bc35adfa17106a8352e64fda2f87a6a807fd324df95c22b8a4ad44639aaf94c8N

Sharing

Copy URL Twitter E-mail

General

Target

bc35adfa17106a8352e64fda2f87a6a807fd324df95c22b8a4ad44639aaf94c8N
Size

1.7MB
MD5

fbdf679dcd0d7d917902ccaa05d20cf0
SHA1

8e1866c3896f381220d3113f7017f7502b6fafff
SHA256

bc35adfa17106a8352e64fda2f87a6a807fd324df95c22b8a4ad44639aaf94c8
SHA512

4afc22dcfa5b464cbc124f742257fa4b555e487ebee79394298142c8c6126bb2d3785e737650736216e8a4bd052867465991fdac13284e58fd4ef6351a19da62
SSDEEP

24576:m8I6ImGEusFtvrLdB0Dc6FumcNV2KPh+f5MT5:mLrMVd+xFuFV2KPh+f5MN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc35adfa17106a8352e64fda2f87a6a807fd324df95c22b8a4ad44639aaf94c8N

Files

bc35adfa17106a8352e64fda2f87a6a807fd324df95c22b8a4ad44639aaf94c8N
.exe windows:4 windows x86 arch:x86

e422fcbb43593f3bdbaae818ecef510b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

winmm

PlaySoundA

mpr

WNetOpenEnumA
WNetEnumResourceA
WNetCloseEnum
WNetAddConnectionA
WNetCancelConnectionA
WNetGetConnectionA

kernel32

DeleteCriticalSection
TlsAlloc
TlsFree
LeaveCriticalSection
GlobalReAlloc
InitializeCriticalSection
GlobalHandle
EnterCriticalSection
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
TlsSetValue
RtlUnwind
SetEnvironmentVariableA
GetCommandLineA
ExitProcess
GetSystemTime
GetLocalTime
IsBadReadPtr
HeapFree
HeapAlloc
RaiseException
SetStdHandle
HeapReAlloc
GetACP
CreateThread
GetFileType
LocalAlloc
HeapSize
SizeofResource
GlobalUnlock
GetVersionExA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadCodePtr
CompareStringA
CompareStringW
GetTempPathA
FreeLibrary
GlobalFlags
SetEvent
WaitForSingleObject
ResetEvent
WaitForMultipleObjects
FindNextChangeNotification
PulseEvent
WideCharToMultiByte
DeleteFileA
GetFileTime
GetFileSize
SetEndOfFile
GetFullPathNameA
FlushFileBuffers
UnlockFile
LockFile
FileTimeToLocalFileTime
WriteFile
DuplicateHandle
GetCurrentThread
FileTimeToSystemTime
ResumeThread
SuspendThread
SetThreadPriority
LocalFree
MulDiv
CreateEventA
InterlockedIncrement
InterlockedDecrement
GlobalGetAtomNameA
GetVersion
GetCurrentThreadId
GlobalFindAtomA
lstrcmpiA
GlobalAddAtomA
FindResourceA
GlobalDeleteAtom
LockResource
DosDateTimeToFileTime
LoadResource
GetTimeZoneInformation
LoadLibraryExA
SetFileTime
SetErrorMode
GlobalLock
GetUserDefaultLangID
SetHandleCount
lstrcmpA
GlobalMemoryStatus
GetLastError
GetSystemInfo
WinExec
MultiByteToWideChar
GetCurrentProcess
GetStartupInfoA
CreateProcessA
GlobalAlloc
GlobalFree
GetSystemDirectoryA
GetModuleHandleA
RemoveDirectoryA
GetStdHandle
CreateSemaphoreA
FindFirstChangeNotificationA
SetLastError
SetFilePointer
ReadFile
MoveFileExA
GetModuleFileNameA
GetLogicalDrives
GetDiskFreeSpaceA
CreateFileA
CloseHandle
Sleep
GetProcAddress
OutputDebugStringA
lstrcpynA
GetWindowsDirectoryA
CreateDirectoryA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetFileAttributesA
WritePrivateProfileStringA
CopyFileA
LoadLibraryA
MoveFileA
GetShortPathNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
ExitThread
TerminateProcess
FindCloseChangeNotification
FindClose
GetProfileStringA
FindNextFileA
GetDriveTypeA
GetVolumeInformationA
GetLogicalDriveStringsA
GetFileAttributesA
FindFirstFileA
lstrcatA
lstrcpyA
lstrlenA

