b8764ce3617405e9491b7e78e36a5f4c191c7acd3a9fdf5e1e4964099b0629c6

Sharing

Copy URL Twitter E-mail

General

Target

b8764ce3617405e9491b7e78e36a5f4c191c7acd3a9fdf5e1e4964099b0629c6
Size

8.7MB
MD5

3def7eb6086c18b8caa417842e1320a6
SHA1

fab648c0e4418ef533b1ab3e6b2366d62454d80e
SHA256

b8764ce3617405e9491b7e78e36a5f4c191c7acd3a9fdf5e1e4964099b0629c6
SHA512

74aad4c19a3c26978e01a9766b49747ad8a3810e66e23001430473e391bef47a870fef2c283c668436feb953666eda0de5baebc169bd74967652b894452265c2
SSDEEP

98304:ItZU8ryZsdZon27HTHXICmC1Km50Y0ADZRH9rLg7n2RQ4Oc13v2zSyopzckB:I48rp1HDFm2DZjL+2RQvI+Lopwk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8764ce3617405e9491b7e78e36a5f4c191c7acd3a9fdf5e1e4964099b0629c6

Files

b8764ce3617405e9491b7e78e36a5f4c191c7acd3a9fdf5e1e4964099b0629c6
.exe windows:5 windows x86 arch:x86

e536f4704772f8d0c041fbacb6806583

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundW

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

mpr

WNetGetUniversalNameW
WNetGetConnectionW

comctl32

_TrackMouseEvent
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_DrawEx
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_Remove
ImageList_ReplaceIcon
ImageList_SetImageCount
ImageList_SetOverlayImage
ImageList_AddMasked

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

wininet

InternetCloseHandle
HttpAddRequestHeadersW
HttpOpenRequestW
HttpQueryInfoW
HttpSendRequestW
InternetCanonicalizeUrlW
InternetConnectW
InternetCrackUrlW
InternetGetLastResponseInfoW
InternetOpenW
InternetQueryDataAvailable
InternetReadFile
InternetSetFilePointer
InternetWriteFile

kernel32

IsValidCodePage
IsValidLocale
LCMapStringW
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocalReAlloc
LockFileEx
LockResource
lstrcatW
lstrcmpA
lstrcmpiW
lstrcmpW
lstrcpynW
lstrcpyW
lstrlenW
MapViewOfFile
MoveFileA
MoveFileW
MulDiv
MultiByteToWideChar
OpenProcess
OutputDebugStringA
HeapReAlloc
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSemaphore
RemoveDirectoryW
ResetEvent
ResumeThread
SearchPathW
SetEndOfFile
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesA
SetFileAttributesW
SetFileTime
SetLastError
SetStdHandle
SetThreadAffinityMask
SetThreadPriority
SetUnhandledExceptionFilter
SetVolumeLabelW
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
UnlockFileEx
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObjectEx
WideCharToMultiByte
WinExec
WriteConsoleW
WriteFile
WritePrivateProfileStringW
WriteProcessMemory
HeapFree
HeapDestroy
HeapCreate
HeapCompact
HeapAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalGetAtomNameW
GlobalFree
GlobalFlags
GlobalFindAtomW
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetWindowsDirectoryW
GetVolumeInformationW
GetVersionExW
GetVersionExA
GetUserDefaultLCID
GetUserDefaultLangID
GetTimeZoneInformation
GetTimeFormatW
GetThreadTimes
GetThreadPriority
GetThreadLocale
GetTempPathW
GetTempPathA
GetTempFileNameW
GetSystemTimeAsFileTime
GetSystemTime
GetSystemInfo
GetSystemDirectoryW
GetSystemDefaultLCID
IsProcessorFeaturePresent
GetStringTypeExW
GetStdHandle
GetShortPathNameW
GetProfileIntW
GetProcessHeap
GetProcessAffinityMask
GetProcAddress
GetPrivateProfileStringW
GetPrivateProfileSectionNamesW
GetPrivateProfileIntW
GetOEMCP
GetNumberFormatW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetLogicalDriveStringsW
GetLogicalDrives
GetLocalTime
GetLocaleInfoW
GetLastError
GetFullPathNameW
GetFullPathNameA
GetFileTime
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExW
GetFileAttributesA
GetEnvironmentVariableW
GetEnvironmentStringsW
GetDriveTypeW
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetDiskFreeSpaceA
GetDateFormatW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentDirectoryW
GetCurrentDirectoryA
GetCurrencyFormatW
GetCPInfo
GetConsoleMode
GetConsoleCP
GetComputerNameW
GetComputerNameA
GetCompressedFileSizeW
GetCommandLineW
GetACP
FreeLibraryAndExitThread
FreeLibrary
FreeEnvironmentStringsW
FormatMessageW
FormatMessageA
FlushViewOfFile
FlushFileBuffers
FindResourceW
FindResourceExW
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
ExitThread
ExitProcess
EnumSystemLocalesW
EnumResourceTypesW
EnumResourceNamesW
EnumResourceLanguagesW
DuplicateHandle
DeviceIoControl
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateSemaphoreW
CreateProcessW
CreateMutexW
CreateFileW
CreateFileMappingW
CreateFileA
CreateEventW
CreateDirectoryW
CreateDirectoryA
CopyFileW
CompareStringW
CompareStringA
CompareFileTime
CloseHandle
GetStartupInfoW
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
GetFileType
RtlUnwind
GetStartupInfoA
GetVersion
GetCurrentProcess
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
SetHandleCount
GetEnvironmentVariableA
InterlockedDecrement
InterlockedIncrement
GetStringTypeA
LCMapStringA
IsBadStringPtrW
HeapValidate
GetStringTypeW
HeapSize
OutputDebugStringW

