07b81657a69fc1e87b9d403f2e263038e5589fff396d1aca92c891bc0d6d8401N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

07b81657a69fc1e87b9d403f2e263038e5589fff396d1aca92c891bc0d6d8401N.exe
Size

740KB
MD5

91d6ad508d38a998de24a89171bb6d10
SHA1

6cb4bfc018e7ec0c60216c43d9faee66b4a0c368
SHA256

07b81657a69fc1e87b9d403f2e263038e5589fff396d1aca92c891bc0d6d8401
SHA512

93ba5d41d72b634b7c714bba5845482eb019177b51525b0d514b680aadeeae983a5801c92c7f7676c2f6131475c9c1a46abd38517165430f21c00cfeef48c610
SSDEEP

12288:53X+nxll0T7S4d+XMk4Fy2QHAC35lduV89S/3ZUYHEUjROzfDa05lzCMNJMP0iLD:RuxV4d+XMkCyLzldE89ZYHvVO3aH0iLD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
07b81657a69fc1e87b9d403f2e263038e5589fff396d1aca92c891bc0d6d8401N.exe

Files

07b81657a69fc1e87b9d403f2e263038e5589fff396d1aca92c891bc0d6d8401N.exe
.exe windows:4 windows x86 arch:x86

0393f4899f8bc8736b704093f2e4aa8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glGenTextures
glGetError
glEnd
glTexImage2D
glDeleteTextures
glViewport
glMatrixMode
glLoadIdentity
glDrawBuffer
wglGetCurrentContext
wglDeleteContext
wglCreateContext
wglMakeCurrent
glClear
glTranslated
glFlush
glLightfv
glLightModelf
glClearColor
glClearDepth
glBlendFunc
glTexParameterf
glTexEnvf
glShadeModel
glPolygonMode
glDisable
glEnable
glPolygonOffset
glIsList
glCallList
glDeleteLists
glGenLists
glNewList
glNormal3f
glTexCoord2f
glEndList
glPushMatrix
glTranslatef
glScalef
glRotatef
glPopMatrix
glColor3ub
glBegin
glVertex3f
glBindTexture

glu32

gluNewQuadric
gluSphere
gluPerspective

kernel32

TlsSetValue
LocalReAlloc
TlsGetValue
GetCPInfo
GetOEMCP
SizeofResource
GetCurrentDirectoryA
GetFileSize
LocalFileTimeToFileTime
SystemTimeToFileTime
SetErrorMode
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTickCount
RtlUnwind
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapFree
RaiseException
TerminateProcess
SetStdHandle
GetFileType
HeapReAlloc
HeapSize
GetACP
GetTimeZoneInformation
EnterCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
DeleteCriticalSection
GetStringTypeW
Sleep
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
TlsAlloc
GetProfileStringA
InterlockedExchange
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GetProcAddress
LoadLibraryW
SetCurrentDirectoryA
GlobalUnlock
GlobalLock
GlobalAlloc
lstrlenA
lstrcpyA
GetVersion
GlobalAddAtomA
GlobalGetAtomNameA
lstrcpynA
lstrcatA
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
lstrcmpiA
GetCurrentThreadId
LockResource
LoadResource
FindResourceA
FreeLibrary
LoadLibraryA
GlobalFree
lstrcmpA
GetCurrentThread
GetModuleFileNameA
CloseHandle
InitializeCriticalSection
LocalAlloc
GlobalFlags
GetProcessVersion
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
MulDiv
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
FormatMessageA
LocalFree
GetLastError
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetStringTypeA

user32

GetNextDlgGroupItem
MessageBeep
FindWindowA
GetTabbedTextExtentA
RegisterClipboardFormatA
PostThreadMessageA
GetDCEx
InvertRect
InflateRect
GetClassNameA
GetSysColorBrush
CharUpperA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
FillRect
LoadCursorA
DestroyCursor
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
ShowOwnedPopups
PostQuitMessage
EndDialog
CreateDialogIndirectParamA
SetRect
GetCursorPos
ClientToScreen
WindowFromPoint
KillTimer
SetTimer
GetSystemMenu
DeleteMenu
AppendMenuA
IsRectEmpty
SetParent
PtInRect
IsZoomed
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
DispatchMessageA
CopyAcceleratorTableA
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
RegisterClassA
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
DestroyWindow
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetSystemMetrics
GetLastActivePopup
IsWindowVisible
IsIconic
GetFocus
EqualRect
CopyRect
GetDlgItem
GetKeyState
LoadStringA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
LoadStringW
UpdateWindow
EnableWindow
GetDlgCtrlID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
LoadIconA
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
ShowWindow
GetDesktopWindow
GetWindow
IsWindowEnabled
CharNextA
DestroyIcon
GetMenuStringA
InsertMenuA
DeferWindowPos
LockWindowUpdate
SetCursor
PeekMessageA
GetClientRect
GetDC
ReleaseDC
SetCapture
ReleaseCapture
InvalidateRect
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetWindowRect
GetSubMenu
GetMenuItemCount
GetMenu
BringWindowToTop
CreateWindowExA
DefFrameProcA
TranslateMDISysAccel
TranslateAcceleratorA
DrawMenuBar
SendMessageA
DefMDIChildProcA
IsWindow
SetWindowLongA
GetWindowLongA
SetWindowPos
RedrawWindow
AdjustWindowRectEx
GetMenuItemID
GetParent
wsprintfA
GetActiveWindow
RegisterWindowMessageA
SetRectEmpty
LoadAcceleratorsA
PostMessageA
GetCapture
ScreenToClient

gdi32

CreateCompatibleDC
CreateCompatibleBitmap
DeleteObject
GetCharWidthA
CreateFontA
GetDeviceCaps
PatBlt
GetStockObject
Rectangle
DPtoLP
CreatePen
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
StartDocA
SetAbortProc
CreateDCA
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
StretchDIBits
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateFontIndirectA
BitBlt
GetMapMode
SetRectRgn
CombineRgn
CreateRectRgnIndirect
GetTextColor
GetBkColor
LPtoDP
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
DeleteDC
GetTextMetricsA
SelectObject
GetTextExtentPoint32A
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetPixel
ChoosePixelFormat
DescribePixelFormat
SetPixelFormat
GetCurrentPositionEx
CreateDIBitmap
GetTextExtentPointA
SwapBuffers

comdlg32

GetSaveFileNameA
PrintDlgA
GetOpenFileNameA
GetFileTitleA
CommDlgExtendedError

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegSetValueExA
RegQueryValueA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegCloseKey

shell32

SHGetFileInfoA
DragAcceptFiles
DragQueryFileA
DragFinish
ShellExecuteW
ExtractIconA

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringLen

Sections

.text
Size: 276KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 376KB - Virtual size: 374KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0393f4899f8bc8736b704093f2e4aa8a

Headers

File Characteristics

Imports

opengl32

glu32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 276KB - Virtual size: 273KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 16KB - Virtual size: 30KB

.rsrc Size: 376KB - Virtual size: 374KB

.text
Size: 276KB - Virtual size: 273KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 16KB - Virtual size: 30KB

.rsrc
Size: 376KB - Virtual size: 374KB