0feac84b3638cdccca64a7ebd606a54422944e17e4ad4c519ca7279e7018e9dc

Sharing

Copy URL

Twitter E-mail

General

Target

0feac84b3638cdccca64a7ebd606a54422944e17e4ad4c519ca7279e7018e9dc
Size

2.1MB
MD5

f5579a2486ebe700f129d283e48c6a04
SHA1

4805520d248ebe13b2bba217dcd85bded3bdb75f
SHA256

0feac84b3638cdccca64a7ebd606a54422944e17e4ad4c519ca7279e7018e9dc
SHA512

040183bc8a27c4bd6b6069f6d38311c7b328f90528651732c4db64afd2039dafeea3d360bd418c4ae1c53c2b2c7318b3b13d68456eff9a141fa8299b0e9a4fa0
SSDEEP

49152:U2x1QoqhzA+lmxuCdayeGnbp6aN3vhHDVkfoD66T/RkicBwP3101Zr8sWltoUXH:U2x1ghzA+lkdYGnbp6CvhjVXD66TecPz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0feac84b3638cdccca64a7ebd606a54422944e17e4ad4c519ca7279e7018e9dc

Files

0feac84b3638cdccca64a7ebd606a54422944e17e4ad4c519ca7279e7018e9dc
.exe windows:5 windows x86 arch:x86

aef5f3c77d0b2e0b3f7b48ffae64c5cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileInformationByHandle
GetFullPathNameA
FindFirstFileExA
GetDriveTypeA
OutputDebugStringA
GetConsoleMode
GetPrivateProfileStringA
PeekNamedPipe
CreateDirectoryA
GetPrivateProfileIntA
AllocConsole
GetComputerNameA
CancelIo
WaitForMultipleObjects
GetOverlappedResult
QueryPerformanceFrequency
CreateEventA
GetDriveTypeW
GetProcessHeap
WriteConsoleW
AttachConsole
SetEnvironmentVariableA
GetConsoleCP
GetTimeZoneInformation
LCMapStringW
GetStringTypeW
IsValidCodePage
GetOEMCP
GetCPInfo
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
QueryPerformanceCounter
HeapDestroy
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
GetFileType
SetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
HeapQueryInformation
ExitProcess
HeapReAlloc
ExitThread
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
RaiseException
DecodePointer
EncodePointer
RtlUnwind
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
VirtualProtect
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
GetFileAttributesExW
SetErrorMode
SearchPathW
GetProfileIntW
GetNumberFormatW
GetWindowsDirectoryW
GetTempPathW
GetTempFileNameW
GetFileAttributesW
InitializeCriticalSectionAndSpinCount
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
ReadFile
lstrcmpiW
DeleteFileW
GetCurrentDirectoryW
FileTimeToSystemTime
GetThreadLocale
GlobalGetAtomNameW
GlobalFlags
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
lstrlenA
InterlockedDecrement
ReleaseActCtx
CreateActCtxW
lstrcpyW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
ResumeThread
SetThreadPriority
lstrcmpA
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
InterlockedExchange
GetModuleFileNameW
FreeResource
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
lstrcmpW
GlobalFree
CopyFileW
GlobalSize
FormatMessageW
LocalFree
MulDiv
SetEvent
ResetEvent
WideCharToMultiByte
lstrlenW
GetACP
CreateThread
GlobalAlloc
GlobalLock
GlobalUnlock
DeviceIoControl
TerminateProcess
ActivateActCtx
DeactivateActCtx
SetLastError
GetModuleHandleW
LoadLibraryW
LoadLibraryA
GetProcAddress
FreeLibrary
WaitForSingleObject
TerminateThread
GetLocalTime
CreateFileA
SetFilePointer
WriteFile
MultiByteToWideChar
SetUnhandledExceptionFilter
CreateMutexW
GetLastError
ReleaseMutex
CreateFileW
GetCurrentThreadId
GetCurrentProcessId
SizeofResource
GetCurrentProcess
CloseHandle
Sleep
GetTickCount
FindResourceW
LoadResource
LockResource
GetModuleFileNameA

