21288e10f35fd98053254a8613f4725899a8fe7f4e8f99f6c7c999a8f04353c7

Sharing

Copy URL

Twitter E-mail

General

Target

21288e10f35fd98053254a8613f4725899a8fe7f4e8f99f6c7c999a8f04353c7
Size

765KB
MD5

dce39ede1995a15dca04f2522f9230b5
SHA1

1ac9ce4b452516a9275af6be23707bdaf079adeb
SHA256

21288e10f35fd98053254a8613f4725899a8fe7f4e8f99f6c7c999a8f04353c7
SHA512

2fd0a275447224acd790f5d70051d40b3586e20b8635f9b6fee458f05e4bb9d131471372ade1d3b9fe71b9d620f57f1240f7fdf00660287c5d20bc3bc18d77fa
SSDEEP

12288:bQur9GPiVn6F7vjKhgQ7a0RyJQrWIxtvBVkxaHEf+czCMU8wTywDL2XtWmD:bOvBGhgQ7ajJQrjxtvBVqEUeIeLmD

Score

N/A

Malware Config

Signatures

Files

21288e10f35fd98053254a8613f4725899a8fe7f4e8f99f6c7c999a8f04353c7
.exe windows x86

bf316fb493b9ce0020f3b386a8bf08c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesW
lstrlenA
lstrcmpA
GlobalAlloc
GlobalUnlock
GlobalLock
lstrcpynA
QueryPerformanceFrequency
QueryPerformanceCounter
SetFileAttributesW
LocalAlloc
GlobalFree
GlobalReAlloc
WideCharToMultiByte
InterlockedDecrement
GetLongPathNameW
lstrlenW
lstrcpyW
GetTickCount
lstrcmpW
LocalFree
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
CreateFileA
FlushFileBuffers
SetStdHandle
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
InitializeCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsBadCodePtr
InterlockedExchange
LoadLibraryA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
TerminateProcess
LCMapStringW
LCMapStringA
VirtualQuery
GetSystemInfo
VirtualProtect
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
GetModuleFileNameA
GetSystemTimeAsFileTime
GetVersionExA
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapSize
HeapFree
RaiseException
HeapAlloc
HeapReAlloc
RtlUnwind
ExitProcess
SetFilePointer
LoadLibraryExW
EnumResourceNamesW
GetVersionExW
CompareFileTime
FileTimeToSystemTime
CloseHandle
GetFileTime
GetFileSize
CreateFileW
MoveFileW
DeleteFileW
GetTempFileNameW
ReleaseMutex
WaitForSingleObject
CreateThread
CreateMutexW
Sleep
MulDiv
GetProcAddress
GetModuleHandleW
IsBadReadPtr
GetCurrentProcess
lstrcpynW
lstrcatW
CreateDirectoryW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetModuleFileNameW
LoadLibraryW
LockResource
LoadResource
SizeofResource
FindResourceW
GetSystemDirectoryW
GetLastError
ExpandEnvironmentStringsW
GetCurrentThreadId
lstrcpyA
WriteFile
ReadFile
lstrcmpiA
CopyFileW
FreeLibrary
MultiByteToWideChar
GetCommandLineW
CreateProcessW
GetCurrentProcessId
FindFirstFileW
FindNextFileW
FindClose
lstrcatA
DeleteFileA
lstrcmpiW