user32

ScreenToClient
ScrollWindow
SendDlgItemMessageA
SendMessageTimeoutW
SendMessageW
SendNotifyMessageW
SetActiveWindow
SetCapture
SetCaretPos
SetClassLongW
SetClipboardData
SetCursor
SetCursorPos
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuDefaultItem
SetMenuItemBitmaps
SetMenuItemInfoW
SetParent
SetPropW
SetRect
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowsHookExW
SetWindowTextW
ShowCaret
ShowOwnedPopups
ShowScrollBar
ShowWindow
SubtractRect
SystemParametersInfoW
TabbedTextOutW
ToUnicodeEx
TrackPopupMenu
TrackPopupMenuEx
TranslateAcceleratorW
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassW
UpdateWindow
ValidateRect
VkKeyScanExW
WaitMessage
WindowFromDC
WindowFromPoint
WinHelpW
wsprintfW
wvsprintfW
MessageBoxA
PostMessageW
PeekMessageW
OpenInputDesktop
OpenClipboard
OffsetRect
MoveWindow
mouse_event
ModifyMenuW
MessageBoxW
MessageBeep
MapWindowPoints
MapVirtualKeyW
MapVirtualKeyExW
MapDialogRect
LookupIconIdFromDirectoryEx
LockWindowUpdate
LoadStringW
LoadMenuW
LoadImageW
LoadIconW
LoadCursorW
LoadBitmapW
LoadAcceleratorsW
KillTimer
IsZoomed
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsRectEmpty
IsMenu
IsIconic
IsDialogMessageW
IsClipboardFormatAvailable
IsChild
IsCharLowerW
RemovePropW
InvertRect
InvalidateRgn
InvalidateRect
IntersectRect
InsertMenuW
InsertMenuItemW
InflateRect
HideCaret
GrayStringW
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowDC
GetWindowContextHelpId
GetUserObjectInformationW
GetUpdateRect
GetTopWindow
GetTabbedTextExtentW
GetTabbedTextExtentA
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropW
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessageW
GetMessageTime
GetMessagePos
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyNameTextW
GetKeyboardState
GetKeyboardLayoutList
GetIconInfo
GetFocus
GetDoubleClickTime
GetDlgItem
GetDlgCtrlID
GetDialogBaseUnits
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetCursor
GetClipboardFormatNameW
GetClipboardData
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetClassInfoExW
GetCaretPos
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FindWindowW
FillRect
EqualRect
EnumWindows
EnumChildWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextExW
DrawStateW
DrawMenuBar
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DestroyCaret
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterClipboardFormatW
RegisterClassW
RedrawWindow
PtInRect
PostThreadMessageW
IsCharAlphaNumericW
DestroyAcceleratorTable
DeleteMenu
DefWindowProcW
DefMDIChildProcW
DefFrameProcW
DeferWindowPos
CreateWindowExW
CreatePopupMenu
CreateMenu
CreateIconIndirect
CreateIconFromResourceEx
CreateDialogIndirectParamW
CreateAcceleratorTableW
CountClipboardFormats
CopyRect
CopyImage
CopyIcon
CopyAcceleratorTableW
CloseDesktop
CloseClipboard
ClientToScreen
CheckMenuItem
CheckDlgButton
CharUpperW
CharUpperBuffW
CharNextW
CharLowerBuffW
CallWindowProcW
CallNextHookEx
BringWindowToTop
BeginPaint
BeginDeferWindowPos
AppendMenuW
ReuseDDElParam
UnpackDDElParam
GetKeyState
PostQuitMessage
GetForegroundWindow

