cc621a36b7af398766226d987b0865d9e8d02527f0d5a4538f01a5e10c06345f

Sharing

Copy URL Twitter E-mail

General

Target

cc621a36b7af398766226d987b0865d9e8d02527f0d5a4538f01a5e10c06345f
Size

11.0MB
MD5

299221143851f2d88e168f3f31353d32
SHA1

f3ad7ac45f0a83b3e97143ca39ab27ea17ba211d
SHA256

cc621a36b7af398766226d987b0865d9e8d02527f0d5a4538f01a5e10c06345f
SHA512

6cc4b394fb69e78fa4e4335879909d1ec970b269e1602ebb846e11df7320482ac496142f4347f6afb428b9b9482e92989aa9844da2fb603901a46e56df9a911a
SSDEEP

196608:siWkORCAGpnDjsck5mfDrnyoi0MIW9ZFvvrgpIzOyseWdILzCMDh6y5cIW9RFLOD:sBPTVsD+0MIW/xz3zOysTdILuMtn5cI4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cc621a36b7af398766226d987b0865d9e8d02527f0d5a4538f01a5e10c06345f

Files

cc621a36b7af398766226d987b0865d9e8d02527f0d5a4538f01a5e10c06345f
.exe windows:5 windows x86 arch:x86

eb84c163af420537e8153f1e6e8f8322

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeInformationW
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateThread
SetThreadPriority
VirtualQuery
WideCharToMultiByte
CopyFileW
GetCurrentDirectoryW
GetFileAttributesExW
GetSystemDirectoryW
GetCurrentThreadId
GetFileAttributesW
GetModuleFileNameW
GetCurrentProcess
GetCommandLineW
SetLastError
CreateDirectoryW
FreeLibrary
LoadLibraryW
GetUserDefaultLCID
FindResourceW
LoadResource
LockResource
FreeResource
InitializeCriticalSection
SizeofResource
GlobalReAlloc
MulDiv
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
GlobalSize
MultiByteToWideChar
GetProcAddress
GetModuleHandleW
SetWaitableTimer
CreateWaitableTimerW
IsDebuggerPresent
SetEvent
ResetEvent
CreateEventW
GetVersionExW
GetTickCount
Sleep
TerminateProcess
OpenProcess
GetCurrentProcessId
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
RemoveDirectoryW
FindClose
FindNextFileW
SetFileAttributesW
FindFirstFileW
DeleteFileW
WaitForSingleObject
ReadFile
PeekNamedPipe
CloseHandle
CreateProcessW
CreatePipe
lstrcpynW
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
WriteConsoleW
GetStringTypeW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
LCMapStringW
ReadConsoleW
GetConsoleMode
GetConsoleCP
SetFilePointerEx
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
VirtualAlloc
GetSystemInfo
HeapQueryInformation
FreeLibraryAndExitThread
ExitThread
GetModuleHandleExW
ExitProcess
GetCommandLineA
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
RtlUnwind
OutputDebugStringW
GetStartupInfoW
InitializeSListHead
QueryPerformanceCounter
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
GetTempFileNameW
GetWindowsDirectoryW
SetErrorMode
GetFileTime
GetFileSizeEx
SystemTimeToTzSpecificLocalTime
GetProfileIntW
GetTempPathW
SearchPathW
FindResourceExW
lstrcmpiW
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetFullPathNameW
FlushFileBuffers
GetFileSize
CreateFileW
VerifyVersionInfoW
VerSetConditionMask
VirtualProtect
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
LocalAlloc
GlobalHandle
TlsFree
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
HeapFree
TlsSetValue
TlsGetValue
OutputDebugStringA
EncodePointer
GetModuleHandleA
LoadLibraryExW
LoadLibraryA
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomW
GlobalFindAtomW
CompareStringW
LocalFree
FormatMessageW
GetCurrentThread
lstrcmpA
CompareStringA
ResumeThread
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetThreadLocale
lstrcpyW
GlobalGetAtomNameW
TlsAlloc

