68722ec09e6df33aff95cf6cff88e5c0538b391b063a75f5105f3acb56d8f54e

Sharing

Copy URL

Twitter E-mail

General

Target

68722ec09e6df33aff95cf6cff88e5c0538b391b063a75f5105f3acb56d8f54e
Size

914KB
MD5

291da58f71e7a73a507a9a542ff3c2b8
SHA1

43ce119a71fb68808ed7e316e8ba5275c46af7ed
SHA256

68722ec09e6df33aff95cf6cff88e5c0538b391b063a75f5105f3acb56d8f54e
SHA512

054b2a8553f246db2464ae29a13089cd260f97b21ef14318f572b867ddc3f16c4b9ec4b861fb5ac0bcfd422e1df57967f226ee79924b98078028d7f2899a7046
SSDEEP

24576:v/Z4/KwIYQpzRmlh8t0D+7y8G2G9yL0cMoThTR9PyuLzpQoJ:p4Am+brLC2hTR9quLB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68722ec09e6df33aff95cf6cff88e5c0538b391b063a75f5105f3acb56d8f54e

Files

68722ec09e6df33aff95cf6cff88e5c0538b391b063a75f5105f3acb56d8f54e
.exe windows:4 windows x86 arch:x86

09a38fd288880c15ae6b1022084d3532

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GlobalAlloc
GlobalFree
GetPrivateProfileStringW
WritePrivateProfileSectionW
WritePrivateProfileStringW
HeapAlloc
HeapFree
GetLastError
MulDiv
CreateMutexW
GlobalAddAtomW
GetModuleFileNameW
LoadLibraryW
GetProcessHeap
MultiByteToWideChar
GlobalGetAtomNameW
DeleteAtom
WritePrivateProfileStructW
GetDriveTypeW
DeleteFileW
FindFirstFileW
FindClose
GetFileAttributesW
CreateFileW
WriteFile
CloseHandle
GetVersionExW
LoadLibraryA
GetProcAddress
FreeLibrary
GetCommandLineW
LocalFree
HeapReAlloc
GetPrivateProfileSectionW
GetPrivateProfileStructW
GetPrivateProfileIntW
FindNextFileW
ReadFile
SetFilePointer
GetTempPathW
GetTickCount
GetLocalTime
GetDateFormatW
GetTimeFormatW
WideCharToMultiByte
GetTempFileNameW
CopyFileW
CreateThread
GetPrivateProfileSectionNamesW
GetModuleHandleW
GetModuleHandleA
GetStartupInfoA
VirtualAlloc
VirtualQuery
HeapCreate
HeapDestroy
HeapSize
HeapValidate
RtlUnwind
ExitProcess
GetSystemTimeAsFileTime
GetFileType
GetStdHandle
GetCurrentProcess
DuplicateHandle
SetHandleCount
GetCommandLineA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetConsoleCtrlHandler
SetLastError