user32

CheckMenuItem
SetMenuItemBitmaps
EnableMenuItem
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
LoadStringA
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
GrayStringA
DestroyMenu
ValidateRect
GetMessageA
PostQuitMessage
SetCursor
InflateRect
GetClassNameA
PtInRect
GetSysColorBrush
IsDialogMessageA
MoveWindow
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
GetClassInfoA
GetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
SetDlgItemTextA
GetFocus
LockWindowUpdate
DdeCreateDataHandle
wsprintfA
DdeCreateStringHandleA
DdeConnect
DdeFreeStringHandle
DdeClientTransaction
DdeGetData
DdeDisconnect
DdeUninitialize
GetDesktopWindow
ExitWindowsEx
SetRect
InSendMessage
RedrawWindow
LoadCursorA
PeekMessageA
TranslateMessage
DispatchMessageA
IsWindow
IsWindowVisible
SetCaretPos
InvalidateRect
GetCaretPos
MapDialogRect
GetCursorPos
ScreenToClient
OffsetRect
SystemParametersInfoA
UpdateWindow
SetTimer
KillTimer
FindWindowA
SetForegroundWindow
ShowWindow
IsIconic
GetSystemMetrics
GetClientRect
GetAsyncKeyState
PostMessageA
LoadMenuA
GetSubMenu
GetWindowRect
ClientToScreen
GetParent
LoadBitmapA
CharUpperA
GetDC
ReleaseDC
DrawFocusRect
GetSysColor
FillRect
SendMessageA
DrawIcon
DrawTextA
DestroyIcon
LoadIconA
EnableWindow
GetWindowLongA
SetWindowLongA
SetFocus
AdjustWindowRectEx
GetScrollInfo
GetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
GetCapture
WinHelpA
GetWindowTextA
SendDlgItemMessageA
MapWindowPoints
CopyRect
IntersectRect
GetWindowPlacement
EndDialog
MessageBoxA
SetWindowTextA
SetActiveWindow
DdeInitializeA
GetNextDlgTabItem
IsWindowUnicode
CharNextA
DefDlgProcA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn

gdi32

SetTextColor
SetBkMode
GetTextMetricsA
SelectObject
CreateFontA
CreateFontIndirectA
AddFontResourceA
CreateScalableFontResourceA
RemoveFontResourceA
BitBlt
CreateCompatibleDC
GetObjectA
SetDIBitsToDevice
RealizePalette
CreateDIBitmap
GetDeviceCaps
CreatePalette
GetTextExtentPoint32A
GetClipBox
SetBkColor
CreateBitmap
SaveDC
DeleteDC
RestoreDC
GetStockObject
SelectPalette
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
IntersectClipRect
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
PatBlt
CreateSolidBrush
DeleteObject
GetTextExtentPointA

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegDeleteKeyA
OpenProcessToken
LookupPrivilegeValueA
RegEnumValueA
InitiateSystemShutdownA
OpenSCManagerA
CloseServiceHandle
RegDeleteValueA
RegQueryInfoKeyA
GetUserNameA
RegOpenKeyExA
RegCloseKey
AdjustTokenPrivileges
RegEnumKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA

shell32

ShellExecuteA
SHGetPathFromIDListA
Shell_NotifyIconA
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetDataFromIDListA
SHGetMalloc

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageA
ord17
PropertySheetA
ImageList_Draw
ImageList_GetIconSize
ImageList_DrawEx
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
ImageList_Add

ole32

CoInitialize
OleUninitialize
OleInitialize
CoUninitialize
CoCreateInstance

Sections

.text
Size: 740KB - Virtual size: 736KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 752KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e422fcbb43593f3bdbaae818ecef510b

Headers

File Characteristics

Imports

version

winmm

mpr

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

Sections

.text Size: 740KB - Virtual size: 736KB

.rdata Size: 140KB - Virtual size: 137KB

.data Size: 44KB - Virtual size: 70KB

.idata Size: 12KB - Virtual size: 10KB

.rsrc Size: 40KB - Virtual size: 36KB

.reloc Size: 752KB - Virtual size: 752KB

.text
Size: 740KB - Virtual size: 736KB

.rdata
Size: 140KB - Virtual size: 137KB

.data
Size: 44KB - Virtual size: 70KB

.idata
Size: 12KB - Virtual size: 10KB

.rsrc
Size: 40KB - Virtual size: 36KB

.reloc
Size: 752KB - Virtual size: 752KB