9ee86e4495fce76fe0762f011c29cffba38552aea75a9e5960e10e366e69ffd4

Sharing

Copy URL Twitter E-mail

General

Target

9ee86e4495fce76fe0762f011c29cffba38552aea75a9e5960e10e366e69ffd4
Size

264KB
MD5

440419f0897770ad0a140aa4c74b0a08
SHA1

0cd8209be2ef99c6885b2f4e4f12cab6fc92225b
SHA256

9ee86e4495fce76fe0762f011c29cffba38552aea75a9e5960e10e366e69ffd4
SHA512

49f5885f854b85a6f321a19e28d76d599989a5fe37ea639ff4afa4fdcd653a47371e4e82f949580f96048e5346ab76c30196c332b39459ee835e05becc8d21ca
SSDEEP

3072:d+eipHyJKji+OxGziNMNm/WxTEczhICHWf6HygB5l77VOmP5lMWAggOorEZsi5Kz:gVpZjpOsoqEkhzyEVHUmfns40z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9ee86e4495fce76fe0762f011c29cffba38552aea75a9e5960e10e366e69ffd4

Files

9ee86e4495fce76fe0762f011c29cffba38552aea75a9e5960e10e366e69ffd4
.exe windows:4 windows x86 arch:x86

e228d55712c23ab2f12c02f6f3966970

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime
PlaySoundA

msacm32

acmFormatChooseA
acmMetrics

olepro32

ord250

kernel32

lstrlenA
MulDiv
GetDiskFreeSpaceA
FreeLibrary
GetProcAddress
GetFullPathNameA
CloseHandle
GetFileSize
CreateFileA
GetCurrentProcessId
WriteFile
FindClose
FindNextFileA
FindFirstFileA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetModuleHandleA
LocalFree
FormatMessageA
Sleep
GetModuleFileNameA
GetDiskFreeSpaceExA
lstrlenW
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc
EnterCriticalSection
LeaveCriticalSection
InterlockedIncrement
InterlockedDecrement
lstrcmpiA
IsDBCSLeadByte
WriteProfileStringA
lstrcpyW
LoadLibraryExA
DeleteFileA
OpenFile
GetProfileIntA
GetProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
RaiseException
FreeEnvironmentStringsA
SetFilePointer
GetConsoleMode
GetConsoleCP
LCMapStringW
LCMapStringA
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStdHandle
ExitProcess
HeapCreate
VirtualFree
GetStartupInfoA
GetCommandLineA
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
RtlUnwind
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
GetStringTypeA
GetThreadLocale
GetLocaleInfoA
GetACP
SetStdHandle
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
GetFileType
QueryPerformanceCounter
GetTickCount
LoadLibraryA
lstrcpynA
OutputDebugStringA
GetVersion
FindResourceExA
FindResourceA
LoadResource
LockResource
SizeofResource
InitializeCriticalSection
DeleteCriticalSection
ReadFile
GetLastError
GetSystemTimeAsFileTime
SetEndOfFile
GetEnvironmentStrings
GetStringTypeW

user32

GetDC
ReleaseDC
UnregisterClassA
PostQuitMessage
LoadIconA
LoadCursorA
PeekMessageA
LoadAcceleratorsA
WaitMessage
TranslateAcceleratorA
DispatchMessageA
TranslateMessage
CreateWindowExA
GetAsyncKeyState
BeginPaint
EndPaint
DefWindowProcA
CreateDialogParamA
CreatePopupMenu
UpdateWindow
ShowWindow
GetMenuItemCount
AppendMenuA
CheckMenuItem
RegisterWindowMessageA
CharNextA
GetDlgItemTextA
IsCharAlphaA
IsCharAlphaNumericA
SetDlgItemInt
SetFocus
MessageBeep
InvalidateRect
SendMessageA
GetDlgItem
EnableWindow
KillTimer
SetTimer
GetMenu
GetSubMenu
RemoveMenu
GetDlgItemInt
IsDlgButtonChecked
SetDlgItemTextA
CheckDlgButton
DialogBoxParamA
EndDialog
FindWindowA
PostMessageA
MessageBoxA
wsprintfA
GetSystemMetrics
GetWindowRect
GetClientRect
SetWindowPos
SetWindowTextA
GetWindowLongA
GetSysColor
GetWindowTextA
EnableMenuItem
MoveWindow
RegisterClassA

gdi32

SetTextColor
ExtTextOutA
PatBlt
DeleteObject
CreateSolidBrush
CreateFontA
GetStockObject
SelectObject
GetTextMetricsA
SetBkColor

comdlg32

GetSaveFileNameA

advapi32

RegDeleteKeyA
RegCreateKeyExW
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumKeyExA
RegSetValueExW

shell32

ShellExecuteA
SHGetSpecialFolderPathA

ole32

CreateBindCtx
MkParseDisplayName
CoTaskMemRealloc
CoTaskMemAlloc
CoInitializeEx
CoCreateInstance
StgCreateDocfile
CoUninitialize
CoTaskMemFree

oleaut32

VarUI4FromStr
SysFreeString

setupapi

SetupDiClassGuidsFromNameA
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList

Sections

.text
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e228d55712c23ab2f12c02f6f3966970

Headers

File Characteristics

Imports

winmm

msacm32

olepro32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

setupapi

Sections

.text Size: 156KB - Virtual size: 152KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 8KB - Virtual size: 18KB

.rsrc Size: 68KB - Virtual size: 105KB

.text
Size: 156KB - Virtual size: 152KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 8KB - Virtual size: 18KB

.rsrc
Size: 68KB - Virtual size: 105KB