SecuriteInfo[.]com[.]Trojan[.]MulDrop28[.]21322[.]11416[.]10977[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Trojan.MulDrop28.21322.11416.10977.exe
Size

4.7MB
MD5

d46eb1527289a7937a29b51c5152c211
SHA1

ecc3d88cbcff257c989e1bc8bc0dee9f71a0d3fb
SHA256

c8f9d59dd94f5118e38f55a181a1c282080882b8b98338a46627de9884e8f784
SHA512

4feed2970d90e23c69934e0ff1e2e932f9533304956b8f5a0bf64f5166d912ff72757c3b8dc9b88def34142c52151e83dde06b96e8bb8a62a7455036c5a412b6
SSDEEP

98304:KvsgPxxP1vHXZ3/OsOP+DPkNln5KAh9qpdcFUvpi9P4H2OpuTIu:aXxP1vHXd/8WM9j5TI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan.MulDrop28.21322.11416.10977.exe

Files

SecuriteInfo.com.Trojan.MulDrop28.21322.11416.10977.exe
.exe windows:5 windows x86 arch:x86

f9f6673de4e60c2d32659ee131b0b105

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SetEnvironmentVariableA
CreateFileW
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
CompareStringW
LCMapStringW
GetStringTypeW
HeapQueryInformation
HeapSize
HeapReAlloc
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
QueryPerformanceCounter
IsValidCodePage
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
SetStdHandle
OutputDebugStringW
GetFileType
WriteConsoleW
OutputDebugStringA
GetStdHandle
GetSystemTimeAsFileTime
ExitThread
CreateThread
ExitProcess
VirtualQuery
GetSystemInfo
RaiseException
HeapValidate
GetStartupInfoW
HeapSetInformation
GetCommandLineA
DecodePointer
EncodePointer
RtlUnwind
InitializeCriticalSectionAndSpinCount
Sleep
SearchPathA
GetTempPathA
GetFileAttributesExA
GetFileSizeEx
GetTempFileNameA
GetFileTime
GetFileAttributesA
GetTickCount
FindResourceExW
GetNumberFormatA
GetWindowsDirectoryA
lstrcmpiA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
OpenEventA
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetHandleInformation
lstrcpyA
DeleteFileA
GetCurrentDirectoryA
GetProfileIntA
GetACP
GetOEMCP
GetCPInfo
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
ReleaseActCtx
CreateActCtxW
GetModuleFileNameW
GetAtomNameA
SetErrorMode
FileTimeToSystemTime
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SetEvent
WaitForSingleObject
CloseHandle
InterlockedExchange
GetModuleHandleW
lstrcmpA
GetCurrentThread
GetLocaleInfoA
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
ResumeThread
SetThreadPriority
CompareStringA
LoadLibraryW
GetVersionExA
FindResourceA
FreeResource
lstrcmpW
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
ActivateActCtx
DeactivateActCtx
GetCurrentProcessId
GetModuleFileNameA
GetModuleHandleA
MulDiv
GlobalFree
lstrlenW
CopyFileA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
SizeofResource
MultiByteToWideChar
GetLastError
InterlockedDecrement
LocalFree
InterlockedIncrement
HeapAlloc
GetThreadLocale
lstrlenA
GetProcessHeap
HeapFree
FreeLibrary
GetProcAddress
LoadLibraryA
IsBadReadPtr
SetLastError
VirtualFree
VirtualProtect
SetFilePointer
VirtualAlloc

user32

DrawTextExA
DrawTextA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateA
DrawIcon
InvertRect
FrameRect
FillRect
GetSysColorBrush
SetCursor
GetCursorPos
GetMessageA
TranslateMessage
PostQuitMessage
EndDialog
CreateDialogIndirectParamA
CharNextA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
CheckDlgButton
LoadCursorW
LoadCursorA
PostThreadMessageA
NotifyWinEvent
SetWindowContextHelpId
GetForegroundWindow
SetForegroundWindow
HideCaret
OpenClipboard
WindowFromPoint
SetParent
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
GetDesktopWindow
SetCapture
GetActiveWindow
KillTimer
SetTimer
EnableScrollBar
RedrawWindow
LockWindowUpdate
ShowOwnedPopups
IsWindowVisible
ValidateRect
InvalidateRgn
InvalidateRect
GetUpdateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
EndPaint
GrayStringA
ClientToScreen
BringWindowToTop
GetWindowRgn
SetWindowRgn
IsZoomed
DestroyMenu
GetSystemMenu
DrawMenuBar
GetMenuCheckMarkDimensions
LoadBitmapW
SetMenuItemBitmaps
TabbedTextOutA
PostMessageA
MapDialogRect
RegisterWindowMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
LoadIconW
LoadIconA
SendDlgItemMessageA
MonitorFromWindow
GetMonitorInfoA
GetClientRect
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetWindowRect
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetWindow
GetCapture
WinHelpA
TrackPopupMenu
SetWindowPlacement
GetWindowPlacement
ReuseDDElParam
UnpackDDElParam
DestroyIcon
GetDlgItem
GetWindowTextLengthA
LoadImageA
GetClipboardFormatNameA
GetSystemMetrics
OffsetRect
GetMenuItemID
GetWindowTextA
GetKeyState
DestroyWindow
GetDlgCtrlID
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
SetMenu
GetMenu
CreateMenu
CreatePopupMenu
DeleteMenu
CheckMenuItem
EnableMenuItem
SetMenuDefaultItem
GetMenuDefaultItem
GetMenuItemInfoA
InsertMenuItemA
ModifyMenuA
LoadMenuA
LoadMenuW
GetMessageTime
GetMessagePos
IsWindow
SetWindowLongA
SetWindowPos
MessageBoxA
GetWindowLongA
GetParent
GetLastActivePopup
IsWindowEnabled
LoadAcceleratorsA
TranslateAcceleratorA
BeginPaint
ReleaseCapture
InsertMenuA
SubtractRect
UnionRect
IntersectRect
InflateRect
SetRect
AppendMenuA
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemCount
IsMenu
RemoveMenu
SendMessageA
GetWindowThreadProcessId
EnableWindow
RealChildWindowFromPoint
SystemParametersInfoA
GetAsyncKeyState
SetRectEmpty
CopyAcceleratorTableA
EnumDisplayMonitors
SetLayeredWindowAttributes
LoadAcceleratorsW
WaitMessage
CharUpperA
MessageBeep
GetKeyNameTextA
MapVirtualKeyA
UnregisterClassA
GetIconInfo
CopyImage
DrawIconEx
RegisterClipboardFormatA
DestroyAcceleratorTable
CreateAcceleratorTableA
ToAsciiEx
GetKeyboardLayout
GetKeyboardState
SetCursorPos
SetClassLongA
IsCharLowerA
MapVirtualKeyExA
MonitorFromPoint
UpdateLayeredWindow
DestroyCursor
GetDoubleClickTime
IsClipboardFormatAvailable
DefMDIChildProcA
TranslateMDISysAccel
DefFrameProcA
CharUpperBuffA
IsRectEmpty
CopyIcon
PtInRect
EmptyClipboard
CloseClipboard
SetClipboardData
LoadImageW
IsIconic

