36abec58c85b12fd59130fe4e7e9accdc5ba61820528a8bae9f3a3d8dcb9bb8a

Sharing

Copy URL

Twitter E-mail

General

Target

36abec58c85b12fd59130fe4e7e9accdc5ba61820528a8bae9f3a3d8dcb9bb8a
Size

1016KB
MD5

8d67e898e564bf0bf8e1ee82035e53a5
SHA1

074eab2cc3024e927b9be29da1f917e6ef81b5ad
SHA256

36abec58c85b12fd59130fe4e7e9accdc5ba61820528a8bae9f3a3d8dcb9bb8a
SHA512

6520d76a57826ec31f44f0ca0fcd2c76c0d8690c509988d4084e18409dc1f075deeee2d54cf55226b883eebd1c510ef692c03f6a1ef06248c2bc3e4d1058ba22
SSDEEP

12288:ZJ0drLtPuBU1IIY4Q9ii2KpFOPkaLRM5Qm3zr/8YqX5owRxN4lOYqC1iDsv3Q9t0:ZmUIYr9iiTgFdM+QwDuwRxN4ls

Score

N/A

Malware Config

Signatures

Files

36abec58c85b12fd59130fe4e7e9accdc5ba61820528a8bae9f3a3d8dcb9bb8a
.exe windows x86

a2d9d1ec2885a5f010d588066ffe2d8b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FindFirstUrlCacheEntryW
DeleteUrlCacheEntryW
FindCloseUrlCache
InternetSetOptionW
FindNextUrlCacheEntryW
GetUrlCacheEntryInfoW

shlwapi

PathRemoveExtensionW
SHDeleteKeyW
PathFindFileNameW
PathIsUNCW
PathFindExtensionW
PathStripToRootW

url

InetIsOffline

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

kernel32

ExitProcess
ExitThread
HeapAlloc
HeapReAlloc
VirtualAlloc
GetSystemInfo
VirtualQuery
SetStdHandle
GetFileType
TerminateProcess
HeapSize
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
HeapFree
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
IsBadWritePtr
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetDriveTypeA
SetEnvironmentVariableA
RtlUnwind
GetStartupInfoW
SetErrorMode
GetCurrentDirectoryW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
FindResourceExW
GetTickCount
LocalFileTimeToFileTime
CreateFileW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetStringTypeExW
MoveFileW
GlobalFlags
lstrcmpiW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
GetCurrentThread
lstrcmpiA
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
FindFirstFileW
FileTimeToLocalFileTime
FindNextFileW
FindClose
VirtualProtect
GetVersion
GlobalGetAtomNameW
lstrcmpA
SystemTimeToFileTime
FileTimeToSystemTime
GetDiskFreeSpaceW
GetFullPathNameW
GetFileTime
SetFileTime
GetFileAttributesW
CreateEventW
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
lstrlenA
GetModuleHandleA
lstrcatW
lstrcmpW
GetVersionExA
SetLastError
MulDiv
lstrcpyW
GlobalAlloc
lstrcpynW
GlobalFree
FreeResource
LoadLibraryA
GetTempPathW
GetTempFileNameW
GetShortPathNameW
GetModuleHandleW
GetSystemDirectoryW
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
DeleteFileW
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
CreateProcessW
ExpandEnvironmentStringsW
GetModuleFileNameW
CloseHandle
LoadLibraryW
GetProcAddress
WideCharToMultiByte
GetLastError
CopyFileW
CreateThread
InterlockedDecrement
lstrlenW
MultiByteToWideChar
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
FreeLibrary
FindResourceW
LoadResource
LockResource
SizeofResource
GetCommandLineW

