dee89c3e5a4ef0f4f08e7bae5437b9c5ce71f3a9dbfbfecc54e9a29c14c495d8N

Sharing

Copy URL Twitter E-mail

General

Target

dee89c3e5a4ef0f4f08e7bae5437b9c5ce71f3a9dbfbfecc54e9a29c14c495d8N
Size

87KB
MD5

f47db4acbf69b21b255696053aa63a80
SHA1

e77bdfbd5d40b16c497fbb72ae45ddb9491f2e57
SHA256

dee89c3e5a4ef0f4f08e7bae5437b9c5ce71f3a9dbfbfecc54e9a29c14c495d8
SHA512

180a7303ca0aa9903154d87526f7bfc47c7a4e35058655294b9491f219e82cdbb685c4fa484886d62ede5fa7907780e8974599f6253c8d61a64a24b7e00c6329
SSDEEP

1536:+/6+iPOg3au3sR8B5mr8ZMpXMQ4LcZk6ut9+cYDiyyyyyFJyWbDQeXLn:eiPOoaucRHdf4LcOBYDiyyyyyFDbDQkL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dee89c3e5a4ef0f4f08e7bae5437b9c5ce71f3a9dbfbfecc54e9a29c14c495d8N

Files

dee89c3e5a4ef0f4f08e7bae5437b9c5ce71f3a9dbfbfecc54e9a29c14c495d8N
.exe windows:8 windows x86 arch:x86

8a272bb877d373698f3d4ff2bf0da63c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetCurrentThreadId
GetStdHandle
LeaveCriticalSection
ReleaseMutex
GetProcAddress
GetModuleHandleW
GetComputerNameW
LoadResource
GetExitCodeThread
TlsGetValue
DeleteCriticalSection
HeapSize
IsDBCSLeadByteEx
WaitForSingleObject
QueryPerformanceCounter
SetEndOfFile
FindResourceW
MapViewOfFile
CreateFileW
UnmapViewOfFile
GetStartupInfoA
LockFile
Sleep
GetLastError
SizeofResource
GetCommandLineA
GetTempPathA
GetProcessTimes
SetCurrentDirectoryW
FileTimeToSystemTime
GetThreadTimes
CreateFileMappingW
TlsAlloc
SetUnhandledExceptionFilter
GetCommandLineW
SetErrorMode
InterlockedCompareExchange
GetVersionExA
OpenProcess
GlobalMemoryStatusEx
ReadFile
SetFilePointer
CreateDirectoryW
LockFileEx
CopyFileW
CreatePipe
ExpandEnvironmentStringsW
LocalFree
SetNamedPipeHandleState
GetEnvironmentVariableW
GetLocaleInfoW
GetFileAttributesA
CloseHandle
GetCPInfo
GlobalUnlock
FindFirstFileExW
GetDiskFreeSpaceW
FormatMessageA
GlobalLock
CreateFileA
CreateMutexW
PeekNamedPipe
WideCharToMultiByte
GlobalFree
GetLogicalDriveStringsW
InterlockedExchange
GetModuleHandleA
FindClose
UnlockFile
GlobalAlloc
GetThreadLocale
InitializeCriticalSection
InterlockedDecrement
CreateSemaphoreW
GetProcessWorkingSetSize
GetFullPathNameA
GetSystemTimeAsFileTime
GetModuleFileNameW
FormatMessageW
GetTickCount
GetProcessHeap
LocalFileTimeToFileTime
FileTimeToLocalFileTime
SuspendThread
GetWindowsDirectoryW
DuplicateHandle
DeviceIoControl
SetEnvironmentVariableW
LoadLibraryW
SetLastError
GlobalMemoryStatus
GetVolumeInformationW
GetDiskFreeSpaceA
GetFileSizeEx
CreateSemaphoreA
TlsFree
OpenFileMappingA
VirtualProtect
GetExitCodeProcess
FindFirstFileW
GetFileSize
GetVersionExW
GetCurrentProcessId
GlobalSize
TerminateThread
OutputDebugStringW
GetUserDefaultLCID
IsValidLocale
GetACP
VirtualAlloc
EnterCriticalSection
CreateFileMappingA
InterlockedIncrement
LocalAlloc
ReleaseSemaphore
IsValidCodePage
GetProcessAffinityMask
GetShortPathNameW
ExitProcess
GetFileAttributesW
ResumeThread
FindNextFileW
LoadLibraryA
AreFileApisANSI
DeleteFileW
GetTempPathW
GetFileType
LockResource
DeleteFileA
UnlockFileEx
GetFullPathNameW
SetThreadLocale
MoveFileExW
GetProfileStringW
RemoveDirectoryW
GetSystemInfo
FreeLibrary
MultiByteToWideChar
SetThreadExecutionState
GetDriveTypeW
TerminateProcess
TlsSetValue
GetCurrentThread
WriteFile
SetThreadPriority
SystemTimeToFileTime
GetFileAttributesExW
SetFileTime
FlushFileBuffers
GetCurrentProcess
GetTempFileNameW
CreateThread
GetFileTime
CreateProcessW

