7b3e28d2f4946196b60ac5feb807984cc6ea82ef7ab535dbc291707c19e8eb69

Sharing

Copy URL

Twitter E-mail

General

Target

7b3e28d2f4946196b60ac5feb807984cc6ea82ef7ab535dbc291707c19e8eb69
Size

496KB
MD5

d04bd9640cf05c1d8ec150b8ec3dea9d
SHA1

9f1d2b477e072b993144df959e46bff88885d161
SHA256

7b3e28d2f4946196b60ac5feb807984cc6ea82ef7ab535dbc291707c19e8eb69
SHA512

806ccb9ab75e0b0fd41bc6d1b9de3be1e58f75a8af3db1bffbb9c1137a40e49587c6fad8eb8c1dfae89aef5b23a90e2bbadfb02ff9600557e398d67407730542
SSDEEP

6144:wYiWcGsEld6itHpoNu6HwcDK1668T1wGTtE2hmDnVBjrvNtwNoI:wYSEj6itHp6JHwMc6/+2oDnXe1

Score

N/A

Malware Config

Signatures

Files

7b3e28d2f4946196b60ac5feb807984cc6ea82ef7ab535dbc291707c19e8eb69
.exe windows x86

c6a5269c02b217ccffd48187054da36f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetFileType
LoadLibraryExW
GetStringTypeW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetModuleHandleW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
Sleep
UnhandledExceptionFilter
HeapReAlloc
GetModuleFileNameW
GetStdHandle
HeapSize
GetCommandLineA
GetSystemTimeAsFileTime
AreFileApisANSI
GetModuleHandleExW
ExitProcess
RtlUnwind
VirtualQuery
VirtualProtect
EncodePointer
VirtualFree
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
GetProcessHeap
HeapFree
HeapAlloc
OutputDebugStringW
IsDebuggerPresent
LCMapStringW
CompareStringW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FlushFileBuffers
SetStdHandle
GetTimeZoneInformation
WriteConsoleW
ReadConsoleW
GetUserDefaultUILanguage
GetDateFormatA
GetVolumeNameForVolumeMountPointA
FindVolumeMountPointClose
FindNextVolumeMountPointA
FindFirstVolumeMountPointA
GetComputerNameA
MoveFileExA
GetCompressedFileSizeW
CreateFileW
CreateFileA
EnumResourceLanguagesA
GetLogicalDriveStringsA
CreateEventA
lstrcpyA
GetTickCount
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemInfo
GetCommState
CloseHandle
SetFilePointer
SetEndOfFile
DeviceIoControl
ReadFile
WriteFile
GetFileSize
WaitForSingleObject
GetQueuedCompletionStatus
CreateIoCompletionPort
CreateThread
VirtualAlloc
GetVersion
WideCharToMultiByte
MultiByteToWideChar
IsDBCSLeadByte
GetVersionExA
FindResourceA
OutputDebugStringA
GetModuleHandleA
GetModuleFileNameA
LoadLibraryExA
LoadLibraryA
lstrlenA
lstrcmpiA
lstrcmpA
MulDiv
SizeofResource
LoadResource
LeaveCriticalSection
EnterCriticalSection
DebugBreak
SetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
FlushInstructionCache
DecodePointer
GlobalUnlock
GlobalLock
GlobalAlloc
GetProcAddress
FreeLibrary
LockResource
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
RaiseException
SetUnhandledExceptionFilter
SetEnvironmentVariableA

user32

GetDesktopWindow
SetWindowLongA
GetWindowLongA
PtInRect
OffsetRect
InflateRect
SetRectEmpty
FrameRect
FillRect
GetClassNameA
GetWindowThreadProcessId
DrawEdge
DrawFrameControl
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
GetMessagePos
SendMessageA
PostMessageA
DefWindowProcA
PostQuitMessage
CallWindowProcA
RegisterClassExA
GetClassInfoExA
CreateWindowExA
IsWindow
IsMenu
LoadStringA
LoadStringW
SystemParametersInfoA
MonitorFromPoint
MonitorFromWindow
GetMonitorInfoA
wsprintfA
DefWindowProcW
RegisterClassA
PrintWindow
SetDlgItemTextA
CheckRadioButton
GetDialogBaseUnits
CallNextHookEx
GetWindow
SetWindowsHookExA
GetSysColorBrush
GetSysColor
WindowFromPoint
MapWindowPoints
ScreenToClient
ClientToScreen
SetCursor
MessageBeep
MessageBoxA
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
RedrawWindow
InvalidateRgn
InvalidateRect
CheckMenuRadioItem
RegisterWindowMessageA
IsChild
DestroyWindow
GetCursorPos
SetRect
FindWindowA
EndPaint
BeginPaint
LoadIconA
DdeCreateStringHandleW
ShowWindow
MoveWindow
SetWindowPos
IsWindowVisible
DialogBoxParamA
EndDialog
ReleaseDC
GetWindowDC
UnregisterClassA
LoadBitmapA
LoadCursorA
GetDlgItem
GetDlgCtrlID
CharLowerA
CharNextA
SetFocus
GetActiveWindow
GetFocus
GetParent
UnhookWindowsHookEx
SetCursorPos
LoadImageA
GetDC
UpdateWindow
DrawTextA
SetMenuDefaultItem
SetMenuItemInfoA
GetMenuItemInfoA
TrackPopupMenuEx
DeleteMenu
RemoveMenu
ModifyMenuA
AppendMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
EnableMenuItem
DestroyMenu
CreatePopupMenu
SetMenu
GetMenu
LoadMenuA
GetSystemMetrics
TranslateAcceleratorA
DestroyAcceleratorTable
CreateAcceleratorTableA
LoadAcceleratorsA
IsWindowEnabled
EnableWindow
ReleaseCapture
SetCapture
GetKeyState

