cf2d8c2236617468d3acb3aead8401bbc0edc21c35ca2f82a4f353f754373d87N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

cf2d8c2236617468d3acb3aead8401bbc0edc21c35ca2f82a4f353f754373d87N.exe
Size

2.5MB
MD5

3a700e5e273e1fe0e8bba96beab1e9a0
SHA1

92ccbdb3831879089f30415661168ed21661df6a
SHA256

cf2d8c2236617468d3acb3aead8401bbc0edc21c35ca2f82a4f353f754373d87
SHA512

82a70388c7c580bb52a4274646cb9f8e18ed4dda4454c20101b9ea2f689d20d16950b982a6cf581e7ed9ab63ec7ecfb9b7f5d77891bb6a50368f76f38ee72cf7
SSDEEP

49152:raqrY0s+3jv3+6ebrvsvxWWXXLm1OOmP36446G/areJJwLQvbWIqni:+30166EoAWrm1OOmPq5dtwubWIqni

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf2d8c2236617468d3acb3aead8401bbc0edc21c35ca2f82a4f353f754373d87N.exe

Files

cf2d8c2236617468d3acb3aead8401bbc0edc21c35ca2f82a4f353f754373d87N.exe
.exe windows:4 windows x86 arch:x86

b2bcd4f63df9f6c1961eaf0862497525

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msacm32

acmStreamUnprepareHeader
acmStreamPrepareHeader
acmStreamConvert
acmStreamSize
acmStreamClose
acmStreamOpen
acmFormatSuggest

sqlite3

sqlite3_errmsg

winmm

waveOutOpen
waveOutGetPosition
waveOutGetNumDevs
waveOutGetDevCapsA
waveOutClose
waveInUnprepareHeader
waveInStart
waveInReset
waveInPrepareHeader
waveInOpen
waveOutPrepareHeader
waveInGetDevCapsA
waveInClose
waveInAddBuffer
timeSetEvent
timeKillEvent
timeGetTime
timeGetDevCaps
timeEndPeriod
timeBeginPeriod
sndPlaySoundA
PlaySoundA
waveOutReset
waveOutUnprepareHeader
waveOutWrite
waveInGetNumDevs
mciGetErrorStringA
mciSendCommandA
mixerClose
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerGetNumDevs
mixerOpen
mixerSetControlDetails

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

comctl32

_TrackMouseEvent
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_GetBkColor
ImageList_DrawIndirect
ImageList_DrawEx
ImageList_Destroy
FlatSB_GetScrollProp

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

LCMapStringA
LCMapStringW
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocalLock
LocalReAlloc
IsBadReadPtr
LocalUnlock
LockFile
LockResource
lstrcatA
lstrcmpA
lstrcmpiA
lstrcmpW
lstrcpyA
lstrcpynA
lstrlenA
lstrlenW
MoveFileA
MoveFileExA
MulDiv
MultiByteToWideChar
OpenFile
OpenProcess
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadFile
RemoveDirectoryA
ResetEvent
ResumeThread
SearchPathA
SetCurrentDirectoryA
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetHandleCount
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SetVolumeLabelA
SizeofResource
Sleep
SystemTimeToFileTime
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
VirtualAlloc
VirtualFree
VirtualLock
VirtualProtect
VirtualQuery
VirtualUnlock
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileStringA
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
HeapSize
HeapReAlloc
HeapFree
HeapCreate
HeapAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalMemoryStatus
GlobalLock
GlobalHandle
GlobalGetAtomNameA
GlobalFree
GlobalFlags
GlobalFindAtomA
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
IsValidCodePage
GetVolumeInformationA
GetVersionExA
GetTimeZoneInformation
GetTimeFormatA
GetThreadPriority
GetThreadLocale
GetTempPathA
GetTempFileNameA
GetSystemTimeAsFileTime
GetSystemInfo
GetSystemDirectoryW
GetSystemDirectoryA
GetSystemDefaultLangID
GetStringTypeW
GetStringTypeExA
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetShortPathNameA
GetProfileIntA
GetProcessHeap
GetProcessAffinityMask
GetPrivateProfileStringA
GetPrivateProfileSectionNamesA
GetPrivateProfileSectionA
GetOEMCP
GetModuleHandleW
GetModuleFileNameW
GetModuleFileNameA
GetLogicalDriveStringsA
GetLocalTime
GetLocaleInfoA
GetLastError
GetFullPathNameA
GetFileType
GetFileTime
GetFileAttributesExA
GetFileAttributesA
GetExitCodeThread
GetExitCodeProcess
GetEnvironmentVariableA
GetEnvironmentStringsW
GetDriveTypeA
GetDiskFreeSpaceA
GetDateFormatA
GetCurrentThreadId
GetCurrentProcessId
GetCurrentDirectoryA
GetCPInfo
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetComputerNameA
GetACP
FreeResource
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageA
FlushFileBuffers
FindResourceExA
FindResourceA
FindNextFileA
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExpandEnvironmentStringsA
ExitThread
ExitProcess
EnumResourceTypesA
EnumResourceNamesA
EnumResourceLanguagesA
DuplicateHandle
DosDateTimeToFileTime
DeviceIoControl
DeleteFileA
DeleteCriticalSection
CreateThread
CreateProcessA
CreateFileA
CreateEventA
CreateDirectoryA
CopyFileA
ConvertDefaultLocale
CompareStringW
CompareStringA
CloseHandle
GetStartupInfoW
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
GetModuleHandleA
GetProcAddress
FreeLibrary
IsDBCSLeadByte
IsBadWritePtr
GetWindowsDirectoryA
IsBadStringPtrA
RtlUnwind
GetVersion
GetCurrentProcess
GetEnvironmentStrings
HeapDestroy
LocalSize

