4c4439370deff58dd568becc1b6cce9c800075d8fd244d12ebcf3091a870aa24N

Sharing

Copy URL Twitter E-mail

General

Target

4c4439370deff58dd568becc1b6cce9c800075d8fd244d12ebcf3091a870aa24N
Size

835KB
MD5

08c905f708f6365df995ee81a85e14b0
SHA1

889cd1d4cf75b27bc531a458a5c61a56ab5c44f3
SHA256

4c4439370deff58dd568becc1b6cce9c800075d8fd244d12ebcf3091a870aa24
SHA512

9b2ede03397122d4616776f761105e5f8368a80f241851d524eb53c68ade1dbe1e69a9ee20009905be895261483577b185dc2602c4634473b0ee4385de1b101b
SSDEEP

12288:zrezjJCwHB0Dlc9AO1blT8kAerVqm3qTLovP/6hgUOx+CxU6rCp8jq2biJp41C40:zruXiDlc9AOfRVJ37P/ugNBG6S9iW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c4439370deff58dd568becc1b6cce9c800075d8fd244d12ebcf3091a870aa24N

Files

4c4439370deff58dd568becc1b6cce9c800075d8fd244d12ebcf3091a870aa24N
.exe windows:5 windows x86 arch:x86

b8c8aada1c5292e419b25e515be35b91

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
DeleteCriticalSection
VirtualProtect
ExitProcess
CreateProcessW
GetFileAttributesExW
CloseHandle
OutputDebugStringW
LockResource
InterlockedCompareExchange
InterlockedExchange
VerSetConditionMask
DeviceIoControl
SetFilePointer
SizeofResource
GetLastError
HeapDestroy
GetProcAddress
LoadLibraryA
GetModuleFileNameW
GetExitCodeProcess
GlobalUnlock
HeapAlloc
GetCurrentProcessId
GetStartupInfoW
LeaveCriticalSection
OpenProcess
SetCurrentDirectoryW
LoadLibraryExW
DuplicateHandle
LocalFree
FindResourceW
SetUnhandledExceptionFilter
CreateToolhelp32Snapshot
MultiByteToWideChar
FreeLibrary
HeapSize
SetEvent
Sleep
InterlockedIncrement
FormatMessageW
Process32NextW
GetLogicalDriveStringsW
FindResourceExW
GetVersion
SetErrorMode
HeapSetInformation
GetFileSize
Thread32First
GetModuleHandleW
ResetEvent
GetFullPathNameW
GetSystemDirectoryW
LoadLibraryW
GetCurrentProcess
WriteFile
QueryPerformanceCounter
SetLastError
HeapReAlloc
GlobalFree
Thread32Next
LoadResource
Process32FirstW
GlobalLock
InterlockedDecrement
GetTickCount
RaiseException
ReadFile
GlobalAlloc
WaitForSingleObject
GetFileAttributesW
EnterCriticalSection
UnhandledExceptionFilter
CreateEventW
OpenEventW
GetSystemTimeAsFileTime
GetPrivateProfileIntW
WaitForMultipleObjects
MulDiv
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
TerminateProcess
VerifyVersionInfoW
HeapFree
GetProcessHeap
LocalAlloc
IsDebuggerPresent
CreateFileW
SetEndOfFile
QueryDosDeviceW

user32

SetTimer
ToUnicode
DestroyMenu
GetSysColor
SetWindowPos
CheckMenuRadioItem
VkKeyScanW
GetParent
CreatePopupMenu
DestroyIcon
GetCursorPos
AppendMenuW
InflateRect
ShowCursor
EnableMenuItem
IsWindow
GetDoubleClickTime
BeginPaint
MapWindowPoints
DrawIconEx
ShowCaret
ShowWindow
FillRect
GetMessageW
CreateDialogParamW
IsDialogMessageW
RegisterClipboardFormatW
GetMessagePos
UpdateWindow
DdeFreeDataHandle
CreateDialogIndirectParamW
GetClassInfoW
LoadIconW
InsertMenuW
SetScrollInfo
UnregisterClassW
RedrawWindow
RegisterWindowMessageW
PtInRect
HideCaret
LoadBitmapW
PostQuitMessage
GetDC
ModifyMenuW
EnumClipboardFormats
DdeCreateStringHandleW
DdeInitializeW
DrawIcon
TrackPopupMenu
GetWindowRect
DefWindowProcW
TranslateAcceleratorW
CreateWindowExW
IsClipboardFormatAvailable
SetWindowLongW
SendMessageW
IsZoomed
CreateIconIndirect
DdeNameService
BeginDeferWindowPos
SetCursorPos
RemoveMenu
PostMessageW
DdeFreeStringHandle
BringWindowToTop
SetWindowTextW
DrawEdge
MessageBoxW
SetWindowRgn
DrawStateW
SetMenu
InvalidateRect
GetMessageTime
DestroyCursor
GetClientRect
UnhookWindowsHookEx
CallWindowProcW
GetDesktopWindow
ChangeDisplaySettingsW
DrawFocusRect
PeekMessageW
SetClipboardData
LoadCursorFromFileW
GetWindowTextLengthW
SetWindowsHookExW
GetIconInfo
GetWindowDC
IsWindowEnabled
DdeConnect
GetWindowThreadProcessId
EnableWindow
DispatchMessageW
GetClipboardFormatNameW
ValidateRect
GetClipboardData
AdjustWindowRectEx
EmptyClipboard
GetKeyState
GetClassNameW
GetSystemMenu
DrawMenuBar
WaitForInputIdle
IsIconic
GetActiveWindow
DrawTextW
OffsetRect
EndDeferWindowPos
ChildWindowFromPoint
TranslateMessage
EnumWindows
DdeGetLastError
DrawFrameControl
GetUpdateRect
GetAsyncKeyState
EnumDisplaySettingsW
ClientToScreen
CreateMenu
CopyRect
SetCursor
WindowFromPoint
DdeCreateDataHandle
DestroyWindow
FindWindowExW
GetScrollInfo
MoveWindow
GetUpdateRgn
GetMenuItemInfoW
GetMenuItemCount
KillTimer
GetWindowLongW
GetWindow
GetForegroundWindow
GetKeyboardState
GetCapture
PostThreadMessageW
GetMenu
EnumThreadWindows
ExitWindowsEx
MsgWaitForMultipleObjects
SetForegroundWindow
InsertMenuItemW
GetSubMenu
GetFocus
ScreenToClient
DestroyAcceleratorTable
ReleaseDC
UnionRect
DdePostAdvise
FlashWindow
OpenClipboard
SetCapture
keybd_event
CloseClipboard
DdeGetData
ScrollWindow
GetMenuState
SetParent
SetFocus
CheckMenuItem
IsWindowVisible
LoadImageW
ReleaseCapture
CallNextHookEx
SystemParametersInfoW
MessageBeep
GetWindowTextW
DdeDisconnect
GetSystemMetrics
DdeClientTransaction
EndDialog
CreateAcceleratorTableW
SetMenuItemInfoW
EndPaint
DdeUninitialize
DeferWindowPos