user32

wsprintfA
LoadStringA
DialogBoxParamA
GetDlgItem
GetWindowLongA
EndDialog
SendMessageW
SendMessageA
SetWindowTextA
GetClientRect
GetWindowRect
MapWindowPoints
SetWindowPos
BeginPaint
DrawIconEx
DrawTextA
EndPaint
GetDesktopWindow
MoveWindow
DestroyWindow
GetWindowTextW
SendDlgItemMessageW
IsDlgButtonChecked
MessageBoxW
GetWindowTextLengthW
EnableWindow
CheckDlgButton
SetWindowTextW
SetFocus
GetWindowPlacement
SetWindowPlacement
ShowWindow
GetWindowLongW
SetRect
AdjustWindowRectEx
IsWindowEnabled
IsWindowVisible
GetDlgItemInt
SetDlgItemInt
LoadCursorA
RegisterClassExA
RegisterClassExW
CreateWindowExA
CreateWindowExW
SetWindowLongA
GetDC
ReleaseDC
SetWindowLongW
DefWindowProcA
IsWindowUnicode
GetDlgCtrlID
GetParent
DrawTextW
EnumWindows
PostMessageW
LoadIconA
SetPropW
UpdateWindow
CreateAcceleratorTableW
RedrawWindow
IsWindow
IsDialogMessageW
TranslateAcceleratorW
TranslateMDISysAccel
TranslateMessage
DispatchMessageW
GetMessageW
DestroyAcceleratorTable
MessageBoxA
SetForegroundWindow
GetSubMenu
GetCursorPos
PtInRect
DefFrameProcW
GetSysColor
CheckMenuRadioItem
GetMenuState
GetPropW
LoadBitmapW
SetTimer
DialogBoxParamW
DrawMenuBar
InvalidateRect
CreateDialogParamW
KillTimer
PostQuitMessage
DestroyIcon
CallWindowProcW
HideCaret
ShowCaret
GetMenuItemCount
DeleteMenu
InsertMenuItemW
AppendMenuW
EnableMenuItem
GetMenuStringW
DestroyMenu
LoadMenuW
SetMenu
GetMenuItemInfoW
SetMenuItemInfoW
SystemParametersInfoW
RemovePropW
GetSystemMetrics
SetCursor
LockWindowUpdate
RemoveMenu
CheckMenuItem
GetSysColorBrush
FillRect
CopyRect
DrawFrameControl
GetMenuItemID
GetClassNameW
FrameRect
TrackPopupMenu
DefMDIChildProcW
GetDlgItemTextW
SetDlgItemTextW
OffsetRect
wsprintfW
BringWindowToTop
LoadBitmapA
LoadIconW
PostMessageA
GetKeyState
GetPropA
SetWindowRgn
RemovePropA
SetPropA
DefWindowProcW
DrawFocusRect
CallWindowProcA
DrawTextExW
DrawTextExA

gdi32

DeleteObject
SetBkMode
SelectObject
SaveDC
CreateFontIndirectA
GetTextExtentPoint32A
RestoreDC
CreateFontIndirectW
GetTextExtentPoint32W
GetDeviceCaps
SetTextColor
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
CreateSolidBrush
GetStockObject
MoveToEx
CreatePen
LineTo
StartDocW
StartPage
SetTextAlign
TextOutW
EndPage
EndDoc
BitBlt
GetObjectA
CreateRectRgnIndirect
SelectClipRgn
DPtoLP
CreateBitmap
GetMapMode
SetMapMode
SetBkColor
CreateRoundRectRgn
RoundRect
CreateFontW
CreateFontA

comctl32

InitCommonControlsEx
ImageList_Destroy
ImageList_Create
ImageList_AddMasked
ImageList_Draw
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Replace
ImageList_GetIcon

comdlg32

PageSetupDlgW
GetOpenFileNameW
GetSaveFileNameW
PrintDlgW
ChooseFontW

advapi32

RegOpenKeyExA
RegEnumValueA
RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegEnumKeyExA

msimg32

GradientFill

shlwapi

PathRemoveFileSpecW
PathUnquoteSpacesW
ColorAdjustLuma
PathStripPathW
PathFindExtensionW
PathFileExistsW

shell32

ShellExecuteA
Shell_NotifyIconW
DragQueryFileW
ShellExecuteW
CommandLineToArgvW
SHGetFileInfoW

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

ole32

CoInitialize
CoUninitialize

wininet

InternetOpenA
InternetGetLastResponseInfoA
InternetConnectA
InternetCloseHandle
HttpOpenRequestA
HttpSendRequestA
InternetReadFile

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 680KB - Virtual size: 684KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

09a38fd288880c15ae6b1022084d3532

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

comdlg32

advapi32

msimg32

shlwapi

shell32

version

ole32

wininet

iphlpapi

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 23KB - Virtual size: 22KB

.data Size: 62KB - Virtual size: 81KB

.rsrc Size: 680KB - Virtual size: 684KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 23KB - Virtual size: 22KB

.data
Size: 62KB - Virtual size: 81KB

.rsrc
Size: 680KB - Virtual size: 684KB