e0530fa65f382c4520bd3698092497513e006a7934d29e8854d21c094bdead52

Sharing

Copy URL

Twitter E-mail

General

Target

e0530fa65f382c4520bd3698092497513e006a7934d29e8854d21c094bdead52
Size

330KB
MD5

33b98c6a33970365e25ee13a68339c36
SHA1

3bc7fece576e3e46f31284cad7ee6453293d8479
SHA256

e0530fa65f382c4520bd3698092497513e006a7934d29e8854d21c094bdead52
SHA512

a66b0f70eb6d4a24e5be00f90da2c302995f2a8d4efccd9584103ca81b34b3c2e7b5cdefc71c53b65316b8836983020a75477890d8bb22968474287c4d7b321d
SSDEEP

6144:GaCLEhxwqz/Q5lEq20w7bJ8t9Kf+9k3deUuJ/MFW8zJJho:vhyqz0QH7bJ8tw8UU/MpPo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0530fa65f382c4520bd3698092497513e006a7934d29e8854d21c094bdead52

Files

e0530fa65f382c4520bd3698092497513e006a7934d29e8854d21c094bdead52
.exe windows:5 windows x86 arch:x86

26db8a61bfab0db0649dac0d2a63a57c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
FreeEnvironmentStringsA
OutputDebugStringA
SetThreadLocale
GetSystemDefaultLCID
CreateFileMappingA
FindClose
FindResourceW
VirtualProtect
DeleteCriticalSection
DeleteFileA
GetDiskFreeSpaceW
TlsFree
GetProcessVersion
RaiseException
CompareStringA
ResetEvent
EnumSystemLocalesW
GlobalUnlock
GlobalSize
FreeLibrary
SizeofResource
GlobalAlloc
GetCurrentThreadId
FormatMessageA
SetErrorMode
HeapAlloc
GlobalDeleteAtom
LoadLibraryExW
VirtualFree
IsDebuggerPresent
GetFullPathNameW
GetComputerNameW
UnhandledExceptionFilter
HeapFree
LeaveCriticalSection
CreateEventA
WideCharToMultiByte
lstrcmpiA
SetHandleCount
MapViewOfFileEx
lstrcpyW
SignalObjectAndWait
GlobalFree
SetFilePointer
ReadFile
VirtualQuery
FindFirstFileW
ResumeThread
GetStringTypeExW
GetOEMCP
GetExitCodeThread
FreeResource
IsValidLocale
LoadResource
GetCommandLineW
GetStdHandle
VirtualQueryEx
FormatMessageW
GetDateFormatW
WaitForSingleObject
FlushInstructionCache
CompareStringW
UnmapViewOfFile
WriteFile
GetFileType
ReleaseMutex
SetLastError
GetLocalTime
SetConsoleCtrlHandler
GetModuleHandleW
VirtualAlloc
GlobalFindAtomW
LCMapStringA
CreateEventW
IsDBCSLeadByteEx
EnumCalendarInfoW
WaitForMultipleObjectsEx
CloseHandle
GetModuleHandleA
TlsSetValue
LockResource
DebugBreak
EnterCriticalSection
lstrcpynW
CreateFileW
GetSystemInfo
CreateFileA
GetTimeZoneInformation
GlobalLock
GetProcessHeap
GlobalAddAtomW
lstrcpynA
LoadLibraryExA
SetThreadPriority
GetThreadLocale
SwitchToThread
GetUserDefaultLCID
LocalFree
SetEndOfFile
CreateThread
RtlUnwind
GetACP
TlsGetValue
lstrlenA
CreateMutexA
TlsAlloc
ExitThread
EnumSystemCodePagesW
lstrlenW
GetSystemDefaultLangID
GetCurrentProcess

