8733c3fffe5d362c64715f67d24aace9835ccb962342a12fbaf25ceafa9e0827

Sharing

Copy URL

Twitter E-mail

General

Target

8733c3fffe5d362c64715f67d24aace9835ccb962342a12fbaf25ceafa9e0827
Size

2.9MB
MD5

2c7368e2e16f9c7dd4b06f6565deabee
SHA1

2f3e7098c07726c0b9f4bbb525b20595b1e08548
SHA256

8733c3fffe5d362c64715f67d24aace9835ccb962342a12fbaf25ceafa9e0827
SHA512

38db0b11e3740eed8ad38011340c94852dd1ec3342e21a3827c3222eff8f6576c69f1008cc3bbbe22b40cdc82470794b26e8f7b0a9656dc24ba597ef3e01edd6
SSDEEP

49152:B5cysMpTvgxNRG8mOsL9ehyT3t2SKuI1EDHaD2386ncPSNYkbwDidlF/oeqe:B7d1gNgghqEStG6nnfY4wDiV/T

Score

N/A

Malware Config

Signatures

Files

8733c3fffe5d362c64715f67d24aace9835ccb962342a12fbaf25ceafa9e0827
.exe windows x86

670cf6fac7e4d401d2952672a541dac5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

user32

InflateRect
GetMessagePos
MapWindowPoints
SetWindowTextA
GetActiveWindow
WindowFromPoint
GetWindowThreadProcessId
RedrawWindow
SetScrollRange
ScrollWindow
InvalidateRgn
ScreenToClient
GetUpdateRect
GetUpdateRgn
BeginPaint
EndPaint
IsChild
SetCapture
GetSysColorBrush
GetWindowLongA
GetDoubleClickTime
GetCursor
MessageBeep
LoadImageA
LoadBitmapA
EnableScrollBar
GetScrollInfo
SetScrollInfo
SetWindowLongA
CallWindowProcA
InvalidateRect
GetDlgItem
GetMenuItemInfoA
GetMenuItemRect
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
DispatchMessageA
ModifyMenuA
InsertMenuItemA
DefFrameProcA
InsertMenuA
GetMenu
DestroyMenu
SetMenu
CreateMenu
GetCursorPos
GetIconInfo
TabbedTextOutA
GetDCEx
IsClipboardFormatAvailable
EmptyClipboard
SetClipboardData
OpenClipboard
GetClipboardData
CloseClipboard
IsIconic
IsZoomed
ValidateRect
SetFocus
DdeClientTransaction
DeleteMenu
CreatePopupMenu
AppendMenuA
IsWindowEnabled
IsDialogMessageA
SetCursor
wsprintfA
UnregisterClassA
DrawMenuBar
SetActiveWindow
GetCapture
ReleaseCapture
IsWindow
FrameRect
RegisterClipboardFormatA
GetSystemMetrics
GetWindow
GetClassNameA
SetRect
OffsetRect
SetTimer
KillTimer
GetWindowPlacement
ShowOwnedPopups
BringWindowToTop
UnhookWindowsHookEx
SetWindowsHookExA
CallNextHookEx
GetWindowRect
RegisterWindowMessageA
ReuseDDElParam
UnpackDDElParam
GetSubMenu
EqualRect
GetLastActivePopup
IntersectRect
GetForegroundWindow
GetMessageTime
GetClassLongA
GetWindowTextA
GetWindowTextLengthA
SetWindowPlacement
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
AdjustWindowRectEx
SetDlgItemTextA
MoveWindow
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
GetMenuCheckMarkDimensions
DrawTextA
GrayStringA
CreateDialogIndirectParamA
EndDialog
GetNextDlgGroupItem
CharNextA
GetTabbedTextExtentA
CopyAcceleratorTableA
PostThreadMessageA
GetMenuStringA
LockWindowUpdate
PtInRect
MapDialogRect
SetWindowContextHelpId
CharUpperA
SetParent
IsRectEmpty
WindowFromDC
InSendMessage
DefMDIChildProcA
TranslateMDISysAccel
OemToCharA
TranslateMessage
GetMessageA
DeferWindowPos
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
GetClassInfoA
WinHelpA
DrawIcon
DestroyIcon
RemoveMenu
DrawFocusRect
FillRect
DdeGetData
OemToCharBuffA
CharUpperBuffA
CharToOemBuffA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
PostMessageA
SendMessageA
GetCaretPos
SetRectEmpty
RegisterClassA
LoadCursorA
LoadIconA
DefWindowProcA
SetWindowPos
ClientToScreen
GetClientRect
CopyRect
CreateWindowExA
IsWindowVisible
EnableWindow
MessageBoxA
DdeInitializeA
DdeUninitialize
DdeNameService
DdeCreateStringHandleA
DdeFreeStringHandle
PeekMessageA
FindWindowA
PostQuitMessage
SetForegroundWindow
DdeAddData
DdeCreateDataHandle
DdeConnect
DdeDisconnect
VkKeyScanExA
MapVirtualKeyExA
GetKeyState
ReleaseDC
GetDC
GetDesktopWindow
GetKeyboardLayoutList
ActivateKeyboardLayout
GetKeyboardLayout
SetPropA
RemovePropA
GetPropA
GetAsyncKeyState
UpdateWindow
GetFocus
GetSysColor
SendDlgItemMessageA
GetDlgCtrlID
GetParent
GetWindowDC
SystemParametersInfoA
LoadStringA
DestroyWindow
ShowWindow