gdi32

AngleArc
BeginPath
CloseFigure
EndPath
GetTextMetricsA
MoveToEx
TextOutA
SetWindowExtEx
CreatePatternBrush
DeleteEnhMetaFile
CreateEnhMetaFileA
DeleteDC
DeleteObject
GetDeviceCaps
GetStockObject
PatBlt
SelectObject
SetBkColor
SetBkMode
SetTextColor
CreateDIBSection
GetObjectA
Polygon
SetViewportOrgEx
SetWindowOrgEx
CloseEnhMetaFile
SetPixelFormat
SetMapMode
SetDCPenColor
LineTo
FillRgn
Ellipse
CreateRectRgn
CreateDCA
CombineRgn
SetBrushOrgEx
BitBlt
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontIndirectA
CreateSolidBrush
CreatePen
StrokePath
GetCurrentObject
OffsetWindowOrgEx

winspool.drv

EnumPrintersA

comdlg32

ChooseFontA

advapi32

RegQueryValueExA
LsaClose
RegQueryValueExW
RegOpenKeyExW
OpenProcessToken
ImpersonateNamedPipeClient
RegSetValueExA
RegCloseKey
RegQueryInfoKeyW
RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA

shell32

DragAcceptFiles

ole32

CreateStreamOnHGlobal
OleLockRunning
OleUninitialize
OleInitialize
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
StringFromGUID2
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoGetClassObject
CoUninitialize
CoInitialize
CreateObjrefMoniker
StgCreateDocfile

oleaut32

OleCreateFontIndirect
DispCallFunc
LoadRegTypeLi
LoadTypeLi
VarUI4FromStr
VariantClear
VariantInit
SysStringLen
SysAllocStringLen
SysAllocString
SysFreeString

odbc32

ord9

shlwapi

wnsprintfA

comctl32

ord6
ord8
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
ImageList_EndDrag
ImageList_BeginDrag
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_AddMasked
ImageList_Draw
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
InitCommonControlsEx
CreateToolbarEx

opengl32

wglMakeCurrent

ws2_32

WSACreateEvent
WSAGetLastError

netapi32

NetLocalGroupAddMember
NetUserAdd

avicap32

capGetDriverDescriptionA

msacm32

acmFormatTagDetailsA

winmm

mmioOpenA
mmioClose
mmioRead
mmioDescend
mmioAscend

iphlpapi

NotifyRouteChange

rpcrt4

UuidCreate
UuidToStringW

gdiplus

GdipSetSmoothingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipDeletePen
GdipDrawLineI
GdipCreatePen1

secur32

EnumerateSecurityPackagesA

setupapi

SetupDiGetClassDevsA

Sections

.text
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 186KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c6a5269c02b217ccffd48187054da36f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

odbc32

shlwapi

comctl32

opengl32

ws2_32

netapi32

avicap32

msacm32

winmm

iphlpapi

rpcrt4

gdiplus

secur32

setupapi

Sections

.text Size: 232KB - Virtual size: 231KB

.rdata Size: 62KB - Virtual size: 62KB

.data Size: 12KB - Virtual size: 23KB

.text Size: 2KB - Virtual size: 1KB

.rsrc Size: 186KB - Virtual size: 186KB

.text
Size: 232KB - Virtual size: 231KB

.rdata
Size: 62KB - Virtual size: 62KB

.data
Size: 12KB - Virtual size: 23KB

.text
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 186KB - Virtual size: 186KB