20e32ba5b37b706729698e2f45815300N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

20e32ba5b37b706729698e2f45815300N.exe
Size

3.2MB
MD5

20e32ba5b37b706729698e2f45815300
SHA1

cdb47ae1420e6fdfb29bd2aabfbb174bec2ae11c
SHA256

cbaac85f79a33d28dfdcca96808299c509dba8048615e81fb330efc39c9cfc0d
SHA512

d3abc48638181784b24584228111807aeaf02c22b1682edb34f3dc0ac6ab9dabcfa2f5ca6a60630c8584308ebe0c127973c0d6202d87e6ff455679e50096fff4
SSDEEP

98304:UdHVvmKfTmF5Te0gxr/ILXP7jOrUFLOAkGkzdnEVomFHKnP:YTLmP7jOrUFLOyomFHKnP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20e32ba5b37b706729698e2f45815300N.exe

Files

20e32ba5b37b706729698e2f45815300N.exe
.exe windows:5 windows x86 arch:x86

486cccdfb82c440c82b00911f19a8ccd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\NezipT\Nezip.pdb

Imports

kernel32

GetStringTypeW
GetTimeZoneInformation
LCMapStringW
GetACP
ExitProcess
GetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
VirtualQuery
GetCommandLineA
GetFileType
SetStdHandle
GetModuleHandleExW
ExitThread
RtlUnwind
GetConsoleCP
VirtualAlloc
CreateThread
SwitchToThread
FreeLibraryAndExitThread
GetThreadTimes
OutputDebugStringW
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
WaitForSingleObjectEx
ResetEvent
IsProcessorFeaturePresent
TerminateProcess
UnhandledExceptionFilter
SearchPathW
GetProfileIntW
Sleep
GetTempPathW
GetTempFileNameW
GetWindowsDirectoryW
VerifyVersionInfoW
VerSetConditionMask
GetCurrentDirectoryW
FindResourceExW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GlobalFlags
SetErrorMode
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
GlobalGetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GetVersionExW
GetCurrentThread
ResumeThread
SetThreadPriority
CreateEventW
SetEvent
FileTimeToSystemTime
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
FreeResource
GetSystemDirectoryW
EncodePointer
WaitForSingleObject
GetThreadLocale
LoadLibraryA
lstrcmpiW
LoadLibraryExW
GetModuleHandleW
GetModuleHandleA
DuplicateHandle
OutputDebugStringA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameW
GetFileSize
FlushFileBuffers
DeleteFileW
MulDiv
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
RaiseException
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
DecodePointer
CopyFileW
GetCommandLineW
FormatMessageW
LocalFree
lstrcpyW
GlobalFree
SetPriorityClass
LockResource
CreateFileW
SetUnhandledExceptionFilter
GetCurrentProcessId
GetCurrentProcess
VirtualProtect
GetTickCount
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
WideCharToMultiByte
MultiByteToWideChar
GetVolumeInformationW
FindNextFileW
FindFirstFileW
FindResourceW
CreateProcessW
GetModuleFileNameW
LoadLibraryW
CreateMutexW
GetSystemInfo
CloseHandle
FindClose
SizeofResource
LoadResource
GetLastError
GetProcAddress
FreeLibrary

