0e98bfba511314f800e5d76b5c424aab9ed485d0d382b61e75985a4f40de3126

Sharing

Copy URL Twitter E-mail

General

Target

0e98bfba511314f800e5d76b5c424aab9ed485d0d382b61e75985a4f40de3126
Size

1.8MB
MD5

462970c9c0567fdc84e9fa6ca0997b95
SHA1

eb98075cd54e426517e40444d765214bc2aaf2e5
SHA256

0e98bfba511314f800e5d76b5c424aab9ed485d0d382b61e75985a4f40de3126
SHA512

29f6e261a8b592be54c33a53449d1b184bc3f54209dc8f2567f02c3af7750863b2f0d0c504134298dabcfb0ee7a0ff7d430c0a65cdf36e066cf7bdb7a33ddccd
SSDEEP

49152:UPY/pS+1YMCr9cQqZj0s8S9lXbZ+57QXmll+AtE7Lh7lFScnwH+uzlB:U6pjYMCr9Qj0sL9lXbZ+57QPAtEBpnwD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e98bfba511314f800e5d76b5c424aab9ed485d0d382b61e75985a4f40de3126

Files

0e98bfba511314f800e5d76b5c424aab9ed485d0d382b61e75985a4f40de3126
.exe windows:5 windows x86 arch:x86

b3c95136fde1d2dd4c6acc91175f4842

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

hid

HidP_GetSpecificButtonCaps
HidP_GetCaps
HidD_GetPreparsedData
HidP_GetSpecificValueCaps
HidD_FreePreparsedData
HidD_GetAttributes
HidD_GetHidGuid

setupapi

SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList

psapi

GetModuleFileNameExW
EnumProcessModules

kernel32

LCMapStringW
GetTimeZoneInformation
WriteConsoleW
GetProcessHeap
SetEnvironmentVariableA
IsValidCodePage
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetOEMCP
GetACP
GetCPInfo
IsProcessorFeaturePresent
TerminateProcess
IsDebuggerPresent
UnhandledExceptionFilter
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
SetUnhandledExceptionFilter
GetFileType
SetStdHandle
HeapSize
HeapQueryInformation
ExitThread
HeapReAlloc
GetSystemTimeAsFileTime
ExitProcess
RaiseException
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapFree
HeapAlloc
EncodePointer
DecodePointer
RtlUnwind
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
VirtualProtect
SearchPathW
GetProfileIntW
InitializeCriticalSectionAndSpinCount
GetTempPathW
GetTempFileNameW
GetNumberFormatW
GetWindowsDirectoryW
GetCurrentDirectoryW
lstrcpyW
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
GetFileAttributesExW
SetErrorMode
FileTimeToSystemTime
GlobalGetAtomNameW
GlobalFlags
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
TlsGetValue
LocalAlloc
ResumeThread
SetThreadPriority
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
InterlockedDecrement
ReleaseActCtx
CreateActCtxW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiW
GetThreadLocale
lstrlenA
lstrcmpA
GetCurrentProcessId
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
ActivateActCtx
DeactivateActCtx
lstrcmpW
FreeResource
GlobalFree
CopyFileW
GlobalSize
LocalFree
MulDiv
SetLastError
SetEvent
CreateEventW
OpenProcess
Sleep
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
lstrcatW
CreateMutexW
ReleaseMutex
CloseHandle
FormatMessageW
GetModuleHandleW
FreeLibrary
GetModuleFileNameW
LoadLibraryW
GetProcAddress
GetFileAttributesW
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
WideCharToMultiByte
GetLastError
GetVersionExW
DeleteFileW
CreateFileW
GetTickCount
lstrlenW
EnterCriticalSection
LeaveCriticalSection
InterlockedExchange
MultiByteToWideChar
CreateThread
WaitForSingleObject
FindResourceW
LoadResource
LockResource
SizeofResource
GetOverlappedResult
CancelIo