gdi32

CreatePalette
GetPaletteEntries
SetPaletteEntries
GetNearestPaletteIndex
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreatePolygonRgn
CreateRoundRectRgn
SetRectRgn
CombineRgn
OffsetRgn
GetRgnBox
PtInRegion
CreateCompatibleDC
SelectObject
RealizePalette
GetBkColor
GetTextColor
GetMapMode
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
PtVisible
RectVisible
Polyline
Ellipse
Polygon
Rectangle
PatBlt
BitBlt
StretchBlt
GetPixel
SetPixel
ExtFloodFill
TextOutA
GetTextExtentPoint32A
GetTextFaceA
GetTextMetricsA
Escape
GetBoundsRect
SetPixelV
DeleteDC
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetLayout
SetLayout
CreateCompatibleBitmap
DeleteObject
ExtSelectClipRgn
CreateFontIndirectA
CreatePatternBrush
CreateHatchBrush
CreateSolidBrush
CreatePen
GetObjectType
GetStockObject
CreateBitmap
ExtTextOutA
CopyMetaFileA
GetObjectA
SetBkColor
SetTextColor
GetDeviceCaps
SetDIBColorTable
CreateDIBSection
EnumFontFamiliesExA
GetSystemPaletteEntries
CreateDIBitmap
GetTextCharsetInfo
EnumFontFamiliesA
CreateDCA

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteKeyA
RevertToSelf
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegQueryValueA
RegEnumKeyA
RegEnumValueA
RegEnumKeyExA
SetThreadToken
OpenThreadToken

shell32

DragFinish
DragQueryFileA
SHGetFileInfoA
SHAppBarMessage
SHBrowseForFolderA
ShellExecuteA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder

comctl32

ImageList_GetIconSize

shlwapi

PathFindFileNameA
PathRemoveFileSpecW
PathIsUNCA
PathFindExtensionA
PathStripToRootA

ole32

OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
CreateStreamOnHGlobal
CoRevokeClassObject
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoLockObjectExternal
OleGetClipboard
CoUninitialize
OleRun
CoCreateInstance
CoInitializeEx
StringFromGUID2
CoCreateGuid
RegisterDragDrop
ReleaseStgMedium
CoTaskMemAlloc
StringFromCLSID
RevokeDragDrop
CoTaskMemFree
OleDuplicateData
CoInitialize
CLSIDFromString
CLSIDFromProgID

oleaut32

SysStringLen
SysAllocStringLen
OleCreateFontIndirect
VariantChangeType
VariantClear
SafeArrayDestroy
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
VariantCopy
SysAllocString
VariantInit
GetErrorInfo
SysFreeString
SysStringByteLen
SysAllocStringByteLen

oledlg

ord8

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

gdiplus

GdipCreateBitmapFromStream
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipAlloc
GdipCloneImage
GdipFree
GdipDisposeImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipCreateFromHDC
GdiplusShutdown
GdipCreateBitmapFromStreamICM

imm32

ImmGetOpenStatus
ImmGetContext
ImmReleaseContext

winmm

PlaySoundA

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 416KB - Virtual size: 415KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 305KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 246KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9f6673de4e60c2d32659ee131b0b105

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

oleacc

gdiplus

imm32

winmm

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 416KB - Virtual size: 415KB

.data Size: 305KB - Virtual size: 336KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 246KB - Virtual size: 245KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 416KB - Virtual size: 415KB

.data
Size: 305KB - Virtual size: 336KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 246KB - Virtual size: 245KB