f5518004a2a4c55122d7c67ad62bfa8e946c98e99d49ccba16ae330120a801c9

Sharing

Copy URL Twitter E-mail

General

Target

f5518004a2a4c55122d7c67ad62bfa8e946c98e99d49ccba16ae330120a801c9
Size

410KB
MD5

d4637cd380394cc7f90eac9996f52696
SHA1

01529414d08705ca687a16c52fcfa9bbdb6783a1
SHA256

f5518004a2a4c55122d7c67ad62bfa8e946c98e99d49ccba16ae330120a801c9
SHA512

57dd24a3e72bfca1206cc692f195b1e19f6011afc4716ee670a8c6d610168a492476d745c9387728e738d208d1863445d340a929cfb3fcb00738e5b4648f802c
SSDEEP

12288:E3Jq8p1MPC/D6K1u5BvPiHGSRzJCf8e9YZouB6XOS:E3JqWMC/DV1u5hmGSRzJCf8yP66XO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5518004a2a4c55122d7c67ad62bfa8e946c98e99d49ccba16ae330120a801c9

Files

f5518004a2a4c55122d7c67ad62bfa8e946c98e99d49ccba16ae330120a801c9
.exe windows:4 windows x86 arch:x86

1a5c1160d193fe0abd0f9bf48eebb77f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
WaitForMultipleObjects
LocalFree
GetCurrentThreadId
SetFileTime
IsBadCodePtr
WaitNamedPipeW
HeapDestroy
GlobalSize
GetTickCount
IsBadWritePtr
GetCurrentThread
OpenFileMappingA
EnumSystemCodePagesW
IsDBCSLeadByteEx
HeapFree
HeapAlloc
GetFileTime
FindClose
GetCommandLineW
GetCommandLineA
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
GlobalLock
GlobalUnlock
GetProcessHeap
GetCurrentProcessId
GetStartupInfoA
GetACP
GetOEMCP
GetUserDefaultLangID
GetLocaleInfoA
GetLastError
WaitForSingleObject
MulDiv
SetEvent
CloseHandle
Sleep
CompareFileTime
ExitProcess
GetVersionExA
EnumResourceNamesA
CreateEventW
CreateEventA
GetTimeFormatW
GetTimeFormatA
GetDateFormatW
GetDateFormatA
CreateProcessW
CreateProcessA
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
SearchPathW
SearchPathA
GetFullPathNameW
GetFullPathNameA
GetModuleHandleW
LoadLibraryExW
LoadLibraryExA
LoadLibraryW
LoadLibraryA
SetCurrentDirectoryW
SetCurrentDirectoryA
FindFirstFileW
FindFirstFileA
SetFileAttributesW
SetFileAttributesA
GetFileAttributesW
CreateFileW
CreateFileA
GetModuleFileNameW
GetModuleFileNameA
GetCurrentDirectoryW
GetCurrentDirectoryA
FindNextFileW
FindNextFileA
FreeLibrary
WideCharToMultiByte
GetWindowsDirectoryW
GetModuleHandleA
GetProcAddress
FindResourceA
LoadResource
LockResource
SizeofResource
GetFileAttributesA
WriteFile
ReadFile
SetFilePointer
GetFileSize
lstrlenA
lstrlenW
MultiByteToWideChar
GlobalFree
HeapCreate
GlobalAlloc

