5dae99a189ed0bbabbb71bd5dbabf76ffe4e5be5317c46fbec270a1c8eac2105

Sharing

Copy URL Twitter E-mail

General

Target

5dae99a189ed0bbabbb71bd5dbabf76ffe4e5be5317c46fbec270a1c8eac2105
Size

412KB
MD5

435efce2d808b426b7dc31c1fda8c0d7
SHA1

4ef5467df2fcf2daffb564765a28afd147d17a96
SHA256

5dae99a189ed0bbabbb71bd5dbabf76ffe4e5be5317c46fbec270a1c8eac2105
SHA512

98c9b8dee6c62c34e32e8e43c0b37ce7d25df5cf57e04600c08d2718d60622a6b35cb3a3cb8a1d52d9d9b5cc6bbe12f0d7056665032f36dbf2881cc0ee8e5164
SSDEEP

6144:k4I85dFNCfbR1hQbvUQ9CvyhNZ/JWleToU49UYJc7LI8G6mcO6rJrRcH:k4I85dFMvaUQ9N/KeUjUY67+H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5dae99a189ed0bbabbb71bd5dbabf76ffe4e5be5317c46fbec270a1c8eac2105

Files

5dae99a189ed0bbabbb71bd5dbabf76ffe4e5be5317c46fbec270a1c8eac2105
.exe windows:4 windows x86 arch:x86

35b12cf4e3766980007c22f262436393

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

kernel32

HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
Sleep
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
CloseHandle
WriteFile
GetVersionExA
CreateFileA
UnmapViewOfFile
VirtualProtect
MapViewOfFile
CreateFileMappingA
ReadFile
GetFileSize
LoadResource
FindResourceA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
GetProcAddress
GetModuleHandleA
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetVersion
FreeLibrary
LoadLibraryA
lstrcpynA
lstrlenA
lstrcmpA
GetCurrentThread
GlobalAlloc
GetEnvironmentVariableA
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
TerminateProcess
RaiseException
HeapFree
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapAlloc
RtlUnwind
GetModuleFileNameA
InterlockedExchange
GetProfileStringA
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetShortPathNameA
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
DuplicateHandle
GetThreadLocale
GetCurrentDirectoryA
FormatMessageA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
SizeofResource
GlobalFlags
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
SetLastError
MulDiv
MultiByteToWideChar
GetLastError
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA

user32

FindWindowA
GetTabbedTextExtentA
RegisterClipboardFormatA
PostThreadMessageA
InsertMenuA
LockWindowUpdate
GetDCEx
InvertRect
SetCapture
WindowFromPoint
LoadStringA
GetSysColorBrush
GetClassNameA
InflateRect
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
SetRect
DestroyCursor
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
ShowOwnedPopups
GetSystemMenu
DeleteMenu
AppendMenuA
IsRectEmpty
SetParent
PtInRect
ReleaseDC
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
LoadMenuA
DestroyMenu
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
CharUpperA
LoadIconA
PostMessageA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
MessageBeep
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
DestroyIcon
GetMenuStringA
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
SendMessageA
ScreenToClient
GetDC
InvalidateRect
PostQuitMessage
KillTimer
SetTimer
FillRect
GetClientRect
LoadBitmapA
UpdateWindow
SetMenu
EnableWindow
GetWindowRect
SetCursor
LoadCursorA

gdi32

GetCharWidthA
CreateFontA
GetDeviceCaps
PatBlt
GetStockObject
Rectangle
DPtoLP
CreatePen
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
StartDocA
SetAbortProc
CreateDCA
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
DeleteObject
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
SetRectRgn
CombineRgn
CreateRectRgnIndirect
CreateFontIndirectA
GetTextColor
GetBkColor
LPtoDP
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
StretchDIBits
DeleteDC
GetTextMetricsA
GetTextExtentPoint32A
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetTextExtentPointA
GetCurrentPositionEx
CreateDIBitmap
CreatePatternBrush

comdlg32

GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError
PrintDlgA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegSetValueExA
RegQueryValueA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegCloseKey

shell32

ExtractIconA
DragQueryFileA
DragFinish
ShellExecuteA
SHGetFileInfoA

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoTaskMemAlloc

olepro32

ord253

oleaut32

SysStringLen
SysAllocStringLen
SysAllocStringByteLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysFreeString

urlmon

URLDownloadToFileA

Sections

.text
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35b12cf4e3766980007c22f262436393

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

urlmon

Sections

.text Size: 256KB - Virtual size: 252KB

.rdata Size: 64KB - Virtual size: 61KB

.data Size: 20KB - Virtual size: 36KB

.rsrc Size: 68KB - Virtual size: 66KB

.text
Size: 256KB - Virtual size: 252KB

.rdata
Size: 64KB - Virtual size: 61KB

.data
Size: 20KB - Virtual size: 36KB

.rsrc
Size: 68KB - Virtual size: 66KB