a879e811476879d9e6793059438d8bc1db30c762c6c404ddc9ef4a421c473e3a

Sharing

Copy URL Twitter E-mail

General

Target

a879e811476879d9e6793059438d8bc1db30c762c6c404ddc9ef4a421c473e3a
Size

937KB
MD5

69ec40d4123680f46082bedd3fc6981b
SHA1

307ce3fb0e0cf988ad157e4881c2c396863f0429
SHA256

a879e811476879d9e6793059438d8bc1db30c762c6c404ddc9ef4a421c473e3a
SHA512

4e524773aec2ff3839a07f990ba4c0923925d452999f0f22a374c2435402a4a6a48ee4e9b7abd7b66b2a161c52b5218d85ef4d44fdc7d82c418ab5ca3f591a2b
SSDEEP

12288:op5ReMuin/VJDdwy2+OJyAGkAD/tEdV5oj78+UuY4:obktinexJyAGkc3jUuY4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a879e811476879d9e6793059438d8bc1db30c762c6c404ddc9ef4a421c473e3a

Files

a879e811476879d9e6793059438d8bc1db30c762c6c404ddc9ef4a421c473e3a
.exe windows:6 windows x86 arch:x86

887ba0016b3be391b14c4d201e15278b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Dev\Projects\Proxifier\Program\Repo\ProxifierWin4\ProxyChecker\Release\ProxyChecker.pdb

Imports

kernel32

GetTickCount
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
LockResource
WriteConsoleW
GetStringTypeW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
FindFirstFileExW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
LCMapStringW
GetTimeFormatW
GetDateFormatW
ExitProcess
GetStdHandle
VirtualAlloc
GetSystemInfo
GetFileType
SetStdHandle
HeapQueryInformation
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
GetCommandLineW
GetCommandLineA
RtlUnwind
LoadLibraryExA
ExpandEnvironmentStringsA
OutputDebugStringW
LoadResource
FindResourceW
SetLastError
GetComputerNameA
GetVersionExW
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WideCharToMultiByte
GlobalAlloc
GlobalFree
LoadLibraryW
GetModuleFileNameW
MapViewOfFile
VirtualQuery
GetCurrentThreadId
SetErrorMode
GetLastError
HeapFree
InitializeCriticalSectionEx
HeapSize
HeapReAlloc
RaiseException
HeapAlloc
DecodePointer
DeleteCriticalSection
GetProcessHeap
ResumeThread
GetACP
OutputDebugStringA
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
GetModuleHandleW
FreeResource
GlobalLock
GlobalUnlock
MulDiv
EncodePointer
GetSystemDirectoryW
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomW
GlobalFindAtomW
CompareStringW
LocalFree
FormatMessageW
GetCurrentThread
lstrcmpA
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetCurrentProcessId
CloseHandle
SetEvent
WaitForSingleObject
CreateEventW
SetThreadPriority
SuspendThread
EnterCriticalSection
LeaveCriticalSection
LocalAlloc
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GlobalFlags
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalReAlloc
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetThreadLocale
DeleteFileW
CreateFileW
FindClose
FindFirstFileW
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
FileTimeToLocalFileTime
GetFileAttributesW
GetFileAttributesExW
GetFileSizeEx
GetFileTime
FindNextFileW
SizeofResource

user32

MoveWindow
ShowWindow
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoW
MonitorFromWindow
WinHelpW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
EqualRect
CopyRect
MapWindowPoints
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
GetScrollPos
ValidateRect
SetForegroundWindow
UpdateWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
GetCursorPos
SetWindowPos
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
EnableWindow
LoadIconW
GetSystemMenu
AppendMenuW
SendMessageW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
CheckRadioButton
IsDlgButtonChecked
BeginPaint
ReleaseDC
SetWindowTextW
IsDialogMessageW
PostQuitMessage
SetWindowContextHelpId
MapDialogRect
GetWindowThreadProcessId
GetMessageW
GetForegroundWindow
GetClientRect
GetDC
SetTimer
IsIconic
GetSystemMetrics
DrawIcon
GetWindowRect
PtInRect
LoadMenuW
GetSubMenu
RedrawWindow
GetSysColorBrush
SetCursor
LoadCursorW
UnregisterClassW
SendDlgItemMessageA
SetRectEmpty
OffsetRect
GetParent
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongW
GetDesktopWindow
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetWindowDC
DestroyMenu
TranslateMessage
RealChildWindowFromPoint
IntersectRect
SetCapture
ReleaseCapture
PostThreadMessageW
RegisterClipboardFormatW
CharUpperW
MessageBeep
GetNextDlgGroupItem
IsRectEmpty
SetRect
InvalidateRgn
CopyAcceleratorTableW
CharNextW
InvalidateRect
KillTimer

gdi32

GetRgnBox
GetTextColor
GetBkColor
GetMapMode
CreateRectRgnIndirect
ScaleWindowExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutW
TextOutW
GetObjectW
SetTextColor
SetMapMode
SetBkMode
SetBkColor
SelectObject
ExtSelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
GetClipBox
Escape
DeleteObject
DeleteDC
CreateBitmap
CreateFontW
GetDeviceCaps
GetStockObject

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegOpenKeyExA
RegQueryValueExA
RegOpenKeyExW
RegQueryValueExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey

shell32

ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

UrlUnescapeW
PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW

ole32

CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoInitialize
CLSIDFromProgID
CoFreeUnusedLibraries
OleInitialize
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoCreateGuid
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
CLSIDFromString
CoCreateInstance
OleUninitialize

oleaut32

SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocString
VariantCopy
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
OleCreateFontIndirect

oledlg

OleUIBusyW

ws2_32

inet_addr
htons
socket
gethostbyname
closesocket
WSAStartup
send
WSAGetLastError
recv
inet_ntoa
connect

oleacc

LresultFromObject
CreateStdAccessibleObject

wininet

HttpQueryInfoW
InternetCrackUrlW
InternetCanonicalizeUrlW
InternetOpenW
InternetCloseHandle
InternetOpenUrlW
InternetReadFile
InternetSetFilePointer
InternetWriteFile
InternetQueryDataAvailable
InternetQueryOptionW
InternetGetLastResponseInfoW
InternetSetStatusCallbackW

Sections

.text
Size: 368KB - Virtual size: 367KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 439KB - Virtual size: 438KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

887ba0016b3be391b14c4d201e15278b

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

ws2_32

oleacc

wininet

Sections

.text Size: 368KB - Virtual size: 367KB

.rdata Size: 109KB - Virtual size: 108KB

.data Size: 10KB - Virtual size: 21KB

.rsrc Size: 439KB - Virtual size: 438KB

.text
Size: 368KB - Virtual size: 367KB

.rdata
Size: 109KB - Virtual size: 108KB

.data
Size: 10KB - Virtual size: 21KB

.rsrc
Size: 439KB - Virtual size: 438KB