kernel32

GetEnvironmentStrings
ReadFile
WriteFile
DuplicateHandle
GetCurrentProcess
FreeResource
RemoveDirectoryA
_lopen
_llseek
_lwrite
GetSystemTimeAsFileTime
CompareFileTime
LocalFree
IsDBCSLeadByteEx
IsValidCodePage
EnumResourceNamesA
LoadLibraryExA
GetSystemDefaultLangID
SetEnvironmentVariableA
CompareStringW
GetVersionExA
FreeLibrary
GetProcAddress
GetLastError
LoadLibraryA
FindClose
FindNextFileA
FindFirstFileA
GetProfileStringA
lstrcmpiA
lstrlenA
_lread
_lclose
OpenFile
GetPrivateProfileStringA
lstrcatA
GetWindowsDirectoryA
GlobalFree
GlobalUnlock
WideCharToMultiByte
GetACP
GlobalLock
GlobalAlloc
MultiByteToWideChar
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetUserDefaultLCID
lstrcpyA
CloseHandle
CreateSemaphoreA
lstrcpynA
GetCurrentThreadId
WinExec
GetTickCount
GlobalReAlloc
GetVersion
lstrcmpA
FindResourceA
LockResource
LoadResource
SizeofResource
IsDBCSLeadByte
GlobalMemoryStatus
ReleaseSemaphore
OpenSemaphoreA
WaitForSingleObject
GetSystemInfo
SetCurrentDirectoryA
GetCurrentDirectoryA
CopyFileA
DeleteFileA
GetFileAttributesA
Sleep
CreateDirectoryA
GetTempPathA
GlobalSize
VirtualQuery
GlobalHandle
MulDiv
GetPrivateProfileIntA
GetProfileIntA
GetTimeFormatA
GetDateFormatA
GetModuleHandleA
FormatMessageA
GetCurrentProcessId
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
CreateFileA
InterlockedIncrement
InterlockedDecrement
IsBadReadPtr
GlobalAddAtomA
GlobalGetAtomNameA
GlobalDeleteAtom
GlobalFindAtomA
SetLastError
lstrlenW
GetTempFileNameA
GetFullPathNameA
SetFileTime
GetDiskFreeSpaceA
CompareStringA
HeapCompact
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
MoveFileA
GetVolumeInformationA
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
GetCurrentThread
WritePrivateProfileStringA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
LocalAlloc
TlsAlloc
TlsFree
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GlobalFlags
GetCPInfo
GetOEMCP
GetFileSize
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileAttributesA
SetErrorMode
SetHandleCount
RtlUnwind
GetDriveTypeA
HeapFree
ExitProcess
TerminateProcess
HeapReAlloc
HeapAlloc
GetStartupInfoA
GetCommandLineA
RaiseException
HeapSize
GetTimeZoneInformation
GetSystemTime
GetLocalTime
SetStdHandle
GetFileType
IsBadWritePtr
GetStdHandle
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsW
IsBadCodePtr
GetEnvironmentStringsW
SetUnhandledExceptionFilter

