82b998c5127ef10be935ebc6b31639f1f5e2b8233e7b529884200fb6bc7c3cc6

Sharing

Copy URL Twitter E-mail

General

Target

82b998c5127ef10be935ebc6b31639f1f5e2b8233e7b529884200fb6bc7c3cc6
Size

1.6MB
MD5

fd247de4f9edca8fe5fa1740dcd47081
SHA1

e65c086619fb040d36f15edbb58ee5af532af6fe
SHA256

82b998c5127ef10be935ebc6b31639f1f5e2b8233e7b529884200fb6bc7c3cc6
SHA512

1163f5ba9f7a75e0c804c86d014a388ae222016aefd9c8a5bbce0592f111b863eb7334123e067f0833b4a98f01db677fee86e6870b205f8e2ef559dd4c46de2d
SSDEEP

49152:UxuU6FBb/qUrol8Mn3J7bKvnRlItM1aRG1GYWtXa3G:mY+eol8M3J3GnXIq1RGYWtA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82b998c5127ef10be935ebc6b31639f1f5e2b8233e7b529884200fb6bc7c3cc6

Files

82b998c5127ef10be935ebc6b31639f1f5e2b8233e7b529884200fb6bc7c3cc6
.exe windows:5 windows x86 arch:x86

c90a93557e4c2079c9a94bf77facd986

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\Project\SAFE\Secdoc\PLD-Build\Src\Client\pdb\LckMsgSoho.pdb

Imports

kernel32

WriteConsoleA
GetConsoleOutputCP
GetStringTypeA
CreateFileA
SetEnvironmentVariableA
GetLocaleInfoA
GetConsoleMode
GetConsoleCP
LCMapStringA
LCMapStringW
GetTimeZoneInformation
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSectionAndSpinCount
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
VirtualFree
CreateMutexW
HeapCreate
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
SetUnhandledExceptionFilter
GetFileType
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
HeapReAlloc
RaiseException
ExitThread
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
GetStartupInfoW
FindResourceExW
VirtualProtect
SearchPathW
GetProfileIntW
GetTempPathW
GetTempFileNameW
lstrcpyW
GetSystemDirectoryW
GetFileTime
GetFileSizeEx
GetFileAttributesW
FileTimeToLocalFileTime
GetTickCount
SetErrorMode
FileTimeToSystemTime
GlobalGetAtomNameW
SetStdHandle
GetStringTypeW
CreateFileW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GlobalFlags
GetCurrentDirectoryW
lstrlenA
GetModuleHandleA
GlobalFindAtomW
GetVersionExW
LoadLibraryW
CompareStringW
LoadLibraryA
GetVersionExA
InterlockedDecrement
CopyFileW
GlobalSize
FormatMessageW
LocalFree
MulDiv
GetCurrentProcessId
SetLastError
GlobalAddAtomW
ResumeThread
SetThreadPriority
GlobalUnlock
WritePrivateProfileStringW
FreeResource
GlobalFree
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesW
GetModuleFileNameW
lstrcmpA
GetLocaleInfoW
FindActCtxSectionStringW
LoadLibraryExW
CompareStringA
MultiByteToWideChar
InterlockedExchange
GlobalLock
lstrcmpW
GlobalAlloc
FreeLibrary
GetModuleHandleW
GetProcAddress
WideCharToMultiByte
lstrlenW
Sleep
OpenEventW
ResetEvent
WaitForSingleObject
OutputDebugStringW
CreateEventW
FindResourceW
LoadResource
LockResource
SizeofResource
CreateThread
WinExec
CloseHandle
ReleaseMutex
GetLastError
WriteConsoleW

