19d1d39588b9d1eb8da85950237f397af4be063746b0df474cce1803380c7dcc

Sharing

Copy URL Twitter E-mail

General

Target

19d1d39588b9d1eb8da85950237f397af4be063746b0df474cce1803380c7dcc
Size

5.9MB
MD5

bd7d59d4f6831b3ef91fc9775dcc01a4
SHA1

700b9e5f84b56cf75ddcb4a0c72f86e967441047
SHA256

19d1d39588b9d1eb8da85950237f397af4be063746b0df474cce1803380c7dcc
SHA512

afb2d7a9e3b24fcd07cb0b8f93293f557f4c86b7563ac06de744f8e5ae13252c94027a99a0f01763ec2dd78258acfa89955fbb6f14083f19dc9b61f620e696b9
SSDEEP

98304:gaiSWoUecQwJjj7gK3iVW50e2+KTgkjmrFKx+CVbp:4SWoUecQw9hsWn2+KtqroMCl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19d1d39588b9d1eb8da85950237f397af4be063746b0df474cce1803380c7dcc

Files

19d1d39588b9d1eb8da85950237f397af4be063746b0df474cce1803380c7dcc
.exe windows:5 windows x86 arch:x86

30ed5d8021141bd2d6f194ee9bfe5724

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\NetAccerDXAPICall01\Release\NetAccerDXAPICall.pdb

Imports

kernel32

FileTimeToSystemTime
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesW
GetFileAttributesExW
GetFileSizeEx
GetFileTime
GetTickCount
IsDebuggerPresent
IsProcessorFeaturePresent
CreateThread
ExitThread
RtlUnwind
ExitProcess
GetModuleHandleExW
AreFileApisANSI
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualProtect
VirtualQuery
GetStdHandle
GetFileType
GetStartupInfoW
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsValidCodePage
GetOEMCP
GetCPInfo
CreateDirectoryW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
GetStringTypeW
GetTimeZoneInformation
OutputDebugStringW
LCMapStringW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
ReadConsoleW
SetStdHandle
WriteConsoleW
SetEnvironmentVariableA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
CreateFileW
GetThreadLocale
DeleteFileW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
FormatMessageW
MulDiv
LocalFree
GlobalUnlock
ResumeThread
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
GetSystemDirectoryW
EncodePointer
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GlobalFree
FreeResource
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GlobalLock
GlobalAlloc
FreeLibrary
GetVersionExW
GetCurrentThreadId
GetCurrentThread
LoadLibraryW
GetModuleHandleA
SetLastError
OutputDebugStringA
GetACP
DeleteCriticalSection
DecodePointer
EnterCriticalSection
HeapSize
RaiseException
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
WaitForSingleObject
TerminateProcess
CloseHandle
GetModuleFileNameW
GetCurrentProcessId
GetEnvironmentVariableW
Sleep
GetCommandLineW
GetProcAddress
LoadLibraryExW
LockResource
LoadResource
SizeofResource
GetLastError
FindResourceW
GetModuleHandleW
GetFileAttributesA
WideCharToMultiByte
QueryPerformanceCounter
MultiByteToWideChar

user32

RegisterClipboardFormatW
PostThreadMessageW
CreateDialogIndirectParamW
GetWindowThreadProcessId
IsWindowEnabled
SetCursor
GetActiveWindow
TranslateMessage
GetMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoW
MonitorFromWindow
WinHelpW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
GetWindowLongW
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowTextW
RemovePropW
GetPropW
SetPropW
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
OffsetRect
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
DestroyWindow
IsChild
IsWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
PostQuitMessage
PostMessageW
GetParent
SendDlgItemMessageA
UnregisterClassW
PtInRect
EnableWindow
LoadIconW
InvalidateRect
CharNextW
SetWindowRgn
LoadBitmapW
GetWindowRect
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
GetSystemMenu
GetDC
AppendMenuW
CreatePopupMenu
GetCursorPos
SendMessageW
CharUpperW
GetSysColorBrush
MessageBeep
MessageBoxW
UpdateWindow
GetNextDlgGroupItem
IsRectEmpty
IntersectRect
SetRect
InvalidateRgn
CopyAcceleratorTableW
SetTimer
KillTimer
RealChildWindowFromPoint
LoadCursorW
ReleaseCapture
SetCapture
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
DestroyMenu
IsDialogMessageW
SetWindowTextW
EndDialog
MoveWindow
ShowWindow
GetDesktopWindow
SetActiveWindow
GetNextDlgTabItem

gdi32

DeleteObject
Escape
GetClipBox
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
RestoreDC
SaveDC
ExtSelectClipRgn
SelectObject
SetBkMode
SetMapMode
ExtTextOutW
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetMapMode
GetDeviceCaps
CreateBitmap
SetTextColor
SetBkColor
DeleteDC
GetStockObject
CreateFontW
CombineRgn
CreateCompatibleDC
CreateRectRgn
StretchBlt
GetObjectW
GetPixel

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegSetValueExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

ShellExecuteW
Shell_NotifyIconW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathFindExtensionW

ole32

StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoTaskMemFree
CoTaskMemAlloc
CreateILockBytesOnHGlobal
CoInitialize
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoUninitialize
CoCreateGuid
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter

oleaut32

SysFreeString
SysAllocStringLen
VariantInit
VariantClear
VariantChangeType
OleCreateFontIndirect
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysAllocString

oledlg

OleUIBusyW

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 294KB - Virtual size: 294KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

30ed5d8021141bd2d6f194ee9bfe5724

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

oleacc

Sections

.text Size: 294KB - Virtual size: 294KB

.rdata Size: 88KB - Virtual size: 87KB

.data Size: 13KB - Virtual size: 30KB

.rsrc Size: 5.5MB - Virtual size: 5.5MB

.reloc Size: 22KB - Virtual size: 22KB

.text
Size: 294KB - Virtual size: 294KB

.rdata
Size: 88KB - Virtual size: 87KB

.data
Size: 13KB - Virtual size: 30KB

.rsrc
Size: 5.5MB - Virtual size: 5.5MB

.reloc
Size: 22KB - Virtual size: 22KB