b55f2e2290dcbf366d959c38ed4ed9ff885ba375ab10879ae024d8c42f7f8d5b

Sharing

Copy URL Twitter E-mail

General

Target

b55f2e2290dcbf366d959c38ed4ed9ff885ba375ab10879ae024d8c42f7f8d5b
Size

2.8MB
MD5

f16fe1a70a16179b84e3b2e2626ad61f
SHA1

ce11474cf888f37ec9bac2d91228a0e361fef9cb
SHA256

b55f2e2290dcbf366d959c38ed4ed9ff885ba375ab10879ae024d8c42f7f8d5b
SHA512

efdd65354b54708b7ec637a1b0b9a44e01cf837a4f836b88d750b4afd3b5b010d3f3aedbef69427fde447c6af0af87840356eaf680d59f5e5ab9190235e77e1f
SSDEEP

49152:0V6D24CyLGoDWCmcW/ReLVCIPU34puTy2FTOluYMHc8/izvQ6PG:X24aIWCmcwR4CIPU34TMOluYM88/iz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b55f2e2290dcbf366d959c38ed4ed9ff885ba375ab10879ae024d8c42f7f8d5b

Files

b55f2e2290dcbf366d959c38ed4ed9ff885ba375ab10879ae024d8c42f7f8d5b
.exe windows:5 windows x86 arch:x86

4b46e91b1ce487172fca7e5c0eba5383

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
RealizePalette
SelectObject
SelectPalette
StretchBlt
CreateDIBSection
PtInRegion
GetTextFaceA
CopyMetaFileA
CreateDCA
GetDeviceCaps
CreateBitmap
CreateHatchBrush
CreatePatternBrush
Escape
GetClipBox
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectA
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
GetTextMetricsA
GetBkColor
GetRgnBox
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
SetDIBColorTable
CreateEllipticRgn
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExA
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
SetPixelV
ExtFloodFill
SetPaletteEntries
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
DeleteDC
ExtCreateRegion
GetTextColor
ExcludeClipRect
Ellipse
CreatePen
GetPixel
DeleteObject
FillRgn
CreateRectRgn
CombineRgn
GetTextExtentPoint32A
CreateFontA
CreateSolidBrush
CreateCompatibleBitmap
GetObjectA
CreateCompatibleDC
TextOutA
BitBlt

msimg32

AlphaBlend
TransparentBlt

kernel32

FindResourceExW
RtlUnwind
GetSystemTimeAsFileTime
GetCommandLineA
GetSystemInfo
VirtualAlloc
VirtualQuery
CreateThread
ExitThread
ExitProcess
GetModuleHandleExW
IsDebuggerPresent
IsProcessorFeaturePresent
SetStdHandle
GetFileType
HeapQueryInformation
IsValidCodePage
GetStringTypeW
GetStdHandle
GetStartupInfoW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetTimeZoneInformation
LCMapStringW
OutputDebugStringW
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
VirtualProtect
LockResource
LoadResource
SizeofResource
FindResourceW
WideCharToMultiByte
GetModuleHandleA
OutputDebugStringA
GetLastError
ReleaseMutex
CloseHandle
CreateMutexA
GetModuleFileNameA
FreeLibrary
WaitForSingleObject
MapViewOfFile
UnmapViewOfFile
OpenMutexA
OpenFileMappingA
LoadLibraryA
SetFileAttributesA
DeleteFileA
CopyFileA
GlobalAlloc
GlobalReAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetFileSize
ReadFile
CreateFileA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileStructA
WritePrivateProfileStructA
lstrlenA
GetTickCount
GetCurrentThreadId
FindClose
FindFirstFileA
DecodePointer
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
RaiseException
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetLastError
GlobalSize
LocalFree
MulDiv
FormatMessageA
MultiByteToWideChar
EncodePointer
EnterCriticalSection
LeaveCriticalSection
GetSystemDirectoryW
FreeResource
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
LoadLibraryW
FindResourceA
GlobalAddAtomA
GlobalFindAtomA
GlobalGetAtomNameA
CompareStringA
GetCurrentProcessId
SetThreadPriority
ResumeThread
GetCurrentThread
GetVersionExA
lstrcmpA
FlushFileBuffers
GetFullPathNameA
LockFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
lstrcmpiA
GetVolumeInformationA
GetThreadLocale
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalHandle
LocalAlloc
LocalReAlloc
FileTimeToSystemTime
GlobalFlags
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GetOEMCP
GetCPInfo
GetACP
GetCurrentDirectoryA
FileTimeToLocalFileTime
GetFileAttributesA
GetFileAttributesExA
GetFileSizeEx
GetFileTime
SetErrorMode
GetWindowsDirectoryA
lstrcpyA
VerSetConditionMask
VerifyVersionInfoA
GetTempPathA
GetTempFileNameA
Sleep
GetProfileIntA
SearchPathA