user32

GetSysColorBrush
GetDCEx
LockWindowUpdate
CharUpperW
CharNextW
RegisterClipboardFormatW
SetParent
PostThreadMessageW
SetWindowContextHelpId
MapDialogRect
InflateRect
SetRect
SetMenuItemBitmaps
ModifyMenuW
EnableMenuItem
CheckMenuItem
ShowWindow
SetWindowTextW
IsDialogMessageW
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
TabbedTextOutW
GetMessageW
TranslateMessage
ValidateRect
WinHelpW
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
GetClassInfoExW
GetClassLongW
SetPropW
GetPropW
RemovePropW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
MessageBoxW
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetClassInfoW
RegisterClassW
SetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetMenuStringW
GetMenuItemID
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindowEnabled
EndDialog
UnregisterClassW
PostQuitMessage
OpenClipboard
GetClipboardData
CloseClipboard
EnumWindows
SendNotifyMessageW
GetClassNameW
SendMessageTimeoutW
TrackPopupMenuEx
GetMenuCheckMarkDimensions
SystemParametersInfoW
wsprintfW
RegisterWindowMessageW
SetMenuItemInfoW
FillRect
DrawTextW
TrackPopupMenu
DestroyMenu
LoadStringW
DestroyIcon
SetWindowPos
IsClipboardFormatAvailable
SetForegroundWindow
InsertMenuW
GetMenuItemInfoW
GetMenuItemCount
DeleteMenu
CreatePopupMenu
CopyRect
GetSystemMetrics
SetWindowLongW
MoveWindow
MessageBeep
OffsetRect
SetActiveWindow
ReleaseDC
GetDC
GetCapture
WindowFromPoint
GetSysColor
GetWindowLongW
GetParent
InvalidateRect
UpdateWindow
ShowOwnedPopups
GetNextDlgGroupItem
IsZoomed
GetAsyncKeyState
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsW
InsertMenuItemW
SetRectEmpty
SetMenu
TranslateAcceleratorW
TranslateMDISysAccel
BringWindowToTop
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
DrawStateW
EnumChildWindows
IsWindow
PtInRect
LoadIconW
GetWindow
LoadBitmapW
GetCursorPos
LoadMenuW
ReleaseCapture
ScreenToClient
SetCapture
KillTimer
SetTimer
ClientToScreen
PostMessageW
AppendMenuW
SetCursor
LoadCursorW
DrawIconEx
LoadImageW
GetKeyState
GetFocus
IsChild
RedrawWindow
IsWindowVisible
GetClientRect
GetWindowRect
GetMenu
GetSubMenu
GetDlgItem
EnableWindow
SendMessageW
SetWindowRgn
DrawIcon
GetNextDlgTabItem
UnionRect
FindWindowW
InvalidateRgn
CopyAcceleratorTableW
GetMenuState
IsRectEmpty
EqualRect

gdi32

GetBkColor
CreateRectRgnIndirect
PatBlt
GetRgnBox
CreateEllipticRgn
DPtoLP
LPtoDP
Ellipse
CreateCompatibleBitmap
GetTextMetricsW
StretchDIBits
GetCharWidthW
CreateFontW
SetRectRgn
CombineRgn
GetTextColor
EnumFontFamiliesExW
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
CreateBitmap
CreatePatternBrush
RectVisible
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutW
GetDeviceCaps
GetCurrentObject
SelectObject
SetBkColor
SetTextColor
CreateSolidBrush
BitBlt
CreateCompatibleDC
GetTextExtentPoint32W
GetStockObject
GetObjectW
DeleteObject
GetMapMode
CreateFontIndirectW
IntersectClipRect
ExcludeClipRect
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetClipBox
TextOutW

comdlg32

GetSaveFileNameW
CommDlgExtendedError
GetFileTitleW
PrintDlgW
GetOpenFileNameW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCreateKeyW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegEnumKeyExW
RegQueryInfoKeyW
RegQueryValueExA
RegOpenKeyExA
RegSetValueW
RegOpenKeyW
SetFileSecurityW
GetFileSecurityW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegCloseKey
RegDeleteValueW

shell32

SHGetSpecialFolderLocation
DragFinish
DragQueryFileW
Shell_NotifyIconW
DuplicateIcon
SHGetMalloc
ExtractIconW
SHBrowseForFolderW
SHGetPathFromIDListW
SHChangeNotify
ShellExecuteW
DragAcceptFiles
ExtractIconExW
SHGetDesktopFolder
SHGetFileInfoW

comctl32

ImageList_AddMasked
ImageList_GetIcon
ImageList_Draw
ImageList_SetBkColor
ord17
ImageList_Destroy
ImageList_Create
ImageList_GetImageInfo
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW

oledlg

OleUIBusyW

ole32

CoRegisterMessageFilter
StgOpenStorageOnILockBytes
CLSIDFromProgID
CoGetClassObject
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
CoCreateInstance
CoTaskMemFree
CoUninitialize
CoInitialize
CoFreeLibrary
CoLoadLibrary
CoTaskMemAlloc
CLSIDFromString
OleFlushClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
StgCreateDocfileOnILockBytes

oleaut32

SysAllocStringLen
OleCreateFontIndirect
SafeArrayCreateVector
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
VariantChangeType
SysStringLen
VariantInit
SysStringByteLen
SysAllocStringByteLen
SysAllocString
VariantClear
SysFreeString

ws2_32

WSAStartup
WSACleanup

Sections

.text
Size: 504KB - Virtual size: 502KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 280KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a2d9d1ec2885a5f010d588066ffe2d8b

Headers

File Characteristics

Imports

wininet

shlwapi

url

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 504KB - Virtual size: 502KB

.rdata Size: 156KB - Virtual size: 154KB

.data Size: 12KB - Virtual size: 25KB

.rsrc Size: 280KB - Virtual size: 276KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 504KB - Virtual size: 502KB

.rdata
Size: 156KB - Virtual size: 154KB

.data
Size: 12KB - Virtual size: 25KB

.rsrc
Size: 280KB - Virtual size: 276KB

.rmnet
Size: 60KB - Virtual size: 60KB