98620fd2cee05960c743d3e157f2f80e50a7a772855dbd5ac86924047f74b564

Sharing

Copy URL Twitter E-mail

General

Target

98620fd2cee05960c743d3e157f2f80e50a7a772855dbd5ac86924047f74b564
Size

202KB
MD5

c09f136ba3a8a3b64a9d26393d82f3ae
SHA1

f1e098382b806c6e0f74a8bcc1a27785f0fe0bff
SHA256

98620fd2cee05960c743d3e157f2f80e50a7a772855dbd5ac86924047f74b564
SHA512

3ea9eb0545fee74b447587de45beb3918278a090303363e3f3639db6002403d383dee1110bc490a6a3e271b9a6ca837b1075ed5e55dd09962f6ad3cd8c53b787
SSDEEP

3072:oAg0FuyQNKie+WOVjToO9Vi1JPa/1GbUNxakJkDI:oAOhmmP/1GbDkuDI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98620fd2cee05960c743d3e157f2f80e50a7a772855dbd5ac86924047f74b564

Files

98620fd2cee05960c743d3e157f2f80e50a7a772855dbd5ac86924047f74b564
.exe windows:5 windows x86 arch:x86

1b2760f56ee8d379a21586968d24d978

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPos
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowCaret
ShowScrollBar
ShowWindow
AnimateWindow
SystemParametersInfoA
TrackPopupMenu
SendMessageA
TranslateMDISysAccel
TranslateMessage
SetScrollInfo
UpdateWindow
WaitMessage
WinHelpA
WinHelpW
WindowFromPoint
CharNextA
MessageBoxA
LoadStringA
GetKeyboardType
SendDlgItemMessageA
ScrollWindow
ReleaseDC
ReleaseCapture
RegisterWindowMessageA
RegisterClipboardFormatA
SetParent
SetMenu
SetKeyboardState
SetForegroundWindow
SetFocus
SetDlgItemTextW
SetDlgItemTextA
SetCursorPos
SetCursor
SetClipboardData
SetClassLongA
SetCaretPos
SetCapture
SetActiveWindow
UnhookWindowsHookEx
SendMessageW
RegisterClassExW
RegisterClassW
RegisterClassA
RedrawWindow
PtInRect
PostQuitMessage
PostMessageA
PeekMessageA
OpenClipboard
OffsetRect
OemToCharBuffA
OemToCharA
MoveWindow
ModifyMenuW
ModifyMenuA
MessageBoxW
MessageBeep
MapWindowPoints
LoadMenuA
LoadImageA
LoadIconA
LoadCursorA
LoadBitmapA
LoadAcceleratorsA
KillTimer
IsZoomed
IsWindowVisible
IsWindowEnabled
IsWindow
IsIconic
IsDlgButtonChecked
IsDialogMessageA
IsClipboardFormatAvailable
InvalidateRect
IntersectRect
InsertMenuA
InflateRect
HideCaret
GetWindowThreadProcessId
GetWindowTextLengthW
GetWindowTextLengthA
GetWindowTextW
GetWindowTextA
GetWindowRect
GetWindowLongW
GetWindowLongA
GetWindowDC
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollPos
GetParent
GetWindow
GetNextDlgTabItem
GetMessageA
GetMenuStringW
GetMenuStringA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetKeyboardState
GetKeyState
GetFocus
GetDlgItemTextW
GetDlgItemTextA
GetDlgItemInt
GetDlgItem
GetDlgCtrlID
GetDC
GetCursorPos
GetClipboardFormatNameA
GetClipboardData
GetClientRect
GetClassNameW
GetClassNameA
GetClassLongA
GetClassInfoW
GetAsyncKeyState
GetActiveWindow
FindWindowA
FillRect
ExitWindowsEx
EnumClipboardFormats
EnumChildWindows
EndPaint
EndDialog
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextA
DrawStateA
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DispatchMessageA
DialogBoxParamW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCaret
DeleteMenu
DefWindowProcW
DefWindowProcA
DefMDIChildProcW
DefFrameProcW
CreateWindowExW
CreateWindowExA
CreatePopupMenu
CreateMenu
CreateMDIWindowW
CreateCaret
CountClipboardFormats
CloseClipboard
CheckRadioButton
CheckMenuItem
CheckDlgButton
CharUpperBuffW
CharNextW
CharLowerBuffW
CharLowerW
CallWindowProcW
CallWindowProcA
CallNextHookEx
BringWindowToTop
BeginPaint
AppendMenuW
AppendMenuA
CharLowerBuffA
CharLowerA
CharUpperBuffA
CharUpperA
CharToOemBuffA
CharToOemA
GetMenu
GetTopWindow
GrayStringA
TabbedTextOutA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetDesktopWindow
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
GetMessagePos
GetScrollInfo
CheckMenuRadioItem
wsprintfA
SetMenuItemInfoA
GetMenuItemInfoA
SetRectEmpty
IsRectEmpty
SetRect
DrawEdge
UnregisterClassA
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
TrackMouseEvent
InvalidateRgn
GetCursor
ScrollDC
CopyIcon
MapVirtualKeyA
GetKeyNameTextA
TranslateAcceleratorA
EnableScrollBar

