmm

winspool.drv

Sections

.text Size: 3.1MB - Virtual size: 3.1MB

.data Size: 11KB - Virtual size: 10KB

.rdata Size: 143KB - Virtual size: 143KB

.bss Size: - Virtual size: 37.8MB

.idata Size: 14KB - Virtual size: 13KB

.CRT Size: 512B - Virtual size: 48B

.tls Size: 512B - Virtual size: 8B

.rsrc Size: 24KB - Virtual size: 23KB

.reloc Size: 103KB - Virtual size: 103KB

.text
Size: 3.1MB - Virtual size: 3.1MB

.data
Size: 11KB - Virtual size: 10KB

.rdata
Size: 143KB - Virtual size: 143KB

.bss
Size: - Virtual size: 37.8MB

.idata
Size: 14KB - Virtual size: 13KB

.CRT
Size: 512B - Virtual size: 48B

.tls
Size: 512B - Virtual size: 8B

.rsrc
Size: 24KB - Virtual size: 23KB

.reloc
Size: 103KB - Virtual size: 103KB