user32

LoadImageA
LoadMenuA
LockWindowUpdate
LookupIconIdFromDirectoryEx
MapDialogRect
MapVirtualKeyA
MapVirtualKeyExA
MapWindowPoints
MessageBeep
MessageBoxA
ModifyMenuA
MoveWindow
MsgWaitForMultipleObjects
OemToCharA
OemToCharBuffA
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClassExA
RegisterClassW
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
SendDlgItemMessageA
SendMessageA
SendMessageTimeoutA
SetActiveWindow
SetCapture
SetClassLongA
SetClipboardData
SetCursor
SetCursorPos
SetDlgItemTextA
SetFocus
SetForegroundWindow
SetMenuDefaultItem
SetMenuItemBitmaps
SetParent
SetPropA
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowsHookExA
SetWindowTextA
ShowCaret
ShowOwnedPopups
ShowScrollBar
ShowWindow
SubtractRect
SystemParametersInfoA
TabbedTextOutA
ToAsciiEx
TrackPopupMenuEx
TranslateAcceleratorA
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UpdateWindow
ValidateRect
WaitForInputIdle
WaitMessage
WindowFromPoint
WinHelpA
wsprintfA
IsIconic
IsDialogMessageA
IsClipboardFormatAvailable
IsChild
IsCharLowerA
InvertRect
InvalidateRgn
InvalidateRect
IntersectRect
InsertMenuItemA
InsertMenuA
InflateRect
GrayStringA
GetWindowThreadProcessId
GetWindowTextLengthA
GetWindowTextA
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowDC
GetUpdateRect
LoadIconA
GetTabbedTextExtentA
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
IsWindowVisible
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropA
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessagePos
GetMessageA
GetMenuStringW
GetMenuStringA
GetMenuState
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetKeyNameTextA
GetKeyboardState
GetKeyboardLayoutList
GetKeyboardLayout
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDCEx
GetCursorPos
GetClientRect
GetClassNameA
GetClassLongA
GetClassInfoExA
GetClassInfoA
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FindWindowA
FillRect
ExitWindowsEx
EqualRect
EnumWindows
EnumChildWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextExA
DrawTextA
DrawStateA
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DrawEdge
DrawAnimatedRects
DispatchMessageA
DialogBoxParamA
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DestroyAcceleratorTable
DeleteMenu
DefWindowProcW
DefWindowProcA
DefMDIChildProcW
DefMDIChildProcA
DefFrameProcW
DefFrameProcA
DefDlgProcW
DefDlgProcA
CreateWindowExA
CreatePopupMenu
CreateMenu
CreateIconIndirect
CreateIconFromResourceEx
CreateDialogIndirectParamA
CreateAcceleratorTableA
CopyRect
CopyImage
CopyIcon
CopyAcceleratorTableA
CloseWindow
CloseClipboard
ClipCursor
ClientToScreen
CheckRadioButton
CheckMenuItem
CheckDlgButton
CharUpperBuffA
CharUpperA
CharToOemA
CharPrevA
CharNextA
CharLowerBuffA
CallWindowProcW
LoadCursorA
LoadBitmapA
LoadAcceleratorsA
KillTimer
GetTopWindow
IsZoomed
IsWindowUnicode
CallWindowProcA
CallNextHookEx
BringWindowToTop
BeginPaint
BeginDeferWindowPos
AppendMenuA
AdjustWindowRectEx
ReuseDDElParam
UnpackDDElParam
HideCaret
IsWindowEnabled
IsRectEmpty
GetSubMenu
IsMenu
GetMessageTime