user32

MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
SetWindowsHookExW
GetClassLongW
GetFocus
GetWindowTextLengthW
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
PeekMessageW
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
MessageBoxW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
GetMenu
CreateDialogIndirectParamW
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
RemoveMenu
GetNextDlgGroupItem
DrawIconEx
TabbedTextOutW
SubtractRect
GetForegroundWindow
GetWindowThreadProcessId
SetPropW
RemovePropW
UnregisterDeviceNotification
LoadIconW
SetActiveWindow
SetTimer
AppendMenuW
CreatePopupMenu
DrawIcon
GetPropW
IsIconic
ShowWindow
SetForegroundWindow
GetLastActivePopup
LoadImageW
SetCursorPos
LoadMenuW
GetSubMenu
DrawFocusRect
DrawFrameControl
MessageBeep
CreateWindowExW
SetFocus
CallWindowProcW
GetWindowTextW
DestroyWindow
TrackMouseEvent
DrawEdge
InflateRect
CopyRect
GetSysColor
MapVirtualKeyW
ToAscii
GetDesktopWindow
GetDoubleClickTime
CharUpperBuffW
CopyIcon
GetWindow
GetClassNameW
DrawTextW
DrawTextExW
GrayStringW
GetWindowDC
BeginPaint
GetWindowLongW
SetWindowLongW
ScreenToClient
SetWindowPos
UnhookWindowsHookEx
GetWindowRect
PtInRect
GetSystemMetrics
RegisterWindowMessageW
CallNextHookEx
GetCursorPos
IsWindow
IsWindowVisible
ReleaseDC
GetDC
EndPaint
CharUpperW
GetKeyNameTextW
GetMenuItemInfoW
DestroyMenu
SystemParametersInfoW
PostQuitMessage
ValidateRect
TranslateMessage
GetMessageW
SetCursor
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
IntersectRect
GetSysColorBrush
LoadCursorW
SetWindowRgn
FillRect
PostMessageW
ReleaseCapture
SendMessageW
WindowFromPoint
SetCapture
GetCapture
GetActiveWindow
ClientToScreen
GetClientRect
RealChildWindowFromPoint
SetRectEmpty
EnumDisplayMonitors
SetLayeredWindowAttributes
GetWindowRgn
OffsetRect
DestroyCursor
SetRect
UpdateWindow
InvalidateRect
GetParent
EnableWindow
GetUpdateRect
FrameRect
IsClipboardFormatAvailable
SetMenuDefaultItem
CreateMenu
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
UnregisterClassW
IsMenu
MonitorFromPoint
UpdateLayeredWindow
UnionRect
MapVirtualKeyExW
IsCharLowerW
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
RegisterClipboardFormatW
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
LockWindowUpdate
BringWindowToTop
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawStateW
GetSystemMenu
SetClassLongW
DestroyAcceleratorTable
SetParent
IsZoomed
CopyImage
GetIconInfo
NotifyWinEvent
EnableScrollBar
HideCaret
InvertRect
GetAsyncKeyState
GetMenuDefaultItem
RedrawWindow
InvalidateRgn
IsRectEmpty
CopyAcceleratorTableW
CharNextW
DestroyIcon
WaitMessage
KillTimer
RegisterDeviceNotificationW
DeleteMenu
PostThreadMessageW

gdi32

CopyMetaFileW
CreateDCW
SetTextColor
SetBkColor
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
GetStockObject
SelectPalette
GetObjectType
GetDeviceCaps
CreateHatchBrush
CreateRectRgnIndirect
PatBlt
CreateFontIndirectW
SetRectRgn
GetMapMode
DPtoLP
GetTextMetricsW
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetBkColor
GetTextColor
GetRgnBox
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
CreateRoundRectRgn
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
SetPixel
OffsetRgn
EnumFontFamiliesExW
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
SetPixelV
GetTextFaceW
StretchBlt
Rectangle
CreatePen
GetPixel
CombineRgn
CreateRectRgn
BitBlt
CreateCompatibleBitmap
CreateDIBSection
DeleteObject
GetObjectW
SetDIBColorTable
SelectObject
DeleteDC
CreateCompatibleDC
CreatePatternBrush
CreateSolidBrush
GetTextExtentPoint32W
CreateFontW

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegCloseKey
RegEnumKeyExW
RegEnumValueW

shell32

SHGetFolderPathW
ord165
ShellExecuteW
SHAppBarMessage
SHBrowseForFolderW
DragQueryFileW
DragFinish
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetDesktopFolder
SHGetFileInfoW
Shell_NotifyIconW

comctl32

ImageList_GetIconSize

shlwapi

PathIsDirectoryW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathFindExtensionW
PathFileExistsW
PathFindFileNameW

ole32

OleCreateMenuDescriptor
CreateStreamOnHGlobal
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoLockObjectExternal
RevokeDragDrop
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
OleGetClipboard
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
CoInitializeEx
CoCreateInstance
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CoInitialize
CoUninitialize
RegisterDragDrop

oleaut32

VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VarBstrFromDate
OleCreateFontIndirect
SysAllocString
SysFreeString
VariantInit
VariantClear
VariantChangeType
SysAllocStringLen

oledlg

OleUIBusyW

gdiplus

GdipCreateBitmapFromStream
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipReleaseDC
GdipGetDC
GdipSetImageAttributesColorKeys
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipCreateHBITMAPFromBitmap
GdipDrawImageRectRect
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneBitmapAreaI
GdipDrawImageRectI
GdipCreateFromHDC
GdipDeleteGraphics
GdipCloneImage
GdipCreateBitmapFromFile
GdipDisposeImage
GdipAlloc
GdipFree

mssysset

?GetMouseDoubleClickTime@@YAIXZ
?SetMouseDoubleClickTime@@YAII@Z
?SetMouseWheelScrollines@@YAI_NI@Z
?GetMouseSpeed@@YAHXZ
?GetMouseEnhPointPrec@@YAHXZ
?GetMouseWheelScrollines@@YAXPA_NPAI@Z
?SetMouseWheelScrollChars@@YAII@Z
?GetMouseWheelScrollChars@@YAIXZ
?SetMouseSpeed@@YAHH@Z
?SetMouseEnhPointPrec@@YAH_N@Z

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 340KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b3c95136fde1d2dd4c6acc91175f4842

Headers

DLL Characteristics

File Characteristics

Imports

hid

setupapi

psapi

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

mssysset

oleacc

imm32

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 340KB - Virtual size: 340KB

.data Size: 30KB - Virtual size: 127KB

.rsrc Size: 94KB - Virtual size: 93KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 340KB - Virtual size: 340KB

.data
Size: 30KB - Virtual size: 127KB

.rsrc
Size: 94KB - Virtual size: 93KB