user32

CloseClipboard
EmptyClipboard
GetClipboardData
OpenClipboard
IsClipboardFormatAvailable
GetQueueStatus
PeekMessageW
IsDialogMessageW
GetClassLongW
GetParent
GetDlgItem
SystemParametersInfoW
GetSysColor
LoadImageW
GetKeyState
wsprintfW
GetActiveWindow
MessageBoxA
ReleaseCapture
SetCapture
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetDoubleClickTime
SetRectEmpty
RedrawWindow
RegisterClassExW
CreateIconFromResourceEx
FillRect
SetSysColors
CopyRect
SetWindowPos
SetPropW
RemovePropW
GetPropW
ShowWindow
SetWindowRgn
SetClipboardData
RegisterHotKey
UnregisterHotKey
DrawIconEx
GetIconInfo
DrawFocusRect
DrawFrameControl
GetWindowTextW
wvsprintfW
SetDlgItemTextW
ScreenToClient
GetClientRect
BringWindowToTop
ShowOwnedPopups
FindWindowW
EnumWindows
GetWindow
GetClassNameW
KillTimer
GetCursorPos
SetTimer
SendMessageW
SendDlgItemMessageW
IsDlgButtonChecked
CheckDlgButton
EndPaint
BeginPaint
InvalidateRgn
CreateDialogParamW
CheckRadioButton
InvalidateRect
DrawTextW
GetMenuDefaultItem
SetMenuDefaultItem
SetWindowLongW
CallWindowProcW
IsMenu
DestroyIcon
EnableMenuItem
DialogBoxParamW
LoadIconW
RegisterClassW
CreateWindowExW
GetSystemMenu
SetMenuItemInfoW
RemoveMenu
InsertMenuItemW
GetMessageW
TranslateMessage
DispatchMessageW
EndDialog
RegisterWindowMessageW
EnumDisplaySettingsW
SetForegroundWindow
GetWindowLongW
IsIconic
IsWindowVisible
GetWindowThreadProcessId
DefWindowProcW
InflateRect
OffsetRect
MessageBoxW
SetWindowTextW
DestroyWindow
PostQuitMessage
LoadCursorW
SetCursor
GetSystemMetrics
ExitWindowsEx
UnionRect
EnumDisplayMonitors
GetMonitorInfoW
IntersectRect
EqualRect
IsRectEmpty
CreatePopupMenu
AppendMenuW
TrackPopupMenu
DestroyMenu
keybd_event
GetDC
ReleaseDC
GetDesktopWindow
LockWindowUpdate
PostMessageW
GetWindowRect
PtInRect
SetRect

gdi32

GetCharABCWidthsW
GetTextMetricsW
SelectClipRgn
GetCurrentObject
EnumFontFamiliesW
RoundRect
SetPixel
ExtCreateRegion
CreateSolidBrush
CreatePen
Rectangle
GetPixel
CombineRgn
GetDIBits
CreateDIBSection
CreateCompatibleBitmap
BitBlt
CreateBitmap
SetBkColor
SetBkMode
SetTextColor
GetTextExtentPoint32W
AddFontResourceW
CreateFontIndirectA
GetObjectW
RemoveFontResourceW
GetStockObject
GetDeviceCaps
CreateFontIndirectW
CreateRectRgn
CreateCompatibleDC
SelectObject
DeleteDC
DeleteObject

comdlg32

ChooseColorW
GetOpenFileNameW

advapi32

RegQueryValueExW
RegCloseKey
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegOpenKeyExW
RegSetValueExW
RegDeleteValueW

shell32

SHBrowseForFolderW
SHAppBarMessage
SHGetDesktopFolder
SHGetMalloc
ShellExecuteExW
SHGetSpecialFolderLocation
SHGetFolderPathW
ExtractIconExW
SHGetFileInfoW
DragQueryFileW
SHGetPathFromIDListW
Shell_NotifyIconW

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
StringFromCLSID
StringFromGUID2
RegisterDragDrop
CoCreateInstance
CoCreateGuid
ReleaseStgMedium

winmm

mixerSetControlDetails
mixerGetControlDetailsW
mixerGetLineInfoW
mixerGetLineControlsW
mixerClose
mixerGetNumDevs
mixerOpen
mciSendStringW
PlaySoundW
mixerGetDevCapsW

comctl32

ImageList_Draw
_TrackMouseEvent
ord17

shlwapi

PathFileExistsW
PathIsURLW
StrTrimW
PathIsDirectoryW
PathAppendW
PathRemoveArgsW
PathGetArgsW
ColorRGBToHLS
ColorHLSToRGB
PathIsRelativeW

wininet

InternetCrackUrlW
InternetOpenW
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
HttpQueryInfoW
InternetReadFile
InternetCloseHandle

oleaut32

VariantClear
SysFreeString
SysAllocString

Sections

.text
Size: 401KB - Virtual size: 401KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 13KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bf316fb493b9ce0020f3b386a8bf08c3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

winmm

comctl32

shlwapi

wininet

oleaut32

Sections

.text Size: 401KB - Virtual size: 401KB

.rdata Size: 65KB - Virtual size: 65KB

.data Size: 13KB - Virtual size: 115KB

.rsrc Size: 284KB - Virtual size: 284KB

.text
Size: 401KB - Virtual size: 401KB

.rdata
Size: 65KB - Virtual size: 65KB

.data
Size: 13KB - Virtual size: 115KB

.rsrc
Size: 284KB - Virtual size: 284KB