MSCEditor[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

MSCEditor.exe
Size

11.8MB
MD5

ef313884b6236a34882068529b71b773
SHA1

d01fe21065f4708aff5fbe96dac82965926b590d
SHA256

91672d1f612bf62d14621fa9c0c21530ac1dad2059050ade82f7c06253a6d90e
SHA512

7d3dd9bf62dadbfe71d0c99a1e2f88e699ff618f543149492b837ea3003a0e2de16f60bfd7e6c1fe4a76cd51a0e2336918b6a9b6d07903626723dd6757d01f5d
SSDEEP

196608:M9N4oUNAtGnxsUngVClikGBd+jaBBxIMCgeDMZNJb2LKwyb9mgAAvs7xaXyqfDOC:WzptGC1CMHBwjaIkeDMB6Lu07UX/6lmJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MSCEditor.exe

Files

MSCEditor.exe
.exe windows:6 windows x64 arch:x64

760ec52b4881dfc2b22c00b3d305f09b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

FindClose
GetFileAttributesW
SetFileAttributesW
FormatMessageW
FileTimeToSystemTime
QueryPerformanceFrequency
MoveFileExW
GetConsoleWindow
GetTempFileNameW
CopyFileExW
QueryPerformanceCounter
AllocConsole
SetConsoleTitleW
MoveFileW
GetFileTime
SetEndOfFile
WriteConsoleW
HeapSize
ReadConsoleW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
SetFilePointerEx
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetACP
WriteFile
ExitProcess
HeapReAlloc
GetModuleHandleExW
RemoveDirectoryW
GetFileType
SetStdHandle
RaiseException
RtlPcToFileHeader
RtlUnwindEx
GetLocalTime
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
ReleaseSemaphore
VirtualFree
VirtualProtect
VirtualAlloc
GetVersionExW
LoadLibraryExW
GetModuleHandleA
GetModuleFileNameW
FreeLibraryAndExitThread
FreeLibrary
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SetThreadPriority
CreateThread
SwitchToThread
SignalObjectAndWait
CreateTimerQueue
InitializeSListHead
GetCurrentProcessId
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStdHandle
FindNextFileW
CreateDirectoryW
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
CloseHandle
FreeResource
CreateFileW
GetFileSizeEx
SizeofResource
ExitThread
ReadFile
GetProcessHeap
LocalFree
HeapAlloc
FindResourceW
LoadResource
DeleteFileW
LockResource
GetLastError
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
ResetEvent
SetEvent
GetCPInfo
GetLocaleInfoW
LCMapStringW
LocalAlloc
HeapFree
CompareStringW
DecodePointer
EncodePointer
GetProcAddress
GetModuleHandleW
LoadLibraryW
FindFirstFileW
GetTickCount
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
CreateEventW
InitializeCriticalSectionAndSpinCount
SetLastError
MultiByteToWideChar
WideCharToMultiByte
GetStringTypeW
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
GetCurrentThreadId
DuplicateHandle
WaitForSingleObjectEx
Sleep
GetCurrentProcess
GetCurrentThread

user32

ShowScrollBar
GetWindowTextW
EnableWindow
EndPaint
BeginPaint
ChildWindowFromPoint
InvalidateRect
UpdateWindow
GetParent
CreateDialogIndirectParamW
SetScrollPos
CheckDlgButton
DrawIconEx
GetDlgItem
GetClientRect
TrackPopupMenuEx
MapDialogRect
SetMenuItemInfoW
DeferWindowPos
DefWindowProcW
GetWindow
EnumChildWindows
ScreenToClient
GetClassNameA
BeginDeferWindowPos
RegisterClassW
RegisterClassA
GetClassNameW
EndDeferWindowPos
IsWindowUnicode
OpenClipboard
CloseClipboard
EmptyClipboard
MoveWindow
ClipCursor
SetClipboardData
GetIconInfo
GetCursor
GetMenuItemID
GetMenu
GetSubMenu
IsWindow
CheckMenuItem
GetSysColorBrush
EnableMenuItem
DialogBoxParamW
SetRectEmpty
GetWindowTextLengthW
SetScrollInfo
CreateDialogParamW
LoadImageW
CallWindowProcW
PostMessageW
GetWindowRect
DestroyWindow
GetDC
SetWindowPos
MessageBoxW
SetWindowLongPtrW
CreateWindowExW
SendMessageW
EndDialog
GetSystemMetrics
SetWindowTextW
MessageBeep
CreatePopupMenu
GetScrollInfo
GetWindowLongPtrW
ShowWindow
OffsetRect
RedrawWindow
CopyRect
GetDlgCtrlID
MapWindowPoints
GetSysColor
GetDialogBaseUnits
IsDlgButtonChecked
DestroyMenu
SetFocus
LoadIconW
ScrollWindowEx
InsertMenuW

gdi32

SelectObject
CreateCompatibleDC
GetPixel
DeleteDC
GetObjectW
SetBkMode
SetWindowOrgEx
GetWindowOrgEx
GetTextMetricsW
SetTextColor
SetBkColor
DeleteObject
CreateSolidBrush

advapi32

RegCloseKey
RegOpenKeyExW
InitializeSecurityDescriptor
SetEntriesInAclW
SetSecurityDescriptorDacl
RegQueryValueExW
AllocateAndInitializeSid

shell32

ShellExecuteW
SHCreateItemFromParsingName
SHGetKnownFolderPath

ole32

CoTaskMemFree
CoUninitialize
CoInitializeEx
CoCreateInstance

comctl32

InitCommonControlsEx

urlmon

URLDownloadToFileW

d2d1

ord2
ord1

dwrite

DWriteCreateFactory

bcrypt

BCryptCreateHash
BCryptHashData
BCryptDestroyHash
BCryptCloseAlgorithmProvider
BCryptOpenAlgorithmProvider
BCryptGetProperty
BCryptFinishHash

shlwapi

SHCreateStreamOnFileEx
ord12

Sections

.text
Size: 820KB - Virtual size: 819KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 251KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10.7MB - Virtual size: 10.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

760ec52b4881dfc2b22c00b3d305f09b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

comctl32

urlmon

d2d1

dwrite

bcrypt

shlwapi

Sections

.text Size: 820KB - Virtual size: 819KB

.rdata Size: 251KB - Virtual size: 250KB

.data Size: 22KB - Virtual size: 32KB

.pdata Size: 34KB - Virtual size: 33KB

.rsrc Size: 10.7MB - Virtual size: 10.7MB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 820KB - Virtual size: 819KB

.rdata
Size: 251KB - Virtual size: 250KB

.data
Size: 22KB - Virtual size: 32KB

.pdata
Size: 34KB - Virtual size: 33KB

.rsrc
Size: 10.7MB - Virtual size: 10.7MB

.reloc
Size: 6KB - Virtual size: 5KB