54d06c58e1cab7bba869f58482333260N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

54d06c58e1cab7bba869f58482333260N.exe
Size

776KB
MD5

54d06c58e1cab7bba869f58482333260
SHA1

502d138d9edee8ec531406d00e646277c5556268
SHA256

282f739c9e2928e521c8e776ac0a679f4a05a41fc05eb9b7d5ecf9373ec98142
SHA512

bd2eca6afb79c656020932619eb1334179dccd21cfda013111a576c2a04d1149a7c5576160737ecac977266d2fa5be2ab006b663c88a58ef68d4487e8214b1ea
SSDEEP

12288:J+aM3W5XiJHCQ4BgpmeZv+WFMrjdWIRjrFHa3hWv:ssBgceZvTFM3d7aW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
54d06c58e1cab7bba869f58482333260N.exe

Files

54d06c58e1cab7bba869f58482333260N.exe
.exe windows:4 windows x86 arch:x86

eeceab827f65e73adad8749d8a794158

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ttpchkreg

ord9
ord8
ord1

epwingsrch

ord17
ord16
ord4
ord12
ord7
ord2
ord1
ord3

kernel32

GetFileType
GetTimeZoneInformation
GetSystemTime
RaiseException
ExitThread
SetStdHandle
CreateThread
FatalAppExitA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
GetLocalTime
HeapSize
HeapReAlloc
LCMapStringA
LCMapStringW
IsBadWritePtr
GetCommandLineA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
Sleep
IsBadReadPtr
GetFileSize
SystemTimeToFileTime
IsValidCodePage
GetLocaleInfoA
GetStartupInfoA
GetUserDefaultLCID
SetConsoleCtrlHandler
CompareStringW
GetLocaleInfoW
GetACP
SetCurrentDirectoryA
SetEnvironmentVariableA
TerminateProcess
ExitProcess
GetDriveTypeA
HeapAlloc
HeapFree
RtlUnwind
SetErrorMode
CopyFileA
GetCurrentDirectoryA
SizeofResource
SetFileAttributesA
GetStringTypeW
GetStringTypeA
LocalFileTimeToFileTime
MultiByteToWideChar
lstrlenA
InterlockedDecrement
InterlockedIncrement
lstrcpynA
GetModuleHandleA
GetModuleFileNameA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
CompareStringA
ReleaseMutex
CloseHandle
CreateMutexA
WideCharToMultiByte
LoadLibraryA
GetProcAddress
FreeLibrary
CreateProcessA
GetLastError
WaitForSingleObject
GetExitCodeProcess
GetProfileStringA
GetVolumeInformationA
GetShortPathNameA
GetStringTypeExA
DeleteFileA
FindFirstFileA
FindClose
UnlockFile
MoveFileA
SetEndOfFile
SetFilePointer
LockFile
FlushFileBuffers
CreateFileA
WriteFile
ReadFile
GetOEMCP
GetCurrentProcess
DuplicateHandle
GetProcessVersion
GetCPInfo
GlobalFlags
GetDiskFreeSpaceA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameA
GetFileTime
SetFileTime
GetTickCount
GetTempFileNameA
GetFileAttributesA
TlsSetValue
TlsGetValue
LocalReAlloc
LeaveCriticalSection
EnterCriticalSection
GlobalReAlloc
DeleteCriticalSection
TlsFree
GlobalHandle
LocalAlloc
TlsAlloc
InitializeCriticalSection
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
SetLastError
GetCurrentThread
lstrcmpA
SuspendThread
GetThreadLocale
CreateEventA
SetEvent
SetThreadPriority
ResumeThread
LockResource
FindResourceA
LoadResource
GetCurrentThreadId
GetVersion
lstrcatA
GlobalAddAtomA
GlobalGetAtomNameA
lstrcmpiA
lstrcpyA
GlobalFindAtomA
GlobalDeleteAtom
FormatMessageA
MulDiv
lstrlenW
IsBadCodePtr
LocalFree
IsValidLocale
VirtualFree
VirtualAlloc
EnumSystemLocalesA

user32

GetDialogBaseUnits
InsertMenuA
DeleteMenu
DestroyIcon
CharUpperA
PostThreadMessageA
GetDCEx
LockWindowUpdate
GetTabbedTextExtentA
AppendMenuA
RemoveMenu
SetParent
GetSystemMenu
InvertRect
UnpackDDElParam
ReuseDDElParam
SetMenu
TranslateAcceleratorA
LoadAcceleratorsA
WindowFromPoint
GetWindowThreadProcessId
WaitMessage
ReleaseCapture
SetCapture
LoadCursorA
GetDesktopWindow
SetRect
CopyAcceleratorTableA
RegisterClipboardFormatA
LoadStringA
MapDialogRect
SetWindowContextHelpId
MessageBeep
GetNextDlgGroupItem
SetCursor
ShowOwnedPopups
PostQuitMessage
EndDialog
CreateDialogIndirectParamA
GetSysColorBrush
GetClassNameA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
DestroyMenu
DrawTextA
SetRectEmpty
CharNextA
GetMessageA
TranslateMessage
GetActiveWindow
ValidateRect
GetCursorPos
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
SetMenuItemBitmaps
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
ScreenToClient
EqualRect
GrayStringA
EndDeferWindowPos
CopyRect
wvsprintfA
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
GetCapture
WinHelpA
wsprintfA
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindowLongA
SetWindowLongA
IntersectRect
GetWindowPlacement
GetSystemMetrics
OffsetRect
IsRectEmpty
FillRect
SystemParametersInfoA
GetWindow
SetFocus
GetParent
IsIconic
GetFocus
IsChild
InvalidateRect
IsWindow
AdjustWindowRectEx
OemToCharA
CharToOemA
UnionRect
DestroyCursor
SetCursorPos
RedrawWindow
InflateRect
PtInRect
GetDlgCtrlID
SetWindowPos
GetWindowRect
KillTimer
GetMenu
GetMenuStringA
GetMenuState
CheckMenuItem
GetKeyState
PostMessageA
SetTimer
OpenClipboard
GetClipboardData
CloseClipboard
GetClassInfoA
RegisterClassA
LoadIconA
UpdateWindow
LoadMenuA
GetSubMenu
EnableWindow
SendMessageA
GetClientRect
RegisterWindowMessageA
FindWindowA
MessageBoxA
WaitForInputIdle
DeferWindowPos
BringWindowToTop
BeginDeferWindowPos
SetActiveWindow
DispatchMessageA
IsZoomed
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode

