35ab526abd28a9fa56394a9f8da1323e0b4f1b9d46c56daf655ad3f0f6f2d8e6

Sharing

Copy URL Twitter E-mail

General

Target

35ab526abd28a9fa56394a9f8da1323e0b4f1b9d46c56daf655ad3f0f6f2d8e6
Size

1.6MB
MD5

5d0fe2b6072b9e5dc790391bc52710f9
SHA1

a5ced4b9266d22180f932027822cc5a2d2e06feb
SHA256

35ab526abd28a9fa56394a9f8da1323e0b4f1b9d46c56daf655ad3f0f6f2d8e6
SHA512

5838ce0599e31d80cf382d6fdbc883665715076fe222f636a01e7fc3b105d182924dcf859c571476684a2c2ddd5fa578acdb0ddb6cf69fa2c645469e938d0c12
SSDEEP

24576:hms9AyW6AYpls1owjZyy2V4MTS9O9B5XsmaroJpWdlwt6dGHh:hms9AyW6AYpls2wjZY4kSR2LB

Score

N/A

Malware Config

Signatures

Files

35ab526abd28a9fa56394a9f8da1323e0b4f1b9d46c56daf655ad3f0f6f2d8e6
.exe windows x86

33cdc86e844b3f5280c4b9c360ed3b46

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersInfo

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupCloseInfFile
SetupGetStringFieldA
SetupGetIntField
SetupFindFirstLineA
SetupOpenInfFileA
SetupDiGetDeviceInstallParamsA
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
SetupDiChangeState
SetupDiGetDeviceInstanceIdA
SetupDiEnumDeviceInfo
SetupDiGetDeviceInterfaceDetailA

cfgmgr32

CM_Get_Parent
CM_Locate_DevNodeA
CM_Get_DevNode_Registry_PropertyA
CM_Get_Child
CM_Get_Sibling
CM_Get_Device_IDA

ws2_32

socket
WSAStartup
inet_addr
send
WSACleanup
htons
connect
recv
closesocket

kernel32

InterlockedIncrement
InterlockedDecrement
GetFileAttributesA
GetFileTime
LocalFree
FormatMessageA
LoadResource
FindResourceA
LockResource
GlobalUnlock
GlobalLock
GetModuleHandleA
GlobalFindAtomA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetVersion
SetLastError
SetEvent
ResumeThread
SetThreadPriority
SuspendThread
GetCurrentThread
LocalAlloc
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
SetErrorMode
GlobalFlags
SizeofResource
GetProcessVersion
GetCPInfo
GetOEMCP
HeapReAlloc
RtlUnwind
RaiseException
lstrcmpiA
CreateThread
ExitThread
GetStartupInfoA
ExitProcess
GetACP
TerminateProcess
HeapSize
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetExitCodeProcess
CreateProcessA
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
InterlockedExchange
GetTickCount
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
lstrcpyA
SetEndOfFile
UnlockFile
LockFile
SetFilePointer
GetCurrentProcess
DuplicateHandle
lstrlenA
lstrcmpA
OutputDebugStringA
GlobalDeleteAtom
DeleteCriticalSection
Beep
WaitForSingleObject
GlobalAddAtomA
CreateEventA
InitializeCriticalSection
CreateMutexA
SystemTimeToTzSpecificLocalTime
LeaveCriticalSection
EnterCriticalSection
GetSystemTime
CloseHandle
ReadFile
CreateFileA
MultiByteToWideChar
GetThreadLocale
GetPrivateProfileSectionA
MulDiv
GetLastError
LoadLibraryA
GetProcAddress
FreeLibrary
GetComputerNameA
GetCommandLineA
GetLogicalDrives
GetDriveTypeA
WriteFile
PurgeComm
GetCommState
SetCommState
GetCommTimeouts
SetCommTimeouts
EscapeCommFunction
GetLocalTime
GetPrivateProfileIntA
GetCurrentDirectoryA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetProcessHeap
HeapAlloc
HeapFree
DeviceIoControl
WideCharToMultiByte
GlobalAlloc
GlobalFree
GetFileSize
Sleep
FlushFileBuffers
GetVersionExA
DeleteFileA
RemoveDirectoryA
CreateDirectoryA
GetModuleFileNameA
FindFirstFileA
FindNextFileA
FindClose
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileAttributesExA
GetTimeZoneInformation

user32

CharNextA
CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
MessageBeep
RegisterClipboardFormatA
PostThreadMessageA
wvsprintfA
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
CheckDlgButton
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
IsWindowVisible
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetDesktopWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
CharUpperA
RedrawWindow
FillRect
FindWindowExA
GetDlgItemTextA
UnregisterHotKey
IsIconic
GetSystemMetrics
DrawIcon
LoadBitmapA
RegisterHotKey
SetWindowPos
KillTimer
GetAsyncKeyState
SetTimer
GrayStringA
DrawTextA
TabbedTextOutA
IsWindow
DestroyMenu
GetSysColorBrush
LoadCursorA
RegisterClassA
EqualRect
GetClientRect
CopyRect
GetSysColor
LoadIconA
SendMessageA
PostMessageA
InvalidateRect
EnableWindow
PeekMessageA
TranslateMessage
DispatchMessageA
wsprintfA
SetDlgItemTextA
IsWindowUnicode
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
PtInRect
GetClassNameA
LoadStringA
MapDialogRect
SetWindowContextHelpId
SetCursor
PostQuitMessage
InflateRect
GetMessageA
ValidateRect
GetCursorPos
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GetKeyState
ClientToScreen
GetMessageTime

gdi32

RestoreDC
SelectObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
SaveDC
DeleteObject
GetViewportExtEx
GetWindowExtEx
CreatePen
GetMapMode
PatBlt
DPtoLP
GetTextColor
GetBkColor
LPtoDP
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetStockObject
GetObjectA
CreateFontIndirectA
CreateFontA
CreateDCA
GetDeviceCaps
DeleteDC
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetTextExtentPointA
CreateDIBitmap
CreateSolidBrush

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA

shell32

SHGetSpecialFolderPathA

comctl32

ord17
ImageList_Create
ImageList_Destroy

oledlg

ord8

ole32

OleUninitialize
OleInitialize
CoTaskMemAlloc
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleIsCurrentClipboard
CoTaskMemFree
OleFlushClipboard

olepro32

ord253

oleaut32

SysStringLen
SysAllocStringByteLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

imagehlp

MakeSureDirectoryPathExists

Sections

.text
Size: 716KB - Virtual size: 714KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 436KB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 372KB - Virtual size: 369KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

33cdc86e844b3f5280c4b9c360ed3b46

Headers

File Characteristics

Imports

iphlpapi

setupapi

cfgmgr32

ws2_32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

imagehlp

Sections

.text Size: 716KB - Virtual size: 714KB

.rdata Size: 72KB - Virtual size: 69KB

.data Size: 436KB - Virtual size: 3.9MB

.rsrc Size: 372KB - Virtual size: 369KB

.text
Size: 716KB - Virtual size: 714KB

.rdata
Size: 72KB - Virtual size: 69KB

.data
Size: 436KB - Virtual size: 3.9MB

.rsrc
Size: 372KB - Virtual size: 369KB