gdi32

CloseEnhMetaFile
PlayEnhMetaFile
GetEnhMetaFileHeader
CreateDIBitmap
SetPixel
GetDeviceCaps
GdiFlush
CopyEnhMetaFileW
SetViewportOrgEx
MaskBlt
Rectangle
GetPixel
CreateDIBSection
GetRgnBox
SelectObject
ExtFloodFill
GetMetaFileBitsEx
SetBrushOrgEx
SetPolyFillMode
DeleteObject
CreateRectRgn
Polygon
CreateSolidBrush
GetEnhMetaFileW
GetPaletteEntries
GetBkColor
SetViewportExtEx
GetClipBox
PtInRegion
GetStockObject
SetBkColor
CreateCompatibleBitmap
StretchDIBits
GetTextExtentExPointW
GetTextExtentPoint32W
CreateBitmapIndirect
GetCharABCWidthsW
CreatePalette
SelectPalette
CreatePen
SaveDC
CreatePolygonRgn
SetTextColor
TextOutW
GetDIBits
RestoreDC
GetRegionData
CreateICW
ExtSelectClipRgn
BitBlt
PatBlt
SetROP2
GetNearestPaletteIndex
SetWindowExtEx
LineTo
SetStretchBltMode
CreateRectRgnIndirect
GetTextMetricsW
GetObjectW
EnumFontFamiliesExW
CreateHatchBrush
Polyline
CreateEnhMetaFileW
MoveToEx
SetBkMode
RoundRect
GetWinMetaFileBits
SetWinMetaFileBits
SetMetaFileBitsEx
RealizePalette
ExtCreatePen
DeleteDC
SetTextAlign
CreateBitmap
OffsetRgn
RectInRegion
DeleteEnhMetaFile
Arc
EqualRgn
Pie
SetWindowOrgEx
StretchBlt
CreateCompatibleDC
ExtCreateRegion
SetMapMode
CreatePatternBrush
Ellipse
GetDIBColorTable
GetSystemPaletteEntries
CombineRgn
ExcludeClipRect
SelectClipRgn
GetTextColor
CreateFontIndirectW

comdlg32

ChooseColorW
GetOpenFileNameW
CommDlgExtendedError
ChooseFontW
GetSaveFileNameW

advapi32

RegQueryInfoKeyW
RegSetValueExW
RegCreateKeyW
LookupPrivilegeValueW
RegDeleteKeyW
RegQueryValueExW
RegEnumValueW
RegOpenKeyExW
OpenProcessToken
RegCloseKey
RegEnumKeyW
RegOpenKeyExA
GetUserNameW
RegDeleteValueW
AdjustTokenPrivileges
RegQueryValueExA

shell32

ShellExecuteExW
SHGetMalloc
ExtractIconW
DragAcceptFiles
Shell_NotifyIconW
SHGetIconOverlayIndexW
SHFileOperationW
SHGetFileInfoW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFolderPathW
DragQueryPoint
SHGetSpecialFolderLocation
DragQueryFileW
DragFinish
ExtractIconExW

oleaut32

SysStringLen
SysAllocString

wldap32

ord307

Sections

.text
Size: 532KB - Virtual size: 532KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 154KB - Virtual size: 5.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 101B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b8c8aada1c5292e419b25e515be35b91

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

wldap32

Sections

.text Size: 532KB - Virtual size: 532KB

.rdata Size: 119KB - Virtual size: 119KB

.data Size: 154KB - Virtual size: 5.4MB

.tls Size: - Virtual size: 101B

.rsrc Size: 17KB - Virtual size: 16KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 532KB - Virtual size: 532KB

.rdata
Size: 119KB - Virtual size: 119KB

.data
Size: 154KB - Virtual size: 5.4MB

.tls
Size: - Virtual size: 101B

.rsrc
Size: 17KB - Virtual size: 16KB

.reloc
Size: 10KB - Virtual size: 9KB