gdi32

CreateMetaFileA
GetTextFaceA
CreateScalableFontResourceA
GetFontData
GetBkColor
GetTextAlign
CopyMetaFileA
CreateRectRgnIndirect
PatBlt
GetTextExtentPointA
CloseMetaFile
DeleteMetaFile
ExtTextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
IntersectClipRect
ExcludeClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
RestoreDC
SaveDC
GetDCOrgEx
GetTextColor
Rectangle
GetTextExtentExPointA
GetCurrentPositionEx
SetDIBitsToDevice
EnumFontFamiliesA
EnumFontsA
GetRgnBox
CreateEnhMetaFileA
CloseEnhMetaFile
DeleteEnhMetaFile
DPtoLP
AbortDoc
EndDoc
StartDocA
SetAbortProc
Escape
StartPage
EndPage
ExtEscape
ResetDCA
CreateICA
SetTextCharacterExtra
CombineRgn
OffsetRgn
SelectPalette
RealizePalette
StretchBlt
GetMapMode
SetMapMode
CreateDIBSection
GetObjectType
GetClipBox
SetRectRgn
GetClipRgn
SelectClipRgn
SetBkMode
SetTextAlign
GetPolyFillMode
CreatePolygonRgn
MoveToEx
LineTo
CreateRectRgn
FillRgn
CreateBitmap
CreatePatternBrush
GetWindowOrgEx
Polyline
GdiFlush
SetWindowOrgEx
SetROP2
CreatePen
CreateFontA
GetTextMetricsA
RemoveFontResourceA
AddFontResourceA
CreatePalette
CreateDIBitmap
DeleteDC
GetTextExtentPoint32A
BitBlt
GetDIBits
CreateDCA
CreateCompatibleDC
LPtoDP
CreateCompatibleBitmap
SelectObject
CreateSolidBrush
SetBkColor
SetTextColor
TextOutA
DeleteObject
EnumFontFamiliesExA
GetDeviceCaps
CreateFontIndirectA
GetStockObject
GetObjectA

advapi32

RegDeleteKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegEnumKeyExA
RegDeleteValueA
RegEnumValueA
RegOpenKeyA
RegEnumKeyA
RegSetValueA
RegCreateKeyA
RegQueryValueA
GetUserNameA
SetFileSecurityA
GetFileSecurityA
RegCreateKeyExA
RegQueryInfoKeyA

comctl32

ord17

ole32

OleUninitialize
CoFreeUnusedLibraries
DoDragDrop
StringFromCLSID
OleInitialize
CLSIDFromProgID
CLSIDFromString
OleLockRunning
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
OleDuplicateData
CoTaskMemAlloc
CreateBindCtx
CreateDataAdviseHolder
StgIsStorageFile
CreateOleAdviseHolder
CreateGenericComposite
WriteClassStm
OleSaveToStream
OleFlushClipboard
CoRegisterMessageFilter
CoGetClassObject
ReleaseStgMedium
StgCreateDocfile
OleIsRunning
OleRun
CreateItemMoniker
CoLockObjectExternal
WriteClassStg
GetRunningObjectTable
CreateFileMoniker
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoDisconnectObject
CreateStreamOnHGlobal
CoRevokeClassObject
CoRegisterClassObject
CoTaskMemFree
CoInitialize
CoCreateInstance
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorage

shell32

ShellExecuteA
DragQueryFileA
DragFinish
SHChangeNotify
ShellExecuteExA
FindExecutableA
SHGetPathFromIDListA
SHBrowseForFolderA
DragQueryPoint
DragAcceptFiles
SHGetDesktopFolder
SHGetMalloc
SHGetFileInfoA
ExtractIconA

comdlg32

CommDlgExtendedError
GetOpenFileNameA
GetFileTitleA
PrintDlgA
GetSaveFileNameA

winspool.drv

EnumPrintersA
EnumJobsA
DocumentPropertiesA
GetPrinterDriverDirectoryA
ClosePrinter
GetPrinterDriverA
OpenPrinterA

oleaut32

OleCreateFontIndirect
VariantTimeToSystemTime
SysStringByteLen
SysAllocStringByteLen
SysStringLen
SysAllocString
VariantChangeType
VariantClear
VariantCopy
SysAllocStringLen
SysFreeString

oledlg

ord8

mpr

WNetOpenEnumA
WNetEnumResourceA
WNetCloseEnum
WNetAddConnection2A
WNetGetConnectionA

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 300KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 260KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 716B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 164KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

670cf6fac7e4d401d2952672a541dac5

Headers

File Characteristics

Imports

version

user32

kernel32

gdi32

advapi32

comctl32

ole32

shell32

comdlg32

winspool.drv

oleaut32

oledlg

mpr

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rdata Size: 300KB - Virtual size: 297KB

.data Size: 260KB - Virtual size: 297KB

.rsrc Size: 4KB - Virtual size: 716B

.reloc Size: 164KB - Virtual size: 161KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 300KB - Virtual size: 297KB

.data
Size: 260KB - Virtual size: 297KB

.rsrc
Size: 4KB - Virtual size: 716B

.reloc
Size: 164KB - Virtual size: 161KB