user32

OpenClipboard
GetMenuDefaultItem
GetUpdateRect
FrameRect
IsClipboardFormatAvailable
SetMenuDefaultItem
CreateMenu
IsMenu
UpdateLayeredWindow
EnableScrollBar
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
SetCursorPos
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateW
SetClassLongW
GetAsyncKeyState
NotifyWinEvent
DestroyAcceleratorTable
RedrawWindow
SetWindowRgn
IsZoomed
LockWindowUpdate
PostThreadMessageW
UnionRect
SetParent
MapVirtualKeyW
GetKeyNameTextW
KillTimer
SetTimer
RegisterClipboardFormatW
UnpackDDElParam
ReuseDDElParam
LoadMenuW
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
BringWindowToTop
TranslateAcceleratorW
SetRectEmpty
UnregisterClassW
CharUpperW
DestroyIcon
GetSysColorBrush
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
InvalidateRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
CharNextW
DeleteMenu
ReleaseCapture
LoadCursorW
WindowFromPoint
SetCapture
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
EndPaint
CopyImage
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
UpdateWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
PtInRect
GetMenu
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSysColor
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
InflateRect
CopyRect
UnhookWindowsHookEx
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
LoadImageW
SetClipboardData
CloseClipboard
EmptyClipboard
CopyIcon
CharUpperBuffW
GetWindowRgn
GetSubMenu
RemoveMenu
GetWindowThreadProcessId
GetLastActivePopup
MessageBoxW
ShowOwnedPopups
SetCursor
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DestroyCursor
SubtractRect
MapVirtualKeyExW
IsCharLowerW
GetIconInfo
BeginPaint
GetDoubleClickTime
DispatchMessageW
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetWindow
SetWindowContextHelpId
GetParent
MapDialogRect
SetWindowPos
PostQuitMessage
PostMessageW
EnableWindow
IsWindowVisible
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
SendMessageW
AppendMenuW
GetSystemMenu
LoadIconW
WaitMessage

gdi32

CreateSolidBrush
CreateHatchBrush
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetTextMetricsW
CreateCompatibleBitmap
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
CreatePolygonRgn
CreateDIBSection
CreateEllipticRgn
Polyline
Ellipse
Polygon
OffsetRgn
SetDIBColorTable
RealizePalette
StretchBlt
SetPixel
RoundRect
Rectangle
RectVisible
GetPaletteEntries
GetWindowOrgEx
GetViewportOrgEx
LPtoDP
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
PtVisible
GetPixel
CreatePen
GetWindowExtEx
GetObjectType
SelectPalette
GetStockObject
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
CreatePalette
CreateBitmap
GetViewportExtEx
CreateRectRgn
SelectClipRgn
DeleteObject
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
GetTextExtentPoint32W
ExtTextOutW
BitBlt
CreateCompatibleDC
CreateFontIndirectW
GetObjectW
CopyMetaFileW
GetDeviceCaps
TextOutW

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegEnumKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
RegQueryValueW
RegCloseKey

shell32

SHGetFileInfoW
DragFinish
DragQueryFileW
SHAppBarMessage
ShellExecuteW
SHBrowseForFolderW
SHGetPathFromIDListW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindExtensionW
PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathRemoveFileSpecW

oledlg

OleUIBusyW

ole32

OleCreateMenuDescriptor
CreateStreamOnHGlobal
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoInitializeEx
CoUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
DoDragDrop
OleLockRunning
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
CoCreateInstance
IsAccelerator
OleTranslateAccelerator
OleUninitialize
OleDestroyMenuDescriptor

oleaut32

SysFreeString
VariantCopy
SysAllocString
SafeArrayDestroy
SystemTimeToVariantTime
VariantTimeToSystemTime
OleCreateFontIndirect
VariantInit
VariantChangeType
VariantClear
SysStringLen
SysAllocStringLen

gdiplus

GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipCloneImage

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 274KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c90a93557e4c2079c9a94bf77facd986

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

imm32

winmm

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 274KB - Virtual size: 273KB

.data Size: 24KB - Virtual size: 53KB

.rsrc Size: 80KB - Virtual size: 79KB

.reloc Size: 139KB - Virtual size: 138KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 274KB - Virtual size: 273KB

.data
Size: 24KB - Virtual size: 53KB

.rsrc
Size: 80KB - Virtual size: 79KB

.reloc
Size: 139KB - Virtual size: 138KB