gdi32

ExtCreateRegion
ExtFloodFill
ExtSelectClipRgn
ExtTextOutW
FillPath
FillRgn
FrameRgn
GdiFlush
GetBitmapBits
GetBitmapDimensionEx
GetBkColor
GetBkMode
GetBoundsRect
GetCharWidthW
GetClipBox
GetClipRgn
GetCurrentObject
GetCurrentPositionEx
GetDeviceCaps
GetMapMode
GetNearestColor
GetNearestPaletteIndex
GetObjectA
GetObjectType
GetObjectW
GetPaletteEntries
GetPixel
GetPolyFillMode
GetRegionData
GetRgnBox
GetROP2
GetStockObject
GetStretchBltMode
GetSystemPaletteEntries
GetTextAlign
GetTextCharsetInfo
GetTextColor
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextFaceW
CreateRectRgnIndirect
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
IntersectClipRect
LineTo
LPtoDP
MoveToEx
CreateDIBitmap
ExtCreatePen
OffsetRgn
OffsetViewportOrgEx
OffsetWindowOrgEx
PatBlt
PolyBezierTo
Polyline
PtInRegion
PtVisible
RealizePalette
Rectangle
RectVisible
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectObject
SelectPalette
SetAbortProc
SetArcDirection
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBColorTable
SetMapMode
SetPaletteEntries
SetPixel
SetPixelFormat
SetPixelV
SetPolyFillMode
SetRectRgn
SetROP2
SetStretchBltMode
SetTextAlign
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StartDocW
StartPage
StretchDIBits
StrokeAndFillPath
StrokePath
TextOutW
UnrealizeObject
CreateRectRgn
CreatePolyPolygonRgn
CreatePolygonRgn
CreatePatternBrush
CloseFigure
ExcludeClipRect
Escape
EnumFontFamiliesW
EnumFontFamiliesExW
EndPath
EndPage
EndDoc
Ellipse
DPtoLP
DeleteObject
DeleteDC
CreateSolidBrush
OffsetClipRgn
CreateRoundRectRgn
ChoosePixelFormat
BitBlt
BeginPath
CreatePalette
CreateHatchBrush
CreateFontIndirectW
CreateEllipticRgnIndirect
CreateEllipticRgn
GetTextMetricsW
AbortDoc
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap
CopyMetaFileW
CombineRgn
CreateDIBSection

winspool.drv

StartPagePrinter
OpenPrinterW
GetJobW
DocumentPropertiesW
ClosePrinter
DeviceCapabilitiesW
EnumPrintersW

comdlg32

CommDlgExtendedError

advapi32

RegSetValueW
RegSetValueExW
RegRestoreKeyW
RegQueryValueW
RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyW
RegOpenKeyW
RegOpenKeyExW
RegOpenKeyExA
RegEnumValueW
RegEnumKeyW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyW
RegCreateKeyExW
RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
LookupAccountSidW
IsTextUnicode
GetUserNameW
GetUserNameA
GetTokenInformation
GetFileSecurityW
AdjustTokenPrivileges
SetFileSecurityW

shell32

ExtractIconW
DragQueryFileW
ShellExecuteW
StrStrIW
DragFinish
DragAcceptFiles
ShellExecuteExW
ExtractIconExW

ole32

OleDuplicateData
OleFlushClipboard
OleGetClipboard
OleGetIconOfClass
OleInitialize
OleIsCurrentClipboard
OleLoad
OleLockRunning
OleRegGetUserType
OleRun
OleSave
OleSaveToStream
OleSetClipboard
OleSetContainedObject
OleSetMenuDescriptor
OleDraw
OleUninitialize
PropVariantClear
ReadClassStg
ReadFmtUserTypeStg
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
SetConvertStg
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
StringFromCLSID
WriteClassStg
WriteClassStm
WriteFmtUserTypeStg
OleCreateStaticFromData
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleCreateLinkToFile
OleCreateLinkFromData
OleCreateFromFile
OleCreateFromData
IsAccelerator
DoDragDrop
GetHGlobalFromILockBytes
CreateStreamOnHGlobal
CreateItemMoniker
CreateILockBytesOnHGlobal
CreateGenericComposite
CreateFileMoniker
CreateBindCtx
CoUninitialize
CoTreatAsClass
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
CoRegisterMessageFilter
CoLockObjectExternal
CoGetClassObject
CoFreeUnusedLibraries
CoDisconnectObject
CoCreateInstance
CoCreateGuid
CLSIDFromString
OleTranslateAccelerator
CLSIDFromProgID

shlwapi

PathCompactPathExW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathRemoveFileSpecW
PathStripToRootW
StrFormatByteSizeW
StrFromTimeIntervalW
PathIsUNCA
PathCombineW

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e536f4704772f8d0c041fbacb6806583

Headers

File Characteristics

Imports

winmm

imm32

mpr

comctl32

version

wininet

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

shlwapi

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 12KB - Virtual size: 32KB

.rsrc Size: 6.4MB - Virtual size: 6.4MB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 12KB - Virtual size: 32KB

.rsrc
Size: 6.4MB - Virtual size: 6.4MB