10c5adf6ec5b6fe4c03cc5031bf3186ae7b70902bd09cf32ad88b4b2b432582b

Sharing

Copy URL Twitter E-mail

General

Target

10c5adf6ec5b6fe4c03cc5031bf3186ae7b70902bd09cf32ad88b4b2b432582b
Size

11.4MB
MD5

89b4c03e24cd26cdaa1ef20cc03b1bfe
SHA1

631bf46a3bcab4d24f1ac0fff515298f2ee5d6ec
SHA256

10c5adf6ec5b6fe4c03cc5031bf3186ae7b70902bd09cf32ad88b4b2b432582b
SHA512

4c9cae568ef18871fa1867419efb825b058e357b7015278c4c7d916d1d30a43d0bd2893ac6cab968151789877dc3e9965dfeddb1e7243ebc010fa167b4626505
SSDEEP

12288:QAphR7yCHvGD9uU5PAR/I2xIcDx0bYuIQh:p7lHvGD9uU5PK0bFh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10c5adf6ec5b6fe4c03cc5031bf3186ae7b70902bd09cf32ad88b4b2b432582b

Files

10c5adf6ec5b6fe4c03cc5031bf3186ae7b70902bd09cf32ad88b4b2b432582b
.exe windows:4 windows x86 arch:x86

6dac5e80667d143d07aa681e1c408e1a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
Sleep
IsBadReadPtr
IsBadCodePtr
GetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetHandleCount
GetProfileStringA
InterlockedExchange
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetTimeZoneInformation
GetFileType
SetStdHandle
HeapSize
HeapReAlloc
GetACP
TerminateProcess
ExitProcess
GetCommandLineA
GetStartupInfoA
RaiseException
HeapAlloc
HeapFree
RtlUnwind
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
FindFirstFileA
FindClose
GetCurrentDirectoryA
SizeofResource
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalHandle
TlsAlloc
GlobalFlags
GetProcessVersion
LocalLock
LocalUnlock
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
GetLastError
GetModuleFileNameA
GetCurrentThread
lstrcmpA
WaitForSingleObject
CloseHandle
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
MulDiv
SetLastError
LoadLibraryA
FreeLibrary
GetCurrentThreadId
lstrcmpiA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GetProcAddress
lstrcatA
GlobalLock
lstrcpynA
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
GetVersion
lstrlenA
VirtualAlloc
GlobalAlloc
GlobalReAlloc
FindResourceA
LoadResource
LockResource
GlobalFree
lstrcpyA

user32

PostThreadMessageA
PtInRect
GetDC
ReleaseDC
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
DispatchMessageA
ScreenToClient
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
RegisterClassA
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
DestroyWindow
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
OffsetRect
IntersectRect
GetWindowPlacement
GetSystemMetrics
GetLastActivePopup
IsWindowVisible
IsIconic
GetFocus
InvalidateRect
GetKeyState
GetDlgCtrlID
UnpackDDElParam
ReuseDDElParam
DestroyIcon
WinHelpA
LoadIconA
GetClassInfoA
DestroyMenu
SetFocus
ShowWindow
GetDesktopWindow
GetWindow
IsWindowEnabled
SetCursor
PeekMessageA
PostMessageA
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
GetActiveWindow
wsprintfA
GetParent
AdjustWindowRectEx
RedrawWindow
SetWindowPos
GetClientRect
GetWindowLongA
SetWindowLongA
IsWindow
DefMDIChildProcA
TranslateAcceleratorA
TranslateMDISysAccel
DefFrameProcA
CreateWindowExA
SystemParametersInfoA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetSysColor
LoadBitmapA
CharUpperA
InsertMenuA
GetMessageA
BringWindowToTop
LoadMenuA
EnableWindow
UpdateWindow
SetMenu
DrawMenuBar
MessageBoxA
SetTimer
GetSystemMenu
KillTimer
GetCursorPos
SendMessageA
GetMenu
MenuItemFromPoint
GetMenuItemRect
RegisterClipboardFormatA
FindWindowA
GetNextDlgGroupItem
CopyAcceleratorTableA
GetDlgItem
CharNextA
GetWindowRect
EqualRect
IsRectEmpty
SetRect
GetMenuItemInfoA
GetTabbedTextExtentA
CopyRect
DrawStateA
InflateRect
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuStringA
ModifyMenuA
GetMenuState
LockWindowUpdate
GetDCEx
InvertRect
SetCapture
LoadStringA
GetClassNameA
GetSysColorBrush
FillRect
LoadCursorA
DestroyCursor
MessageBeep
IsClipboardFormatAvailable
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
EndDialog
CreateDialogIndirectParamA
IsZoomed
TranslateMessage
ValidateRect
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
WindowFromPoint
DeleteMenu
AppendMenuA
SetActiveWindow
SetParent

gdi32

SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
CreateRectRgn
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePen
OffsetViewportOrgEx
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
CreateRectRgnIndirect
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
Rectangle
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
GetTextColor
GetBkColor
LPtoDP
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
GetStockObject
RestoreDC
SaveDC
StartDocA
GetTextMetricsA
CreateFontA
GetCharWidthA
SelectObject
StretchDIBits
DeleteDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetTextExtentPoint32A
CreateFontIndirectA
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CreateBitmap
CreateDIBitmap
GetTextExtentPointA
DeleteObject

comdlg32

CommDlgExtendedError
GetFileTitleA
ReplaceTextA
FindTextA
GetSaveFileNameA
GetOpenFileNameA
PrintDlgA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
SetFileSecurityA
GetFileSecurityA
RegCreateKeyA
RegSetValueA
RegQueryValueA

shell32

SHGetFileInfoA
DragQueryFileA
DragFinish
ExtractIconA

comctl32

ImageList_AddMasked
ord8
ImageList_SetBkColor
ImageList_Draw
ImageList_GetIcon
ord17
ImageList_Destroy
ImageList_Create

oledlg

ord8

ole32

CoTaskMemAlloc
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoTaskMemFree
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID

olepro32

ord253

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringLen

wininet

InternetOpenUrlA
InternetGetLastResponseInfoA
HttpQueryInfoA
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetSetOptionExA
InternetOpenA
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetCloseHandle

Sections

.text
Size: 272KB - Virtual size: 269KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11.0MB - Virtual size: 11.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6dac5e80667d143d07aa681e1c408e1a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wininet

Sections

.text Size: 272KB - Virtual size: 269KB

.rdata Size: 72KB - Virtual size: 71KB

.data Size: 11.0MB - Virtual size: 11.0MB

.rsrc Size: 36KB - Virtual size: 35KB

.text
Size: 272KB - Virtual size: 269KB

.rdata
Size: 72KB - Virtual size: 71KB

.data
Size: 11.0MB - Virtual size: 11.0MB

.rsrc
Size: 36KB - Virtual size: 35KB