5b306051572e98d941361eeeadc36d7e5b86d3dd77cc7509d3b31d0ea72bd560

Sharing

Copy URL

Twitter E-mail

General

Target

5b306051572e98d941361eeeadc36d7e5b86d3dd77cc7509d3b31d0ea72bd560
Size

1.1MB
MD5

e62f8a85b1e75c93e6c2243a5dbf1231
SHA1

b886d3d8ccb08fce8a3552908c52753bf803d2d9
SHA256

5b306051572e98d941361eeeadc36d7e5b86d3dd77cc7509d3b31d0ea72bd560
SHA512

b118870a51e5ddee68d44adf868c8508c6479bc3d44ed794161c36b0cf786c2ccfd7695dacb3b5206c622c4ff68247a1e3b880db11d2f6acd6800fb7b3731934
SSDEEP

24576:4tqwlHgKWTKR4oYRYsE3fZlmwxFea/ZDO9PX0K75dDl4WnmF:AvlH49zafZlmCFhZmdDl4Wnm

Score

N/A

Malware Config

Signatures

Files

5b306051572e98d941361eeeadc36d7e5b86d3dd77cc7509d3b31d0ea72bd560
.exe windows x86

7580066a1cbf553532b8627f2046b213

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempFileNameW
SetVolumeLabelW
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
HeapDestroy
CreateMutexW
GetProfileStringW
GetLocaleInfoW
GetNumberFormatW
GetPrivateProfileSectionW
WritePrivateProfileSectionW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetFullPathNameW
GetDiskFreeSpaceW
SystemTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetUserDefaultLangID
ExitProcess
GetTimeFormatW
GetDateFormatW
GetUserDefaultLCID
EnumDateFormatsW
EnumTimeFormatsW
Sleep
GetShortPathNameW
GetPrivateProfileStringW
GetLocalTime
SizeofResource
GetSystemDirectoryW
GetFileSize
WaitForMultipleObjects
PeekNamedPipe
ReadFile
CreateProcessW
SetEvent
WaitForSingleObject
TerminateThread
CreatePipe
DuplicateHandle
CreateEventW
GetLastError
GetCurrentProcessId
CreateThread
MulDiv
GetTimeZoneInformation
lstrcpynA
GetLogicalDrives
InitializeCriticalSection
DeleteCriticalSection
GlobalHandle
FreeResource
GetCurrentProcess
FlushInstructionCache
CompareStringW
SetLastError
lstrcpyW
FindResourceW
LoadResource
LockResource
GetLogicalDriveStringsW
GetDriveTypeW
GetFileAttributesW
lstrcmpiW
lstrcmpW
lstrcatW
FindFirstFileW
FindNextFileW
FindClose
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
CopyFileW
CreateDirectoryW
GetTempPathW
GetModuleFileNameW
CreateFileW
WideCharToMultiByte
WriteFile
CloseHandle
RemoveDirectoryW
SetFileAttributesW
DeleteFileW
GetModuleHandleW
FreeLibrary
GetVersionExW
MultiByteToWideChar
lstrlenA
OutputDebugStringW
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetProcAddress
GetWindowsDirectoryW
InterlockedDecrement
InterlockedIncrement
lstrcpynW
lstrlenW
LoadLibraryW
GetStartupInfoW
InterlockedExchange

user32

GetClassNameW
CreateCursor
GetWindowTextLengthW
GetCursorPos
SetCursor
EndPaint
BeginPaint
LoadMenuW
IsWindow
CharNextW
InvalidateRect
PtInRect
SetFocus
SetCapture
GetCapture
ReleaseCapture
UpdateWindow
DestroyCursor
SetWindowLongW
OffsetRect
DrawTextW
FillRect
DrawFocusRect
DestroyWindow
GetFocus
IntersectRect
IsRectEmpty
SetScrollInfo
SendMessageW
DefWindowProcW
SetRectEmpty
CreateWindowExW
GetSubMenu
DestroyMenu
GetMenuItemCount
GetMenuItemInfoW
GetDC
ReleaseDC
CharLowerW
GetDlgCtrlID
GetWindowTextW
GetActiveWindow
DialogBoxParamW
MessageBoxW
PostQuitMessage
SetDlgItemTextW
ScreenToClient
GetSystemMetrics
LoadImageW
EnableWindow
OpenClipboard
EmptyClipboard
GetSysColor
IsWindowEnabled
LoadStringW
DialogBoxIndirectParamW
RegisterClassExW
LoadCursorW
GetClassInfoExW
RegisterWindowMessageW
IsChild
RedrawWindow
GetDesktopWindow
CreateAcceleratorTableW
InvalidateRgn
SetParent
AppendMenuW
ClientToScreen
SetClassLongW
GetKeyState
IsWindowVisible
CopyRect
PostMessageW
InflateRect
FrameRect
CreateDialogParamW
TrackPopupMenu
CreatePopupMenu
GetMessagePos
IsDialogMessageW
TranslateAcceleratorW
GetWindowDC
DrawEdge
CallWindowProcW
GetWindowLongW
wsprintfW
SetWindowTextW
GetDlgItem
GetParent
SetTimer
ShowWindow
KillTimer
RegisterClipboardFormatW
EndDialog
GetClientRect
SetWindowPos
GetAsyncKeyState
EnumChildWindows
FindWindowExW
MapWindowPoints
SystemParametersInfoW
GetWindowRect
GetWindow
CloseClipboard
SetClipboardData
MoveWindow
GetScrollPos
EnableMenuItem
CheckMenuItem
InsertMenuW
SetWindowsHookExW
UnhookWindowsHookEx
MessageBeep
SetMenuItemInfoW
GetWindowThreadProcessId
WindowFromPoint
IsMenu
CallNextHookEx
PeekMessageW
GetSysColorBrush
ModifyMenuW
TrackPopupMenuEx
DrawFrameControl
LoadBitmapW
DrawIconEx
SetRect
GetSystemMenu
GetMenuDefaultItem
ShowCaret
RemovePropW
GetMessageW
SendMessageTimeoutW
IsZoomed
ScrollWindowEx
DrawIcon
GetScrollInfo
CheckDlgButton
TranslateMessage
DispatchMessageW
SetWindowPlacement
MenuItemFromPoint
mouse_event
GetWindowPlacement
CreateDialogIndirectParamW
GetClassLongW
RemoveMenu
LoadStringA
DefMDIChildProcW
GetMenuStringW
DrawMenuBar
DefFrameProcW
BringWindowToTop
TranslateMDISysAccel
LoadIconW
DeleteMenu
LoadAcceleratorsW
SetMenu
SetForegroundWindow
EnumWindows
CharUpperW
SetMenuDefaultItem
SetScrollPos