user32

MapWindowPoints
IsZoomed
DrawFrameControl
IsDialogMessageW
GetForegroundWindow
DrawTextW
CharLowerBuffW
IsWindowUnicode
MapVirtualKeyW
DispatchMessageA
UpdateWindow
GetActiveWindow
OpenClipboard
SendMessageW
DefMDIChildProcW
SetClassLongW
RemoveMenu
EnableScrollBar
TranslateMDISysAccel
PeekMessageA
InflateRect
GetDC
SetScrollInfo
GetWindowLongA
GetMessageTime
DrawIcon
SetWindowPlacement
InvalidateRect
GetMenu
IntersectRect
UnhookWindowsHookEx
SetScrollRange
OffsetRect
GetWindow
GetKeyboardLayoutList
SetWindowsHookExW
EmptyClipboard
GetClassLongW
IsWindow
DestroyMenu
RedrawWindow
DestroyIcon
CharNextExA
GetSystemMetrics
ShowScrollBar
InsertMenuItemW
SetForegroundWindow
GetWindowThreadProcessId
SetTimer
ScreenToClient
GetCursor
GetSysColorBrush
WindowFromPoint
SendMessageA
SetCapture
SetWindowRgn
GetPropW
GetWindowPlacement
GetSystemMenu
GetMenuState
FillRect
GetMenuStringW
GetWindowRect
wsprintfA
GetSysColor
GetWindowTextW
ShowWindow
PostMessageA
GetScrollRange
GetMenuItemInfoW
EnumWindows
DefWindowProcW
SetRect
GetCapture
SetWindowPos
DrawIconEx
MsgWaitForMultipleObjectsEx
AdjustWindowRectEx
EnumThreadWindows
CallWindowProcW
FindWindowExW
SetWindowLongW
SystemParametersInfoW
CharNextW
ActivateKeyboardLayout
GetParent
GetScrollInfo
BeginPaint
GetKeyboardType
SetActiveWindow
UnregisterClassW
LoadBitmapW
CreateWindowExW
MessageBoxW
GetCursorPos
GetKeyNameTextW
DrawTextExW
EnableMenuItem
SystemParametersInfoA
ReleaseDC
WaitMessage
GetKeyboardState
IsChild
IsIconic
RegisterClipboardFormatW
ShowOwnedPopups
FindWindowA
GetMessagePos
MsgWaitForMultipleObjects
SetPropW
EndPaint
DrawMenuBar
CreateIcon
DrawEdge
LoadKeyboardLayoutW
GetSubMenu
GetDesktopWindow
GetClassNameA
CheckMenuItem
PtInRect
SetScrollPos
LoadStringW
PostQuitMessage
OpenInputDesktop
FindWindowW
InsertMenuW
GetMenuItemCount
ReleaseCapture
GetKeyboardLayout
LoadIconW
DestroyCursor
GetClassInfoW
SetWindowTextW
GetLastActivePopup
CallWindowProcA
SetMenu
CloseClipboard
SetCursor
ScrollWindow
MessageBeep
GetDCEx
CharLowerW
SetClipboardData
SetMenuItemInfoW
PeekMessageW
GetTopWindow
DrawFocusRect
GetMenuItemID
GetScrollPos
DeleteMenu
EnumChildWindows
TranslateMessage
GetKeyboardLayoutNameW
GetClipboardData
PostMessageW
TrackPopupMenu
GetWindowLongW
CreatePopupMenu
GetClientRect
CreateMenu
GetUserObjectInformationA
IsWindowVisible
LoadCursorW
DestroyWindow
RegisterWindowMessageW
RegisterClassW
SetFocus
DefFrameProcW
CharUpperBuffW
IsWindowEnabled
DispatchMessageW
EnableWindow
GetIconInfo
IsDialogMessageA
CallNextHookEx
RemovePropW
GetKeyState
GetFocus
SetWindowLongA
GetWindowDC
CloseDesktop
MessageBoxA
SetParent
ClientToScreen
FrameRect
KillTimer

comctl32

ImageList_GetBkColor
ImageList_Destroy
ImageList_GetDragImage
ImageList_SetImageCount
InitializeFlatSB
ImageList_SetIconSize
ImageList_DrawEx
ImageList_BeginDrag
ImageList_DragMove
FlatSB_GetScrollPos
FlatSB_SetScrollInfo
ImageList_Read
ImageList_Draw
_TrackMouseEvent
ImageList_GetImageCount
ImageList_EndDrag
FlatSB_SetScrollProp
ImageList_Remove
ImageList_DragLeave
ImageList_Create
FlatSB_GetScrollInfo
ImageList_GetIconSize
ImageList_Write
FlatSB_SetScrollPos
ImageList_Add
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_SetBkColor