user32

SetCapture
RedrawWindow
DrawFocusRect
OffsetRect
InflateRect
SetRectEmpty
IsRectEmpty
ShowOwnedPopups
SetCursor
ValidateRect
PostQuitMessage
MapVirtualKeyW
GetKeyNameTextW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
CheckMenuItem
WindowFromPoint
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GrayStringW
DrawTextExW
TabbedTextOutW
GetWindowThreadProcessId
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
SetDlgItemTextW
SetDlgItemInt
GetDlgItemTextW
CheckDlgButton
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
GetNextDlgGroupItem
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
MonitorFromPoint
GetScrollRange
SetScrollPos
GetScrollPos
IsMenu
CreatePopupMenu
SetMenuDefaultItem
SetForegroundWindow
ShowScrollBar
GetMenuDefaultItem
MessageBeep
BringWindowToTop
LockWindowUpdate
SetParent
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
GetParent
GetWindowRect
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
PtInRect
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
GetWindowLongW
DestroyIcon
DrawIconEx
CopyImage
GetIconInfo
ReleaseCapture
DrawEdge
SetWindowRgn
GetSysColorBrush
RegisterClipboardFormatW
MapDialogRect
SetWindowContextHelpId
DestroyMenu
SystemParametersInfoW
EnumDisplayMonitors
SetWindowLongW
SetWindowPos
GetWindow
GetMenuState
GetMenuStringW
InsertMenuW
RemoveMenu
GetClassNameW
LoadBitmapW
UpdateWindow
FillRect
DrawStateW
SetLayeredWindowAttributes
LoadCursorW
RealChildWindowFromPoint
IntersectRect
SetActiveWindow
DeleteMenu
SetRect
SetCursorPos
CopyIcon
SetClassLongW
DestroyAcceleratorTable
GetDoubleClickTime
GetUpdateRect
CharNextW
SendMessageW
EnableWindow
PostMessageW
DispatchMessageW
MessageBoxA
TranslateMessage
GetMessageW
PeekMessageW
PostThreadMessageW
MessageBoxW
DrawIcon
AppendMenuW
EnableMenuItem
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoW
SetMenuItemInfoW
GetSubMenu
LoadMenuW
GetSystemMenu
IsIconic
GetClientRect
ClientToScreen
InvalidateRect
IsWindowVisible
SetTimer
KillTimer
OpenClipboard
LoadIconW
GetSystemMetrics
GetCursorPos
GetFocus
CopyAcceleratorTableW
InvalidateRgn
UnregisterClassW
ToUnicodeEx
GetKeyboardLayout
LoadImageW
CloseClipboard
SetClipboardData
EmptyClipboard
GetKeyboardState
CreateAcceleratorTableW
InvertRect
HideCaret
NotifyWinEvent
GetAsyncKeyState
IsZoomed
CharUpperW
UnionRect
EnableScrollBar
WaitMessage
UpdateLayeredWindow
TranslateAcceleratorW
IsWindow
LoadAcceleratorsW
DrawTextW
DrawFrameControl
GetSysColor
FrameRect
InsertMenuItemW
GetWindowRgn
DestroyCursor
CreateMenu
MapVirtualKeyExW
IsCharLowerW
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
IsClipboardFormatAvailable
SubtractRect
CharUpperBuffW
UnpackDDElParam
SetScrollRange
ReuseDDElParam

gdi32

CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
CreateBitmap
SelectPalette
GetObjectType
CreatePen
CreateHatchBrush
PatBlt
GetTextExtentPoint32W
CreateEllipticRgn
CreatePolygonRgn
CombineRgn
GetBkColor
GetTextColor
Polyline
Ellipse
Polygon
GetTextMetricsW
CreateDIBitmap
GetTextCharsetInfo
SetRectRgn
GetMapMode
DPtoLP
CreateRoundRectRgn
CreateDIBSection
SetDIBColorTable
RealizePalette
SetPixel
Rectangle
OffsetRgn
GetRgnBox
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetWindowOrgEx
SetPixelV
GetTextFaceW
ExcludeClipRect
SelectClipRgn
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
SetBkColor
CreateDCW
CopyMetaFileW
GetDeviceCaps
GetStockObject
BitBlt
CreateCompatibleDC
CreateRectRgnIndirect
CreateCompatibleBitmap
GetObjectW
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
StretchBlt
IntersectClipRect
DeleteObject
CreateFontIndirectW
SetTextColor
EnumFontFamiliesW
CreateSolidBrush

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegOpenKeyA
RegDeleteKeyA
RegQueryValueExA
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegDeleteValueW
RegCreateKeyExW
RegEnumValueW
RegSetValueExW
RegQueryValueExW
RegEnumKeyExW
RegOpenKeyExW
RegOpenKeyExA
RegSetValueExA
RegCloseKey
OpenSCManagerA
OpenServiceA
QueryServiceStatus
CloseServiceHandle
RegCreateKeyExA

shell32

SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
DragQueryFileW
DragFinish
ShellExecuteW
SHGetFileInfoW

comctl32

ImageList_GetIconSize
ord17
InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathRemoveFileSpecW

ole32

CoTaskMemFree
StringFromCLSID
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CoInitializeEx
DoDragDrop
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoGetClassObject
CreateStreamOnHGlobal
CoInitialize
CoCreateInstance
CoUninitialize
CLSIDFromString
CLSIDFromProgID
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CoCreateGuid
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium

oleaut32

VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString
VariantCopy
SysAllocString
SysStringLen
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
OleCreateFontIndirect

oledlg

OleUIBusyW

gdiplus

GdipDeleteGraphics
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdiplusStartup
GdiplusShutdown
GdipGetImageGraphicsContext
GdipDrawImageI
GdipCloneImage
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipAlloc
GdipFree

ws2_32

WSAStartup
socket
closesocket
htonl
bind
setsockopt
sendto
WSASocketA
htons
WSACleanup
recvfrom
inet_addr

dbghelp

MiniDumpWriteDump

iphlpapi

GetAdaptersAddresses
GetAdaptersInfo
IcmpCreateFile
IcmpCloseHandle
IcmpSendEcho2Ex

setupapi

SetupDiDestroyDeviceInfoList
SetupDiSetClassInstallParamsA
SetupDiGetDeviceInstanceIdA
SetupDiClassNameFromGuidA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiChangeState

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

wsock32

inet_ntoa
WSAGetLastError

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 318KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aef5f3c77d0b2e0b3f7b48ffae64c5cb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

ws2_32

dbghelp

iphlpapi

setupapi

oleacc

imm32

winmm

wsock32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 318KB - Virtual size: 317KB

.data Size: 31KB - Virtual size: 65KB

.rsrc Size: 208KB - Virtual size: 207KB

.reloc Size: 180KB - Virtual size: 180KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 318KB - Virtual size: 317KB

.data
Size: 31KB - Virtual size: 65KB

.rsrc
Size: 208KB - Virtual size: 207KB

.reloc
Size: 180KB - Virtual size: 180KB