5ced1de48405958610752d383ab646d4bb182e24a9a5da4068e4edfae06d70be

Sharing

Copy URL Twitter E-mail

General

Target

5ced1de48405958610752d383ab646d4bb182e24a9a5da4068e4edfae06d70be
Size

748KB
MD5

669a2478eda1ec2a05935f87fe458c28
SHA1

49144d945c8a8b2fde91ec2db1a8b2a0d8c27642
SHA256

5ced1de48405958610752d383ab646d4bb182e24a9a5da4068e4edfae06d70be
SHA512

c30b6620d63379957263be40846d60b3033abb734ea36c2f121fca4a9790513bab542bb649ae08f2b757d9b2f25a451a70ee936c180f3c7ccff9441c2a90f865
SSDEEP

12288:GusiU1Ddphgqzcvb0cOKp3rrrJnuD19zFrO6JmBD/ZUOGnqJRuSDITsvX7Cr:XsiSiicAcOKVrr+19zFvJmBcTq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ced1de48405958610752d383ab646d4bb182e24a9a5da4068e4edfae06d70be

Files

5ced1de48405958610752d383ab646d4bb182e24a9a5da4068e4edfae06d70be
.exe windows:4 windows x86 arch:x86

c452f8260a9556aae5943b8e802ca0f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiOutUnprepareHeader
timeGetTime

kernel32

ReadProcessMemory
OutputDebugStringA
GetCurrentProcessId
FindClose
FindNextFileA
DeleteFileA
GetLocalTime
FindFirstFileA
GetTempPathA
SetUnhandledExceptionFilter
GetUserDefaultLCID
SetPriorityClass
InterlockedExchangeAdd
ExitProcess
SuspendThread
LocalAlloc
LocalFree
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
InterlockedDecrement
lstrcpynA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
lstrcatA
GetVersion
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetVolumeInformationA
WritePrivateProfileStringA
GetProcessVersion
GlobalFlags
GetCPInfo
GetOEMCP
GetFileAttributesA
GetFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
CreateThread
ExitThread
HeapSize
GetACP
GetTimeZoneInformation
HeapDestroy
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
InitializeCriticalSection
GetProcAddress
GetModuleHandleA
EnterCriticalSection
DeleteCriticalSection
Sleep
GetTickCount
LeaveCriticalSection
SetEvent
WaitForSingleObject
ResumeThread
CreateEventA
CloseHandle
GetCurrentThreadId
GetCurrentProcess
GetFullPathNameA
LoadLibraryA
SetThreadPriority
SetLastError
GetThreadPriority
GetCurrentThread
SetCurrentDirectoryA
GetCurrentDirectoryA
FreeLibrary
LockResource
LoadResource
SizeofResource
FindResourceA
GetModuleFileNameA
TerminateProcess
GetExitCodeProcess
CreateProcessA
DuplicateHandle
CreatePipe
ReadFile
WriteFile
MapViewOfFile
CreateFileMappingA
GetFileSize
CreateFileA
UnmapViewOfFile
lstrcpyA
lstrlenA
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
GetEnvironmentVariableA
LoadLibraryExA
SetErrorMode
IsDebuggerPresent
InterlockedIncrement
HeapFree
HeapAlloc
HeapReAlloc
HeapCreate
InterlockedExchange
GlobalLock
GlobalAlloc
GlobalFree
GlobalUnlock
lstrcmpA
IsBadReadPtr
GetSystemInfo
GetVersionExA
MulDiv
GetProfileStringA
GetLastError

user32

CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
SetWindowsHookExA
GetCursorPos
IsWindowVisible
ValidateRect
CallNextHookEx
GetKeyState
GetActiveWindow
GetMessageA
UnhookWindowsHookEx
GetDlgItem
SendDlgItemMessageA
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
GetDlgCtrlID
MoveWindow
SetWindowPos
ShowWindow
IsWindowEnabled
SetFocus
DestroyMenu
GetWindowPlacement
GetWindow
GetForegroundWindow
GetLastActivePopup
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
TrackPopupMenu
GetSubMenu
GetMenu
WinHelpA
MessageBoxA
SetScrollPos
SetScrollInfo
GetScrollInfo
ScrollWindow
AdjustWindowRectEx
IsWindow
SetActiveWindow
MapWindowPoints
CharUpperA
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CreateDialogIndirectParamA
EnableMenuItem
LoadStringA
WindowFromPoint
SetCursor
GetSysColorBrush
GetClassNameA
TranslateMessage
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
wsprintfA
FrameRect
GetMenuItemID
GetMenuStringA
DeleteMenu
SystemParametersInfoA
SetWindowLongA
SetCapture
GetAsyncKeyState
ReleaseDC
DestroyIcon
LoadImageA
LoadBitmapA
RedrawWindow
UpdateWindow
GetDC
GetWindowRect
LockWindowUpdate
UnionRect
EqualRect
GetUpdateRect
GetWindowLongA
IsRectEmpty
GetParent
GetClassInfoA
DefWindowProcA
LoadCursorA
RegisterClassA
SetRectEmpty
IntersectRect
GetFocus
DrawFocusRect
OffsetRect
PtInRect
CopyRect
InflateRect
GetSysColor
IsIconic
GetSystemMetrics
DrawIcon
EnableWindow
InvalidateRect
GetMenuItemInfoA
GetCapture
IsChild
ReleaseCapture
ScreenToClient
SetForegroundWindow
GetTopWindow
GetClientRect
SetParent
SendMessageA
AppendMenuA
SetMenuItemInfoA
CreatePopupMenu
GetMenuItemCount
ClientToScreen
RegisterWindowMessageA
PostMessageA
PeekMessageA
GetNextDlgTabItem
EndDialog
PostQuitMessage
DispatchMessageA
IsWindowUnicode
CharNextA
DefDlgProcA
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
LoadIconA

gdi32

CreatePen
CreateSolidBrush
GetTextExtentPointA
CreateDIBitmap
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
DeleteObject
LineTo
MoveToEx
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
SetBkColor
SetTextColor
GetClipBox
CreateDiscardableBitmap
CreateBitmapIndirect
GetDeviceCaps
CreateFontIndirectA
CreateRectRgnIndirect
SetRectRgn
CombineRgn
RectInRegion
CreateBitmap
CreateCompatibleBitmap
SetDIBits
GetDIBits
SetBrushOrgEx
BitBlt
StretchBlt
GetTextExtentPoint32A
GetObjectA
PatBlt
CreateCompatibleDC

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

GetUserNameA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

comctl32

ord17
ord8

ole32

CoInitialize
StringFromGUID2

Sections

.text
Size: 600KB - Virtual size: 599KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c452f8260a9556aae5943b8e802ca0f6

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

ole32

Sections

.text Size: 600KB - Virtual size: 599KB

.rdata Size: 92KB - Virtual size: 90KB

.data Size: 44KB - Virtual size: 261KB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 600KB - Virtual size: 599KB

.rdata
Size: 92KB - Virtual size: 90KB

.data
Size: 44KB - Virtual size: 261KB

.rsrc
Size: 8KB - Virtual size: 4KB