user32

InvalidateRect
SendMessageW
GetFocus
IsWindow
SetFocus
GetKeyState
RegisterWindowMessageW
DispatchMessageW
GetMessagePos
GetMessageTime
CallWindowProcW
GetClassInfoExW
IsMenu
IsChild
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetDlgItem
GetMenu
GetMenuItemID
GetMenuItemCount
GetForegroundWindow
BeginPaint
EndPaint
ValidateRect
ScrollWindow
ShowScrollBar
SetPropW
GetPropW
RemovePropW
GetWindowTextW
GetWindowTextLengthW
ScreenToClient
MapWindowPoints
MessageBoxW
GetClassLongW
GetTopWindow
GetLastActivePopup
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
SetScrollInfo
GetScrollInfo
GetMenuStringW
GetMenuState
RemoveMenu
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
ShowWindow
CheckDlgButton
SetWindowTextW
IsDialogMessageW
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadMenuW
GetKeyNameTextW
MapVirtualKeyW
SystemParametersInfoW
RegisterClipboardFormatW
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
GetMessageW
TranslateMessage
ShowOwnedPopups
CharNextW
CreateDialogIndirectParamW
EndDialog
DrawFocusRect
NotifyWinEvent
SendDlgItemMessageA
SetRectEmpty
GetMenuItemInfoW
InflateRect
MonitorFromPoint
GetSysColorBrush
RealChildWindowFromPoint
GetAsyncKeyState
BringWindowToTop
LoadAcceleratorsW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
SetLayeredWindowAttributes
EnumDisplayMonitors
DrawStateW
TrackMouseEvent
CharUpperW
ModifyMenuW
PostThreadMessageW
WaitMessage
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
CopyAcceleratorTableW
EnumChildWindows
LockWindowUpdate
SetClassLongW
InvalidateRgn
GetNextDlgGroupItem
DrawEdge
DrawFrameControl
DrawIconEx
UnionRect
GetIconInfo
SetCursorPos
CharUpperBuffW
UpdateLayeredWindow
EnableScrollBar
GetMenuDefaultItem
SetMenuDefaultItem
CopyIcon
FrameRect
IsClipboardFormatAvailable
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsCharLowerW
MapVirtualKeyExW
SubtractRect
GetUpdateRect
HideCaret
InvertRect
GetDoubleClickTime
DestroyCursor
GetComboBoxInfo
GetWindowRgn
UnregisterClassW
EnableWindow
EqualRect
SetCursor
DestroyIcon
SetWindowLongW
IsZoomed
SetRect
GetWindowLongW
GetSystemMenu
GetWindow
DestroyWindow
IsWindowVisible
SetWindowPos
SetWindowRgn
FillRect
MessageBeep
WindowFromPoint
GetScrollPos
DrawIcon
GetActiveWindow
OffsetRect
GetCapture
SetTimer
RedrawWindow
GetScrollRange
CopyRect
GetDlgCtrlID
ClientToScreen
GetSysColor
IsWindowEnabled
SetMenu
WinHelpW
LoadBitmapW
IsRectEmpty
IntersectRect
GetClassNameW
SetParent
SetCapture
SetScrollRange
KillTimer
SetScrollPos
PtInRect
UpdateWindow
ReleaseCapture
IsIconic
GetNextDlgTabItem
PostMessageW
DeleteMenu
CreatePopupMenu
TrackPopupMenu
GetSubMenu
DestroyAcceleratorTable
CreateAcceleratorTableW
DestroyMenu
TranslateAcceleratorW
InsertMenuW
AppendMenuW
CreateMenu
GetCursorPos
wsprintfW
GetWindowThreadProcessId
MonitorFromWindow
SetActiveWindow
WaitForInputIdle
OpenClipboard
GetMonitorInfoW
CloseClipboard
EmptyClipboard
MoveWindow
SetClipboardData
GetDesktopWindow
GetParent
SetForegroundWindow
CopyImage
DefWindowProcW
CreateWindowExW
LoadStringW
GetClassInfoW
RegisterClassW
LoadIconW
LoadCursorW
LoadImageW
GetWindowRect
GetDC
GetSystemMetrics
GetWindowDC
GetClientRect
ReleaseDC
MsgWaitForMultipleObjects
PeekMessageW
AdjustWindowRectEx

