dbca73f7fc02e8ee373cd9247a2f5dd5a78e28809b56dd0dce6ec2792b17250fN

Sharing

Copy URL

Twitter E-mail

General

Target

dbca73f7fc02e8ee373cd9247a2f5dd5a78e28809b56dd0dce6ec2792b17250fN
Size

348KB
MD5

bc739d4540c02ded8a0038f91e5f1130
SHA1

ab5b01e1eedc3cda7bd61ea9c8a9b7a20b91fb2a
SHA256

dbca73f7fc02e8ee373cd9247a2f5dd5a78e28809b56dd0dce6ec2792b17250f
SHA512

74a5099fd7d4c38852b48ebf7a519e71b005874ff9e63643fa4b9b3e20962d72c1ea8eba86116a5df4a100a92f39016fa0e11641c0a747bc3fce09f3c68aaa82
SSDEEP

6144:UmKm5IXPwlq6zayk5rmn8NC2UPFdZay/RSt/:0wlq6zayk5UrPDzRS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbca73f7fc02e8ee373cd9247a2f5dd5a78e28809b56dd0dce6ec2792b17250fN

Files

dbca73f7fc02e8ee373cd9247a2f5dd5a78e28809b56dd0dce6ec2792b17250fN
.exe windows:4 windows x86 arch:x86

1af71c48d2944148bd97699378aa0084

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
HeapFree
TerminateProcess
ExitProcess
HeapAlloc
GetACP
HeapReAlloc
HeapSize
GetTimeZoneInformation
CreateThread
ExitThread
GetSystemTime
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetLocalTime
UnhandledExceptionFilter
RtlUnwind
GetStartupInfoA
FileTimeToLocalFileTime
SetThreadPriority
GetStringTypeA
GetStringTypeW
Sleep
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
SetConsoleCtrlHandler
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FileTimeToSystemTime
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSize
GetFileAttributesA
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
SetErrorMode
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GetLastError
GlobalFlags
FormatMessageA
LocalFree
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SuspendThread
CreateEventA
lstrcpyA
VirtualAlloc
IsBadWritePtr
ResumeThread
GetModuleHandleA
GetProcAddress
SetEvent
WaitForSingleObject
CloseHandle
GetModuleFileNameA
GlobalAlloc
lstrcmpA
GetCurrentThread
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
MulDiv
SetLastError
LoadLibraryA
FreeLibrary
GetVersion
LCMapStringA
LCMapStringW
FatalAppExitA
SetUnhandledExceptionFilter
FindClose
LoadResource
FindFirstFileA
GetCommandLineA
lstrcpynA
GlobalLock
FindResourceA
LockResource
GlobalFree
GlobalUnlock

user32

SetRectEmpty
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
TabbedTextOutA
DrawTextA
GrayStringA
CharToOemA
OemToCharA
wvsprintfA
PostQuitMessage
ShowOwnedPopups
ValidateRect
TranslateMessage
GetMessageA
LoadStringA
CheckRadioButton
GetDlgItemInt
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
GetDesktopWindow
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
GetClassNameA
GetDialogBaseUnits
GetSysColorBrush
SetCapture
WaitMessage
GetWindowThreadProcessId
WindowFromPoint
InsertMenuA
GetMenuStringA
InflateRect
CharUpperA
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
DestroyMenu
SendDlgItemMessageA
EndDeferWindowPos
RegisterClassA
UpdateWindow
CheckDlgButton
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetDlgCtrlID
GetKeyState
DefWindowProcA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
SetWindowsHookExA
PostMessageA
GetWindowRect
UnhookWindowsHookEx
CallNextHookEx
CreatePopupMenu
DestroyIcon
GetCursorPos
DrawIconEx
PtInRect
GetAsyncKeyState
GetCaretPos
BeginPaint
EndPaint
KillTimer
MessageBoxA
GetSystemMenu
DeleteMenu
AppendMenuA
SetTimer
GetClientRect
LoadIconA
GetSystemMetrics
SetCursor
SendMessageA
InvalidateRect
GetSysColor
EnableWindow
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
MapWindowPoints
PeekMessageA
GetMenu
GetMenuItemCount
WinHelpA
wsprintfA
GetClassInfoA
LoadCursorA
GetWindowTextLengthA
CreateWindowExA
GetWindowTextA
UnregisterClassA

gdi32

CreateFontIndirectA
StretchBlt
GetDCOrgEx
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
DeleteDC
StartDocA
SaveDC
RestoreDC
SelectObject
GetStockObject
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
DeleteObject
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
CreateRectRgnIndirect
GetTextExtentPoint32A
GetTextMetricsA
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
CreateSolidBrush
GetObjectA
SetViewportOrgEx

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegDeleteValueA
RegOpenKeyA
RegDeleteKeyA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA

shell32

SHGetFileInfoA
DragFinish
DragAcceptFiles
Shell_NotifyIconA
ShellExecuteA
DragQueryFileA

comctl32

ImageList_Destroy
ImageList_Write
ord13
ord14
ord17
ImageList_Read
ImageList_Merge
ImageList_LoadImageA
ImageList_Create

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1af71c48d2944148bd97699378aa0084

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 236KB - Virtual size: 235KB

.rdata Size: 40KB - Virtual size: 37KB

.data Size: 16KB - Virtual size: 28KB

.idata Size: 16KB - Virtual size: 12KB

.rsrc Size: 16KB - Virtual size: 14KB

.reloc Size: 20KB - Virtual size: 18KB

.text
Size: 236KB - Virtual size: 235KB

.rdata
Size: 40KB - Virtual size: 37KB

.data
Size: 16KB - Virtual size: 28KB

.idata
Size: 16KB - Virtual size: 12KB

.rsrc
Size: 16KB - Virtual size: 14KB

.reloc
Size: 20KB - Virtual size: 18KB