comdlg32

ChooseFontA
ChooseColorA
CommDlgExtendedError
GetOpenFileNameW
GetSaveFileNameW

shell32

ShellExecuteA
SHGetFileInfoW
SHGetFileInfoA
ExtractIconW
ExtractIconA
ExtractAssociatedIconA
DragQueryPoint
DragQueryFileW
DragFinish
DragAcceptFiles
SHGetFolderPathW
ShellExecuteExA
SHChangeNotify
DragQueryFileA
ShellExecuteW

gdi32

AbortDoc
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBSection
CreateDIBitmap
CreateFontA
CreateFontIndirectA
CreatePen
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
EndDoc
EndPage
ExtCreatePen
ExtTextOutA
ExtTextOutW
GetBkColor
GetCharABCWidthsFloatW
GetDIBits
GetDeviceCaps
GetObjectA
GetPixel
GetStockObject
GetTextColor
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextMetricsA
LineTo
MoveToEx
PtInRegion
Rectangle
RemoveFontResourceA
SelectClipRgn
SelectObject
SetBkColor
SetBkMode
SetPixel
SetPixelV
SetStretchBltMode
SetTextAlign
SetTextColor
StartDocA
StartDocW
StartPage
StretchBlt
StretchDIBits
TextOutA
TextOutW
SaveDC
AddFontResourceA

comctl32

ImageList_AddMasked
ImageList_Destroy
ImageList_Create

kernel32

MultiByteToWideChar
lstrlenA
lstrcpynA
LoadLibraryExA
GetThreadLocale
GetStartupInfoA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetLastError
GetCommandLineA
FreeLibrary
FindFirstFileA
FindClose
ExitProcess
WriteFile
UnhandledExceptionFilter
SetFilePointer
SetEndOfFile
RtlUnwind
ReadFile
RaiseException
GetStdHandle
GetSystemTime
WideCharToMultiByte
DeleteFileA
CreateFileA
CloseHandle
TlsSetValue
TlsGetValue
SetFilePointerEx
Sleep
GetFileSizeEx
FindNextVolumeA
FindFirstVolumeA
GetCPInfoExA
GetLongPathNameA
GetLongPathNameW
GetVersion
GetACP
lstrcpyA
LoadResource
LockResource
SizeofResource
LoadLibraryA
MulDiv
GetTempPathA
LocalAlloc
HeapSize
VirtualQuery
GetCurrentThreadId
LocalFree
VirtualAlloc
VirtualFree
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
HeapReAlloc
HeapAlloc
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
TlsAlloc
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapCreate
HeapFree
SetStdHandle
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetCPInfo
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetFileType
GetFileSize

Sections

.rdata
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tear
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.river
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trick
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.luck
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b2760f56ee8d379a21586968d24d978

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

gdi32

comctl32

kernel32

Sections

.rdata Size: 32KB - Virtual size: 32KB

.data Size: 9KB - Virtual size: 36KB

.tear Size: 86KB - Virtual size: 85KB

.river Size: 8KB - Virtual size: 8KB

.trick Size: 4KB - Virtual size: 4KB

.luck Size: 7KB - Virtual size: 7KB

.rsrc Size: 52KB - Virtual size: 52KB

.rdata
Size: 32KB - Virtual size: 32KB

.data
Size: 9KB - Virtual size: 36KB

.tear
Size: 86KB - Virtual size: 85KB

.river
Size: 8KB - Virtual size: 8KB

.trick
Size: 4KB - Virtual size: 4KB

.luck
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 52KB - Virtual size: 52KB