user32

KillTimer
WaitMessage
InvalidateRect
DrawIconEx
IsRectEmpty
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawStateW
DrawFrameControl
DrawEdge
SetWindowContextHelpId
SetCursor
ShowOwnedPopups
PostQuitMessage
TranslateMessage
GetMessageW
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
IntersectRect
InflateRect
FillRect
ClientToScreen
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
ReleaseDC
GetDC
MapVirtualKeyW
GetKeyNameTextW
GetDesktopWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
OffsetRect
SetRectEmpty
SendDlgItemMessageA
MapDialogRect
GetAsyncKeyState
GetActiveWindow
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
SetDlgItemTextW
LoadCursorW
MoveWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
PtInRect
EqualRect
CopyRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
EmptyClipboard
NotifyWinEvent
SetCursorPos
MessageBoxW
UnionRect
EnableWindow
LoadIconW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
BeginPaint
SetActiveWindow
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
RealChildWindowFromPoint
CopyImage
TrackMouseEvent
SetClipboardData
DestroyIcon
LoadImageW
DeleteMenu
SetCapture
ReleaseCapture
WindowFromPoint
CharNextW
CopyAcceleratorTableW
InvalidateRgn
SetRect
GetDlgItem
IsWindowVisible
GetNextDlgGroupItem
SetLayeredWindowAttributes
EnumDisplayMonitors
SetParent
MonitorFromPoint
OpenClipboard
CloseClipboard
SetTimer
UpdateWindow
MessageBeep
GetClientRect
GetSysColor
RegisterWindowMessageW
PostMessageW
AttachThreadInput
GetDoubleClickTime
ShowWindow
LoadMenuW
GetSubMenu
TrackPopupMenu
SetMenuDefaultItem
GetForegroundWindow
SetForegroundWindow
GetCursorPos
GetWindowThreadProcessId
IsIconic
IsZoomed
GetKeyState
GetSystemMetrics
GetSystemMenu
AppendMenuW
DrawIcon
GetWindowLongW
SetWindowLongW
UnregisterClassW
GetMenuStringW
GetMenuState
TranslateMDISysAccel
GetMenuItemID
GetMenuItemCount
InsertMenuW
RemoveMenu
CharUpperW
UnhookWindowsHookEx
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
GetParent
LoadBitmapW
DispatchMessageW
PeekMessageW
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
IsWindow
IsMenu
IsChild
DestroyWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
BringWindowToTop
CreatePopupMenu
LockWindowUpdate
EnableScrollBar
GetIconInfo
CopyIcon
GetMenuDefaultItem
ModifyMenuW
DestroyAcceleratorTable
SetClassLongW
UpdateLayeredWindow
GetUpdateRect
HideCaret
InvertRect
FrameRect
LoadAcceleratorsW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
RegisterClipboardFormatW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableW
SubtractRect
CharUpperBuffW
IsClipboardFormatAvailable
PostThreadMessageW
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
GetWindowRgn
DestroyCursor
CreateMenu
GetComboBoxInfo
SendMessageW

gdi32

ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectW
GetMapMode
Escape
DPtoLP
GetTextExtentPoint32W
CreateEllipticRgn
Ellipse
GetBkColor
GetTextColor
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsW
EnumFontFamiliesExW
GetRgnBox
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceW
DeleteObject
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
BitBlt
PatBlt
CreateRectRgnIndirect
GetObjectW
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
CreateDCW
CopyMetaFileW
DeleteDC
SetRectRgn

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

SystemFunction036
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

ShellExecuteW
SHBrowseForFolderW
Shell_NotifyIconW
SHGetFileInfoW
SHGetMalloc
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragFinish
DragQueryFileW
SHAppBarMessage
SHGetPathFromIDListW

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionW
PathFindFileNameW
StrFormatKBSizeW
PathRemoveFileSpecW
PathStripToRootW
PathIsUNCW

uxtheme

IsAppThemed
GetThemeSysColor
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetThemePartSize
DrawThemeText
DrawThemeParentBackground
GetWindowTheme
IsThemeBackgroundPartiallyTransparent

ole32

IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoRegisterMessageFilter
CoRevokeClassObject
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitializeEx
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromString

oleaut32

LoadTypeLi
SysAllocStringLen
VariantChangeType
VariantClear
VariantInit
SysFreeString
SysAllocString
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
SysStringLen

oledlg

OleUIBusyW

gdiplus

GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown

ws2_32

WSASetLastError
WSACleanup
WSAStartup

winmm

PlaySoundW

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 359KB - Virtual size: 358KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

486cccdfb82c440c82b00911f19a8ccd

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

winmm

oleacc

imm32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 359KB - Virtual size: 358KB

.data Size: 23KB - Virtual size: 49KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 359KB - Virtual size: 358KB

.data
Size: 23KB - Virtual size: 49KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1.4MB - Virtual size: 1.4MB