mpr

WNetGetConnectionW

ole32

ReleaseStgMedium
DoDragDrop
CoFreeUnusedLibraries
CoTaskMemFree
CoCreateInstance
OleSetClipboard
RevokeDragDrop
OleUninitialize
OleIsCurrentClipboard
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
OleInitialize
OleFlushClipboard

user32

SetWindowRgn
GetSystemMenu
GetWindowDC
IsWindow
DdeConnect
SetFocus
DestroyAcceleratorTable
GetMenuState
GetMenu
SetTimer
DeferWindowPos
HideCaret
RedrawWindow
IsIconic
WindowFromPoint
GetCursorPos
GetWindowTextLengthW
GetClassNameW
SetMenu
GetFocus
IsWindowVisible
FillRect
keybd_event
GetAsyncKeyState
MsgWaitForMultipleObjects
DdeFreeStringHandle
GetWindowTextW
CopyRect
GetSysColor
GetQueueStatus
TranslateAcceleratorW
DdeDisconnect
DdeUninitialize
SetParent
CreateWindowExW
LoadAcceleratorsW
GetDoubleClickTime
SetMenuItemInfoW
CreateAcceleratorTableW
GetActiveWindow
RegisterClipboardFormatW
ModifyMenuW
LoadImageW
SetCursorPos
RegisterClassW
CallWindowProcW
GetClipboardViewer
ShowCaret
GetCapture
GetDlgItem
InvalidateRect
KillTimer
GetClientRect
TranslateMessage
CheckMenuRadioItem
CallNextHookEx
OffsetRect
EnumWindows
ScreenToClient
GetParent
PostMessageW
DrawFrameControl
GetProcessWindowStation
InsertMenuItemW
IsClipboardFormatAvailable
DdePostAdvise
UnionRect
EnumThreadWindows
DrawStateW
LoadBitmapW
EndPaint
CreateIconIndirect
DdeNameService
CreateDialogIndirectParamW
VkKeyScanW
SendMessageW
ClientToScreen
SetForegroundWindow
MapWindowPoints
SystemParametersInfoW
EndMenu
GetOpenClipboardWindow
ReleaseCapture
FlashWindow
EndDeferWindowPos
ShowCursor
MoveWindow
IsDialogMessageW
EnableMenuItem
EmptyClipboard
ChildWindowFromPoint
DrawMenuBar
GetClipboardData
DestroyIcon
EnumDisplaySettingsW
DestroyMenu
UpdateWindow
GetDesktopWindow
EnumClipboardFormats
ScrollWindow
DrawTextW
DrawIcon
GetWindowLongW
ExitWindowsEx
TrackPopupMenu
GetMessageTime
AppendMenuW
GetMenuItemCount
GetWindowRect
DdeGetLastError
GetMessageW
DdeInitializeW
ReleaseDC
DdeClientTransaction
LoadCursorFromFileW
BringWindowToTop
AdjustWindowRectEx
DrawIconEx
SetCapture
MessageBoxW
BeginDeferWindowPos
EndDialog
SetClipboardData
GetUpdateRect
DdeCreateDataHandle
InsertMenuW
SetCursor
DdeGetData
DispatchMessageW
ChangeDisplaySettingsW
DefWindowProcW
SetWindowPos
GetClipboardFormatNameW
RegisterWindowMessageW
GetKeyboardState
PostQuitMessage
SetScrollInfo
ValidateRect
InflateRect
CreateDialogParamW
CheckMenuItem
GetCaretPos
GetForegroundWindow
DestroyWindow
GetInputState
WaitForInputIdle
OpenClipboard
RemoveMenu
GetIconInfo
SetWindowTextW
SetWindowsHookExW
GetDC
UnhookWindowsHookEx
GetWindow
GetWindowThreadProcessId
DestroyCursor
FindWindowExW
CreateMenu
DdeQueryStringW
LoadCursorW
GetClassInfoW
ShowWindow
LoadIconW
GetClipboardOwner
GetUpdateRgn
PeekMessageW
GetScrollInfo
GetKeyState
BeginPaint
IsWindowEnabled
GetSubMenu
GetSystemMetrics
PtInRect
DdeFreeDataHandle
UnregisterClassW
MessageBeep
IsZoomed
EnableWindow
DdeCreateStringHandleW
GetMessagePos
GetMenuItemInfoW
PostThreadMessageW
CloseClipboard
DrawFocusRect
DrawEdge
ToUnicode
CreatePopupMenu
SetWindowLongW

msvcrt

__mb_cur_max
__p__commode
__getmainargs
_fstat
__lc_codepage
_getpid
_access
_fdopen
__p__environ
__p__fmode
_close

oleaut32

SysAllocString
SysStringLen

comdlg32

ChooseFontW
CommDlgExtendedError
GetOpenFileNameW
ChooseColorW
GetSaveFileNameW

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a272bb877d373698f3d4ff2bf0da63c

Headers

File Characteristics

Imports

kernel32

mpr

ole32

user32

msvcrt

oleaut32

comdlg32

Sections

.text Size: 49KB - Virtual size: 48KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 8KB - Virtual size: 76KB

.rsrc Size: 18KB - Virtual size: 20KB

.text
Size: 49KB - Virtual size: 48KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 8KB - Virtual size: 76KB

.rsrc
Size: 18KB - Virtual size: 20KB