user32

GetSystemMenu
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
SetCursorPos
LockWindowUpdate
SetClassLongA
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuA
CharUpperBuffA
FrameRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
IsClipboardFormatAvailable
GetUpdateRect
SubtractRect
CreateMenu
DestroyCursor
GetWindowRgn
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
SetScrollInfo
GetLastActivePopup
GetTopWindow
GetClassLongA
EqualRect
MapWindowPoints
MessageBoxA
AdjustWindowRectEx
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
IsZoomed
GetComboBoxInfo
LoadMenuW
ReuseDDElParam
UnpackDDElParam
CheckDlgButton
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
MonitorFromPoint
UpdateLayeredWindow
IsMenu
UnionRect
ScrollWindow
ValidateRect
DrawFrameControl
DrawEdge
LoadImageW
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetKeyState
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
RemoveMenu
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuStringA
UnregisterClassA
GetScrollInfo
GetWindow
SetParent
IsRectEmpty
KillTimer
SetTimer
MapVirtualKeyA
CallNextHookEx
GetClassNameA
OffsetRect
InflateRect
RemovePropA
GetPropA
SetPropA
SetDoubleClickTime
SetWindowLongA
FillRect
GetWindowTextA
SetFocus
DestroyWindow
IsWindow
CreateWindowExA
CallWindowProcA
TrackMouseEvent
GetFocus
DestroyIcon
LoadIconA
CopyRect
GetMenuItemInfoA
AppendMenuA
GetMenuState
SetRect
PtInRect
UpdateWindow
LoadIconW
UnhookWindowsHookEx
SetWindowsHookExA
FindWindowA
DrawIcon
GetSystemMetrics
IsIconic
LoadStringA
GetCursorPos
CreatePopupMenu
LoadBitmapW
LoadImageA
ScreenToClient
EnumDisplayMonitors
SetLayeredWindowAttributes
PostThreadMessageA
NotifyWinEvent
LoadCursorW
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
GetIconInfo
DrawIconEx
SetRectEmpty
DrawFocusRect
RegisterClipboardFormatA
GetMenuDefaultItem
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
CharNextA
DeleteMenu
CopyImage
RealChildWindowFromPoint
GetSysColorBrush
CharUpperA
GetKeyNameTextA
IntersectRect
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
TranslateMessage
GetMessageA
SystemParametersInfoA
DestroyMenu
GetWindowThreadProcessId
GetDesktopWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
GetWindowRect
RedrawWindow
IsWindowEnabled
SendDlgItemMessageA
RegisterWindowMessageA
SetCursor
GetWindowLongA
WindowFromPoint
ClientToScreen
InvalidateRect
ReleaseDC
GetDC
SetActiveWindow
ReleaseCapture
SetCapture
GetCapture
GetActiveWindow
SendMessageA
LoadCursorA
GetSysColor
DefWindowProcA
GetParent
GetClientRect
SetWindowRgn
EnableWindow
PostMessageA
InsertMenuItemA
GetWindowTextLengthA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyA
RegQueryValueA
RegEnumValueA
RegEnumKeyExA
RegCreateKeyA

shell32

DragFinish
SHGetSpecialFolderPathA
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
ShellExecuteA
DragQueryFileA
SHBrowseForFolderA

comctl32

_TrackMouseEvent

shlwapi

PathFindFileNameA
PathRemoveExtensionA
PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
StrFormatKBSizeA
PathFindExtensionA

uxtheme

GetThemePartSize
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeParentBackground
DrawThemeText

ole32

RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal

oleaut32

SysAllocString
OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysFreeString
OleLoadPicture

oledlg

ord8

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipDisposeImage
GdipCloneImage
GdipGetImagePaletteSize
GdipGetImageGraphicsContext
GdipAlloc
GdiplusShutdown
GdipCreateBitmapFromStream
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipFree
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdiplusStartup
GdipDrawImageRectI

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 361KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 703KB - Virtual size: 703KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b46e91b1ce487172fca7e5c0eba5383

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

msimg32

kernel32

user32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

oleacc

gdiplus

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 361KB - Virtual size: 361KB

.data Size: 27KB - Virtual size: 263KB

.rsrc Size: 703KB - Virtual size: 703KB

.reloc Size: 139KB - Virtual size: 139KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 361KB - Virtual size: 361KB

.data
Size: 27KB - Virtual size: 263KB

.rsrc
Size: 703KB - Virtual size: 703KB

.reloc
Size: 139KB - Virtual size: 139KB