13812399c5bc92923d2ade985cd70017e53012d71b549e24bd7e63c04e999c83

Sharing

Copy URL Twitter E-mail

General

Target

13812399c5bc92923d2ade985cd70017e53012d71b549e24bd7e63c04e999c83
Size

1.5MB
MD5

1e229d3d14924c4e9c466279201c79c1
SHA1

55a7fda8ede11eabd77a334bc9128a9192ca89eb
SHA256

13812399c5bc92923d2ade985cd70017e53012d71b549e24bd7e63c04e999c83
SHA512

75f2953986f9a078220909c724a34a80fd39cadcd672e41748c4f66b970be0ce9c22abb7f89368ca3577d911f046d32329ebe64ff577dd93ec4773f1e4378351
SSDEEP

12288:bYGVGFoTM26YTzR9GI0K02SaUvDckKy2ZaXaWam:MAtTbGI0BZ/vDHKy2ZAp1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13812399c5bc92923d2ade985cd70017e53012d71b549e24bd7e63c04e999c83

Files

13812399c5bc92923d2ade985cd70017e53012d71b549e24bd7e63c04e999c83
.exe windows:4 windows x86 arch:x86

c4cd48626d21ef6b605b2577166dac6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

HttpSendRequestA
HttpOpenRequestA
InternetGetLastResponseInfoA
InternetErrorDlg
InternetSetOptionA
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetSetOptionExA
InternetOpenUrlA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetGetConnectedState
HttpAddRequestHeadersA
InternetQueryOptionA
HttpQueryInfoA
InternetCloseHandle
InternetOpenA
InternetConnectA
InternetReadFile

kernel32

GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
GetModuleFileNameA
GetPrivateProfileStringA
LocalFree
FormatMessageA
GetLastError
GetVersionExA
GetSystemInfo
GetProcAddress
GetModuleHandleA
FreeLibrary
LoadLibraryA
GetTempPathA
GetPrivateProfileIntA
WinExec
lstrcpyA
lstrcmpA
lstrlenA
FileTimeToSystemTime
MultiByteToWideChar
LocalAlloc
DeleteFileA
Sleep
MoveFileExA
HeapReAlloc
HeapSize
ExitThread
GetACP
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapFree
RtlUnwind
SetErrorMode
GetFileTime
GetFileSize
GetFileAttributesA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
GetCurrentThread
SuspendThread
SetThreadPriority
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentProcess
DuplicateHandle
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
EnterCriticalSection
FileTimeToLocalFileTime
lstrcpynA
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
MulDiv
SetLastError
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GetTickCount
GlobalDeleteAtom
GetSystemDirectoryA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
TerminateProcess
ResumeThread
FindFirstFileA
FindClose
GetVersion
ResetEvent
FindResourceA
LoadResource
SizeofResource
LockResource
CreateFileA
WriteFile
OpenEventA
SetEvent
OpenMutexA
CreateEventA
CreateMutexA
WritePrivateProfileStringA
CreateThread
CloseHandle
CreateProcessA
WaitForSingleObject
CompareStringA

user32

GetSysColorBrush
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
GetMessageA
TranslateMessage
ValidateRect
CharUpperA
GetDesktopWindow
EndDialog
CreateDialogIndirectParamA
LoadStringA
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
EndPaint
BeginPaint
GetWindowDC
SendDlgItemMessageA
MapWindowPoints
DispatchMessageA
GetFocus
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
ScrollWindow
SetScrollInfo
SetScrollPos
GetTopWindow
IsChild
GetCapture
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DestroyWindow
CreateWindowExA
SetWindowsHookExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
GetWindowLongA
SetWindowLongA
SetWindowPos
IntersectRect
GetWindowPlacement
SetForegroundWindow
GetCursorPos
TrackPopupMenu
GetClipboardData
IsWindowVisible
GetSystemMenu
AppendMenuA
SetTimer
PeekMessageA
KillTimer
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
PtInRect
GrayStringA
DrawTextA
RegisterClipboardFormatA
MessageBeep
TabbedTextOutA
SystemParametersInfoA
RedrawWindow
LoadCursorA
GetSystemMetrics
DrawIcon
LoadIconA
IsIconic
PostThreadMessageA
IsRectEmpty
SetRectEmpty
GetClassNameA
SetParent
UpdateWindow
RegisterWindowMessageA
LoadBitmapA
MessageBoxA
EnableWindow
LoadMenuA
GetDC
ReleaseDC
FillRect
DrawStateA
GetClientRect
CopyRect
FrameRect
InflateRect
GetSysColor
OffsetRect
DrawFocusRect
GetWindowRect
GetSubMenu
TrackPopupMenuEx
PostMessageA
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
SendMessageA
DestroyIcon
DestroyCursor
DestroyMenu
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
CallNextHookEx
CharNextA
IsWindowUnicode
DefDlgProcA
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
WinHelpA

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetStretchBltMode
GetViewportExtEx
GetWindowExtEx
CreatePen
GetMapMode
PatBlt
DPtoLP
GetTextColor
GetBkColor
LPtoDP
SetBkMode
SelectPalette
RestoreDC
SaveDC
GetClipBox
GetDIBits
CreateBitmapIndirect
SetBrushOrgEx
Rectangle
CreateDCA
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateRectRgn
GetWindowOrgEx
GetTextExtentPoint32A
GetViewportOrgEx
GetDIBColorTable
CreatePalette
GetDeviceCaps
RealizePalette
StretchBlt
GetStockObject
CreateFontA
CreatePatternBrush
GetObjectA
GetPixel
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteObject
GetTextExtentPointA
CreateDIBitmap
CreateSolidBrush

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyA
RegQueryValueExA
RegEnumValueA
RegOpenKeyA
RegEnumKeyA
RegQueryInfoKeyA
FreeSid
AllocateAndInitializeSid
GetUserNameA
RegCreateKeyExA
RegOpenKeyExA

shell32

ShellExecuteA
ShellExecuteExA
Shell_NotifyIconA
SHGetSpecialFolderPathA

comctl32

ImageList_GetImageInfo
ImageList_Draw
_TrackMouseEvent
ord17
ImageList_Destroy

oledlg

ord8

ole32

CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CLSIDFromString

olepro32

ord253

oleaut32

SysStringLen
VariantTimeToSystemTime
SysAllocStringLen
SysFreeString
VariantChangeType
SysAllocStringByteLen
VariantClear
SysAllocString
VariantCopy

wsock32

WSACleanup
WSAStartup

crypt32

CertOpenSystemStoreA
CertOpenStore
CertCreateCertificateContext
CertCloseStore
CertCompareCertificate
CertEnumCertificatesInStore
CertAddEncodedCertificateToStore
CertFreeCertificateContext

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

shlwapi

PathIsURLA
PathFileExistsA
PathFindFileNameA

Sections

.text
Size: 312KB - Virtual size: 311KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c4cd48626d21ef6b605b2577166dac6d

Headers

File Characteristics

Imports

wininet

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

crypt32

version

shlwapi

Sections

.text Size: 312KB - Virtual size: 311KB

.rdata Size: 68KB - Virtual size: 64KB

.data Size: 108KB - Virtual size: 1.3MB

.rsrc Size: 1.0MB - Virtual size: 1.0MB

.text
Size: 312KB - Virtual size: 311KB

.rdata
Size: 68KB - Virtual size: 64KB

.data
Size: 108KB - Virtual size: 1.3MB

.rsrc
Size: 1.0MB - Virtual size: 1.0MB