user32

ModifyMenuW
TranslateMessage
ShowWindow
EnableMenuItem
SetFocus
DefMDIChildProcW
DefMDIChildProcA
DestroyMenu
SetMenuDefaultItem
CreatePopupMenu
ReleaseDC
GetDC
GetKeyState
DefFrameProcW
DefFrameProcA
PostQuitMessage
DestroyAcceleratorTable
DestroyCursor
SetTimer
ReleaseCapture
GetCapture
CheckMenuItem
GetQueueStatus
GetKeyboardState
SetWindowPlacement
GetWindowPlacement
CheckMenuRadioItem
DrawMenuBar
DeleteMenu
GetSubMenu
LoadCursorA
GetKeyboardLayout
IsWindowVisible
SetScrollInfo
GetScrollInfo
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
CopyImage
CallNextHookEx
MapVirtualKeyW
MapVirtualKeyA
UnhookWindowsHookEx
EnableWindow
IsChild
DeferWindowPos
SetCapture
ActivateKeyboardLayout
SetForegroundWindow
GetForegroundWindow
SystemParametersInfoA
LoadMenuA
LoadMenuW
LoadAcceleratorsA
LoadAcceleratorsW
LoadIconA
LoadIconW
EnumThreadWindows
WaitForInputIdle
BringWindowToTop
GetUpdateRect
CharPrevExA
FillRect
GetClipboardData
EndDialog
MessageBeep
SetCursorPos
DrawTextW
DrawTextA
SystemParametersInfoW
GetKeyboardLayoutList
SetActiveWindow
EnumWindows
GetActiveWindow
EndDeferWindowPos
BeginDeferWindowPos
FrameRect
SetDlgItemInt
GetDlgItemInt
MoveWindow
SetWindowsHookExA
RegisterClipboardFormatA
ModifyMenuA
ShowCaret
IsClipboardFormatAvailable
SetCaretPos
GetSysColorBrush
CreateCaret
DestroyCaret
UnregisterClassA
UnregisterClassW
ScrollWindow
ShowScrollBar
GetDoubleClickTime
GetMessageTime
FindWindowExW
FindWindowExA
DialogBoxParamW
DialogBoxParamA
CreateDialogParamW
CreateDialogParamA
CreateMDIWindowW
CreateMDIWindowA
CreateWindowExW
CreateWindowExA
RegisterClassW
RegisterClassA
TrackPopupMenu
GetSystemMenu
KillTimer
SetCursor
GetSystemMetrics
DrawFrameControl
GetDlgItem
SetWindowPos
GetWindow
RedrawWindow
IntersectRect
GetUpdateRgn
InvalidateRgn
GetMenuStringW
GetMenuStringA
LoadStringW
LoadStringA
SendMessageW
IsDialogMessageW
IsDialogMessageA
TranslateAcceleratorW
TranslateAcceleratorA
DispatchMessageW
DispatchMessageA
PeekMessageW
PeekMessageA
GetMessageW
GetMessageA
GetDlgItemTextW
GetDlgItemTextA
GetWindowTextW
GetWindowTextA
GetWindowTextLengthW
GetWindowTextLengthA
DefWindowProcW
DefWindowProcA
SetWindowLongW
SetWindowLongA
GetWindowLongW
GetWindowLongA
SetClassLongW
SetClassLongA
GetClassLongW
GetClassLongA
GetClassNameW
GetClassNameA
GetKeyNameTextW
GetKeyNameTextA
InvalidateRect
UpdateWindow
BeginPaint
DrawEdge
GetFocus
DrawFocusRect
IsWindowEnabled
GetSysColor
DrawStateA
EndPaint
IsWindowUnicode
InsertMenuW
SetWindowTextA
AppendMenuW
AppendMenuA
LoadImageW
SetDlgItemTextW
SetDlgItemTextA
HideCaret
SetWindowTextW
CallWindowProcA
CallWindowProcW
GetDlgCtrlID
GetParent
GetCursorPos
PtInRect
PostMessageA
SendMessageA
DestroyWindow
DestroyIcon
GetClientRect
ClientToScreen
GetWindowRect
ScreenToClient
MessageBoxW
LoadImageA
LookupIconIdFromDirectoryEx
CreateIconFromResourceEx
CharUpperA
InsertMenuA

gdi32

GetTextExtentPoint32W
EndDoc
EndPage
StartPage
BitBlt
PlayEnhMetaFile
CreateCompatibleBitmap
CreateCompatibleDC
DeleteEnhMetaFile
CloseEnhMetaFile
CreateEnhMetaFileW
GetTextColor
CreateDIBSection
SetROP2
GetBkMode
ExtTextOutA
TextOutA
TextOutW
SetBkColor
GetObjectA
GetTextMetricsW
GetObjectW
SetTextColor
CreateSolidBrush
SetBkMode
GetTextAlign
SetTextAlign
ExtTextOutW
CreateBitmap
CreatePatternBrush
PatBlt
GetTextMetricsA
GetTextExtentPoint32A
CreateDCW
DeleteDC
CreateDCA
GetDeviceCaps
GetStockObject
StartDocW
StartDocA
CreateRectRgn
SetRectRgn
CombineRgn
CreateFontIndirectW
CreateFontIndirectA
CreatePen
SelectObject
CreateEnhMetaFileA
DeleteObject
LineTo
MoveToEx

advapi32

RegDeleteValueW
RegDeleteValueA
RegEnumValueA
RegOpenKeyExA
RegEnumValueW
RegCreateKeyExA
RegCreateKeyExW
AllocateAndInitializeSid
FreeSid
RegEnumKeyExW
RegDeleteKeyW
RegDeleteKeyA
RegCloseKey
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW

shell32

SHChangeNotify
SHGetMalloc
DragAcceptFiles
ShellExecuteW
ShellExecuteA
DragQueryFileW
DragQueryFileA
DragFinish

comctl32

PropertySheetW
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_Create
PropertySheetA
ord17

comdlg32

GetSaveFileNameA
PageSetupDlgA
PageSetupDlgW
ChooseFontA
ChooseFontW
ChooseColorA
ChooseColorW
PrintDlgW
PrintDlgA
GetOpenFileNameW
GetSaveFileNameW
GetOpenFileNameA

ole32

ReleaseStgMedium
RevokeDragDrop
RegisterDragDrop
OleInitialize
OleUninitialize
DoDragDrop

oleaut32

OleLoadPicturePath

imm32

ImmSetCompositionFontW
ImmGetCompositionStringW
ImmEscapeW
ImmNotifyIME
ImmSetCandidateWindow
ImmGetContext
ImmSetCompositionWindow
ImmReleaseContext
ImmSetCompositionFontA

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 346KB - Virtual size: 345KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a5c1160d193fe0abd0f9bf48eebb77f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

comdlg32

ole32

oleaut32

imm32

version

Sections

.text Size: 346KB - Virtual size: 345KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 1KB - Virtual size: 151KB

.rsrc Size: 41KB - Virtual size: 41KB

.text
Size: 346KB - Virtual size: 345KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 1KB - Virtual size: 151KB

.rsrc
Size: 41KB - Virtual size: 41KB