gdi32

GetTextMetricsW
GetEnhMetaFileBits
CreateFontIndirectW
GetWinMetaFileBits
RestoreDC
CreateBrushIndirect
GetTextExtentPointW
CreatePenIndirect
GetSystemPaletteEntries
GetTextMetricsA
PlayEnhMetaFile
CreateBitmap
CreateRectRgn
GetDIBits
IntersectClipRect
SelectPalette
CreateHalftonePalette
SetBrushOrgEx
SetBkMode
DeleteObject
StretchBlt
RealizePalette
SetROP2
MaskBlt
SetEnhMetaFileBits
DeleteEnhMetaFile
GetDeviceCaps
SetViewportOrgEx
CreateSolidBrush
FrameRgn
GetRgnBox
GetEnhMetaFileDescriptionW
SetTextColor
GetCurrentPositionEx
SelectClipRgn
SelectObject
GetBitmapBits
SetWinMetaFileBits
ExtTextOutW
CopyEnhMetaFileW
GetStockObject
GetDCOrgEx
CreatePalette
ExcludeClipRect
GetTextExtentPoint32A
LineTo
CreateCompatibleBitmap
CreateDIBitmap
GetEnhMetaFilePaletteEntries
GetPixel
GetEnhMetaFileHeader
PatBlt
SetBkColor
GetBrushOrgEx
CloseEnhMetaFile
SetMapMode
TranslateCharsetInfo
SetWindowOrgEx
GetTextExtentPoint32W
SetDIBColorTable
CreateCompatibleDC
Rectangle
UnrealizeObject
GetObjectW
GetClipRgn
SetStretchBltMode
CreateDIBSection
GetWindowOrgEx
CreateEnhMetaFileW
SetPixel
DeleteDC
GetClipBox
RectVisible
SaveDC
GetViewportOrgEx
GetPaletteEntries
MoveToEx
LPtoDP
BitBlt
GetDIBColorTable

msimg32

AlphaBlend

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

advapi32

RegCloseKey
OpenProcessToken
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegQueryValueExA
RegOpenKeyExA
GetTokenInformation
RegOpenKeyExW
RegFlushKey
RegQueryValueExW
RegCreateKeyExW

ole32

CoGetClassObject
OleInitialize
CoTaskMemAlloc
IsAccelerator
ProgIDFromCLSID
OleDraw
OleSetMenuDescriptor
OleUninitialize
CoInitialize
CoUninitialize
StringFromCLSID
CreateStreamOnHGlobal
CoTaskMemFree
CoCreateInstance
IsEqualGUID

shell32

ShellExecuteA
ShellExecuteExA

oleaut32

SafeArrayUnaccessData
SysAllocStringLen
GetActiveObject
SafeArrayAccessData
SafeArrayCreate
VariantInit
SafeArrayGetUBound
VariantClear
SafeArrayGetElement
SafeArrayGetLBound
SafeArrayPutElement
GetErrorInfo
SafeArrayRedim
SafeArrayPtrOfIndex
SysReAllocStringLen
SysFreeString
SysAllocString
VariantCopy
VariantChangeType

iphlpapi

GetTcpTable
GetUdpTable
do_echo_rep
FlushIpNetTable
GetAdaptersInfo
Icmp6SendEcho2
InternalSetTcpEntry
IcmpSendEcho
NhpAllocateAndGetInterfaceInfoFromStack
GetUniDirectionalAdapterInfo

kbdcr

KbdLayerDescriptor

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 294KB - Virtual size: 982KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26db8a61bfab0db0649dac0d2a63a57c

Headers

File Characteristics

Imports

kernel32

user32

comctl32

gdi32

msimg32

version

advapi32

ole32

shell32

oleaut32

iphlpapi

kbdcr

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 294KB - Virtual size: 982KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 294KB - Virtual size: 982KB

.rsrc
Size: 512B - Virtual size: 4KB