gdi32

SetPixelV
GetBkColor
DPtoLP
LPtoDP
GetBitmapDimensionEx
Rectangle
SetViewportExtEx
SetWindowExtEx
SetMapMode
GetViewportExtEx
GetWindowExtEx
OffsetViewportOrgEx
SelectClipRgn
CreateEnhMetaFileW
GetEnhMetaFileHeader
EndDoc
AbortDoc
EndPage
StartPage
ResetDCW
StartDocW
SetStretchBltMode
StretchBlt
GetCurrentObject
GetPixel
SetDIBitsToDevice
CloseEnhMetaFile
SetPixel
CreateDCW
RoundRect
GetClipBox
GetViewportOrgEx
SetViewportOrgEx
SetBrushOrgEx
CreateBitmap
CreatePatternBrush
PatBlt
GetTextExtentPoint32W
SaveDC
ExtTextOutW
RestoreDC
ExcludeClipRect
OffsetWindowOrgEx
SetWindowOrgEx
CreatePen
MoveToEx
LineTo
IntersectClipRect
CreateCompatibleBitmap
BitBlt
GetDeviceCaps
SetBkMode
DeleteDC
CreateFontIndirectW
DeleteObject
CreateDIBSection
CreateCompatibleDC
SelectObject
GetStockObject
SetBkColor
SetTextColor
DeleteEnhMetaFile
GetObjectW
CreateSolidBrush

advapi32

RegDeleteKeyW
RegOpenKeyExW
RegEnumKeyExW
GetUserNameW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
RegQueryValueExW
RegOpenKeyW
OpenProcessToken
CryptCreateHash
CryptAcquireContextW
CryptDestroyHash
CryptReleaseContext
CryptHashData
CryptGetHashParam
GetTokenInformation
RegCloseKey

shell32

ord21
SHBrowseForFolderW
ord88
SHGetSettings
ord25
DragQueryFileW
ExtractIconExW
ord17
ord16
SHGetFileInfoW
SHFileOperationW
DragAcceptFiles
ord155
ord18
SHGetDesktopFolder
ord4
ord2
SHGetSpecialFolderPathW
ShellExecuteExW
SHGetPathFromIDListW
ShellExecuteW
SHGetMalloc
SHGetSpecialFolderLocation
ord190

ole32

ReleaseStgMedium
CoCreateInstance
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CLSIDFromProgID
CLSIDFromString
CoTaskMemFree
StringFromCLSID
CoTaskMemAlloc
OleLockRunning
RegisterDragDrop
CoUninitialize
CoInitialize
OleSetClipboard
RevokeDragDrop
CoSetProxyBlanket

oleaut32

VariantTimeToSystemTime
VariantChangeType
OleCreatePictureIndirect
DispCallFunc
SafeArrayDestroy
VariantInit
SafeArrayCreateVector
SafeArrayAccessData
SafeArrayUnaccessData
OleCreateFontIndirect
SysStringLen
LoadRegTypeLi
SysAllocString
SysAllocStringLen
VariantClear
SysFreeString

msvcrt

_controlfp
_onexit
__dllonexit
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
localtime
ceil
rand
fread
calloc
_wcsrev
_wcsnicmp
sprintf
time
_wfopen
fwrite
fclose
_except_handler3
clock
wcscpy
realloc
_ftol
_wfullpath
memmove
iswspace
iswdigit
swprintf
vswprintf
wcschr
free
malloc
wcscmp
_wchdir
_wcsicmp
wcslen
wcscat
_purecall
wcsrchr
_wtoi
??2@YAPAXI@Z
wcsstr
??3@YAXPAX@Z

msimg32

GradientFill
AlphaBlend

Sections

.text
Size: 404KB - Virtual size: 403KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 404KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 232KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7580066a1cbf553532b8627f2046b213

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

msvcrt

msimg32

Sections

.text Size: 404KB - Virtual size: 403KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 28KB - Virtual size: 88KB

Shared Size: 4KB - Virtual size: 1KB

.tls Size: 4KB - Virtual size: 16B

.rsrc Size: 404KB - Virtual size: 402KB

.idata Size: 232KB - Virtual size: 229KB

.text
Size: 404KB - Virtual size: 403KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 28KB - Virtual size: 88KB

Shared
Size: 4KB - Virtual size: 1KB

.tls
Size: 4KB - Virtual size: 16B

.rsrc
Size: 404KB - Virtual size: 402KB

.idata
Size: 232KB - Virtual size: 229KB