gdi32

GetObjectA
SetBkColor
CreateDIBitmap
GetTextExtentPointA
SetTextColor
CreateBitmap
DPtoLP
GetTextColor
GetBkColor
GetClipBox
GetDCOrgEx
SetTextCharacterExtra
ArcTo
SetArcDirection
GetCurrentPositionEx
PolylineTo
SetColorAdjustment
PolyDraw
DeleteObject
GetClipRgn
PolyBezierTo
SelectClipPath
ExtSelectClipRgn
CreateRectRgn
GetObjectType
EnumMetaFile
PlayMetaFileRecord
GetViewportExtEx
GetWindowExtEx
PlayMetaFile
ExtCreatePen
CreateSolidBrush
CreatePen
CreatePatternBrush
SetTextAlign
CreateHatchBrush
CreateDIBPatternBrushPt
PtVisible
LineTo
TextOutA
ExtTextOutA
RectVisible
StretchDIBits
CreateCompatibleDC
Escape
GetCharWidthA
CreateFontA
CreateCompatibleBitmap
CreateRectRgnIndirect
Rectangle
PatBlt
AbortDoc
EndDoc
GetViewportOrgEx
StartPage
SetAbortProc
EndPage
CreateFontIndirectA
GetMapMode
CreateDCA
CombineRgn
GetNearestColor
SetRectRgn
GetPolyFillMode
GetTextAlign
GetStretchBltMode
GetROP2
GetTextFaceA
GetBkMode
CopyMetaFileA
BitBlt
GetWindowOrgEx
MoveToEx
OffsetClipRgn
ExcludeClipRect
SelectClipRgn
IntersectClipRect
SetWindowExtEx
OffsetWindowOrgEx
ScaleWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
SetWindowOrgEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
RestoreDC
SaveDC
StartDocA
DeleteDC
GetTextMetricsA
SelectObject
GetTextExtentPoint32A
GetStockObject
SetTextJustification
SetMapperFlags
LPtoDP
GetDeviceCaps

comdlg32

CommDlgExtendedError
GetOpenFileNameA
PrintDlgA
PageSetupDlgA
GetFileTitleA
GetSaveFileNameA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegEnumKeyA
RegDeleteValueA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
RegCloseKey
SetFileSecurityA
RegSetValueExA
RegDeleteKeyA
RegOpenKeyA
RegQueryValueA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA

shell32

ExtractIconA
SHGetFileInfoA
DragQueryFileA
DragFinish
DragAcceptFiles

comctl32

ImageList_Write
ImageList_Read
ImageList_Merge
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
ord13
ord17
ord14

oledlg

ord8

ole32

OleUninitialize
CoFreeUnusedLibraries
ReadFmtUserTypeStg
OleDuplicateData
CoDisconnectObject
CoGetClassObject
ReadClassStg
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoRegisterClassObject
CoRevokeClassObject
ReleaseStgMedium
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
CoTreatAsClass
StringFromCLSID
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
OleRun
CoRegisterMessageFilter
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
CLSIDFromString
OleInitialize
CLSIDFromProgID

olepro32

ord253

oleaut32

VariantCopy
VariantInit
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SysStringByteLen
VariantChangeType
SysAllocStringByteLen
SysAllocStringLen
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
VariantTimeToSystemTime
LoadTypeLi
SafeArrayDestroyDescriptor
SysReAllocStringLen
SafeArrayCreateVector
SysStringLen
SysFreeString
VariantClear
SysAllocString

Exports

Exports

?interfaceMap@CCustomControlSite@@1UAFX_INTERFACEMAP@@B

Sections

.text
Size: 556KB - Virtual size: 554KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eeceab827f65e73adad8749d8a794158

Headers

File Characteristics

Imports

ttpchkreg

epwingsrch

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Exports

Exports

Sections

.text Size: 556KB - Virtual size: 554KB

.rdata Size: 96KB - Virtual size: 95KB

.data Size: 32KB - Virtual size: 48KB

.idata Size: 20KB - Virtual size: 16KB

.rsrc Size: 28KB - Virtual size: 25KB

.reloc Size: 40KB - Virtual size: 39KB

.text
Size: 556KB - Virtual size: 554KB

.rdata
Size: 96KB - Virtual size: 95KB

.data
Size: 32KB - Virtual size: 48KB

.idata
Size: 20KB - Virtual size: 16KB

.rsrc
Size: 28KB - Virtual size: 25KB

.reloc
Size: 40KB - Virtual size: 39KB