gdi32

CreateScalableFontResourceA
CreateRoundRectRgn
CreateRectRgnIndirect
CreatePolygonRgn
CreateHalftonePalette
CreateHatchBrush
CreatePalette
CreatePatternBrush
CreatePen
CreateFontIndirectA
CreateFontA
CreateEllipticRgn
CreateDIBSection
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile
DeleteMetaFile
DeleteObject
DPtoLP
Ellipse
EndDoc
EndPage
EndPath
EnumFontFamiliesA
CreateCompatibleBitmap
EnumFontFamiliesExA
Escape
ExcludeClipRect
ExtCreateRegion
ExtFloodFill
ExtSelectClipRgn
ExtTextOutA
ExtTextOutW
FillPath
FillRgn
FrameRgn
GdiFlush
GetBitmapBits
GetBkColor
GetBkMode
CreateDIBitmap
GetCharWidthA
GetClipBox
GetClipRgn
GetCurrentObject
GetCurrentPositionEx
GetDCOrgEx
GetDeviceCaps
GetDIBits
GetEnhMetaFileA
GetEnhMetaFileHeader
GetMapMode
GetMetaFileA
GetMetaFileBitsEx
GetNearestPaletteIndex
GetObjectA
GetObjectType
GetPaletteEntries
GetPixel
GetRgnBox
GetStockObject
GetStretchBltMode
GetSystemPaletteEntries
GetTextAlign
GetTextCharsetInfo
GetTextColor
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextFaceA
GetTextMetricsA
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
IntersectClipRect
LineTo
LPtoDP
MoveToEx
OffsetRgn
OffsetViewportOrgEx
OffsetWindowOrgEx
PlayEnhMetaFile
PolyBezierTo
Polygon
Polyline
PtInRegion
PtVisible
RealizePalette
Rectangle
RectVisible
RemoveFontResourceA
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBColorTable
SetMapMode
SetPaletteEntries
SetPixel
SetPixelV
SetPolyFillMode
SetRectRgn
SetROP2
SetStretchBltMode
SetTextAlign
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SetWinMetaFileBits
StartDocA
StartPage
StretchDIBits
StrokeAndFillPath
StrokePath
TextOutA
CreateDCA
CreateBitmap
CopyMetaFileA
CombineRgn
CloseFigure
BitBlt
BeginPath
AddFontResourceA
GetBoundsRect
AbortDoc
CreateCompatibleDC

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

comdlg32

GetSaveFileNameA
GetFileTitleA

advapi32

GetFileSecurityA
EqualSid
EnumServicesStatusA
DeleteService
CreateServiceA
ControlService
CloseServiceHandle
AllocateAndInitializeSid
AdjustTokenPrivileges
FreeSid
GetServiceDisplayNameA
GetTokenInformation
GetUserNameA
IsValidSid
LookupAccountNameA
LookupAccountSidA
LookupPrivilegeValueA
OpenProcessToken
OpenSCManagerA
StartServiceA
SetFileSecurityA
RegSetValueExA
RegSetValueA
RegQueryValueExA
RegQueryValueA
RegQueryInfoKeyA
RegOpenKeyExA
RegOpenKeyA
RegEnumValueA
RegEnumKeyExA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegCreateKeyA
RegConnectRegistryA
RegCloseKey
QueryServiceStatus
OpenThreadToken
OpenServiceA

shell32

DragFinish
ExtractIconA
ExtractIconExA
DragQueryFileA

ole32

IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleDuplicateData
OleFlushClipboard
OleGetClipboard
OleInitialize
OleIsCurrentClipboard
DoDragDrop
OleSetClipboard
OleTranslateAccelerator
OleUninitialize
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
CoUninitialize
CoTaskMemFree
CoRegisterMessageFilter
OleLockRunning
CoLockObjectExternal
CoInitialize
CoGetClassObject
CoFreeUnusedLibraries
CoDisconnectObject
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
CoTaskMemAlloc

shlwapi

PathFindExtensionA
PathIsUNCA
PathRemoveFileSpecW
PathStripToRootA
PathFindFileNameA

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 291KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2bcd4f63df9f6c1961eaf0862497525

Headers

File Characteristics

Imports

msacm32

sqlite3

winmm

imm32

comctl32

version

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

shlwapi

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rdata Size: 20KB - Virtual size: 20KB

.data Size: 12KB - Virtual size: 28KB

.rsrc Size: 291KB - Virtual size: 291KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 20KB - Virtual size: 20KB

.data
Size: 12KB - Virtual size: 28KB

.rsrc
Size: 291KB - Virtual size: 291KB