gdi32

GetWindowExtEx
SetPixel
CreateHatchBrush
GetWindowOrgEx
CreatePatternBrush
GetPixel
CreateBitmap
CombineRgn
GetViewportOrgEx
RestoreDC
CreateRoundRectRgn
GetTextMetricsW
CreateRectRgn
CreatePen
Rectangle
Ellipse
CreateSolidBrush
CreateEllipticRgn
RoundRect
FillRgn
GetTextExtentPoint32W
BitBlt
SetBkColor
SelectObject
CreateDIBSection
SetDIBColorTable
CreateCompatibleDC
StretchBlt
RealizePalette
GetDIBits
GetDeviceCaps
GetSystemPaletteEntries
SelectPalette
CreatePalette
GetObjectW
SetStretchBltMode
GetStockObject
CreateFontIndirectW
DeleteObject
DeleteDC
CreateDCW
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetViewportExtEx
IntersectClipRect
SetTextColor
RectVisible
CopyMetaFileW
CreateCompatibleBitmap
PtVisible
PatBlt
SetPixelV
GetTextFaceW
PtInRegion
GetBoundsRect
FrameRgn
SetPaletteEntries
ExtFloodFill
LPtoDP
GetPaletteEntries
GetNearestPaletteIndex
EnumFontFamiliesExW
Polyline
Polygon
CreatePolygonRgn
OffsetRgn
GetRgnBox
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
DPtoLP
SetRectRgn
GetMapMode
GetTextColor
GetBkColor
CreateRectRgnIndirect
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutW
TextOutW
MoveToEx
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
ExtSelectClipRgn
SelectClipRgn
SaveDC
LineTo

advapi32

RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
RegEnumKeyExW
RegEnumValueW
OpenSCManagerW
OpenServiceW
QueryServiceStatus
CloseServiceHandle
DeleteService
CreateServiceW
ChangeServiceConfig2W
RegCloseKey
RegQueryValueW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
ControlService
StartServiceW

shell32

Shell_NotifyIconW
DragQueryFileW
DragFinish
SHAppBarMessage
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
SHGetFileInfoW
ShellExecuteW

ole32

CoGetClassObject
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
DoDragDrop
OleGetClipboard
OleLockRunning
CoDisconnectObject
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoCreateGuid
RegisterDragDrop
RevokeDragDrop
CoUninitialize
CoInitialize
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
CoInitializeEx
CoCreateInstance
CLSIDFromProgID
OleRun
CLSIDFromString
CoLockObjectExternal

oleaut32

SafeArrayAccessData
VarCmp
SafeArrayCreate
VarBstrFromDate
SafeArrayDestroy
VariantChangeType
VariantClear
SysStringLen
SysAllocStringLen
SafeArrayGetElemsize
VariantCopy
SysAllocString
RegisterTypeLi
OleCreateFontIndirect
SysFreeString
VariantCopyInd
SafeArrayGetLBound
LoadTypeLi
SafeArrayGetUBound
VariantInit
SafeArrayGetDim
SafeArrayUnaccessData
LHashValOfNameSys
SystemTimeToVariantTime
VariantTimeToSystemTime

comctl32

ImageList_Create
ImageList_AddMasked
InitCommonControlsEx
ImageList_Destroy

shlwapi

PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW
PathIsDirectoryW
StrFormatKBSizeW

msimg32

AlphaBlend
TransparentBlt

uxtheme

CloseThemeData
DrawThemeBackground
GetThemePartSize
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetCurrentThemeName
GetThemeColor
DrawThemeParentBackground
DrawThemeText
GetWindowTheme
IsAppThemed
OpenThemeData

oledlg

OleUIBusyW

gdiplus

GdiplusStartup
GdipBitmapUnlockBits
GdipGetImagePaletteSize
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipCloneImage
GdipGetImageHeight
GdipCreateBitmapFromStream
GdipAlloc
GdipDisposeImage
GdipGetImagePixelFormat
GdipFree
GdipBitmapLockBits
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipGetImagePalette
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipDrawImageI
GdiplusShutdown
GdipSetInterpolationMode
GdipDrawImageRectI

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 364KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8.8MB - Virtual size: 8.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb84c163af420537e8153f1e6e8f8322

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

msimg32

uxtheme

oledlg

gdiplus

oleacc

imm32

winmm

winspool.drv

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 364KB - Virtual size: 364KB

.data Size: 25KB - Virtual size: 43KB

.rsrc Size: 8.8MB - Virtual size: 8.8MB

.reloc Size: 154KB - Virtual size: 154KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 364KB - Virtual size: 364KB

.data
Size: 25KB - Virtual size: 43KB

.rsrc
Size: 8.8MB - Virtual size: 8.8MB

.reloc
Size: 154KB - Virtual size: 154KB