d46b93be34b1d77581cee5e2785ffc70c84ab5d28ee9557371768032da4244e5

Sharing

Copy URL Twitter E-mail

General

Target

d46b93be34b1d77581cee5e2785ffc70c84ab5d28ee9557371768032da4244e5
Size

4.7MB
MD5

fc2d3affd6c0b0cf55f2576e9613e534
SHA1

2db577ba0cafb30f9951e017a34f4ccf894411ac
SHA256

d46b93be34b1d77581cee5e2785ffc70c84ab5d28ee9557371768032da4244e5
SHA512

c8d3f3b539dc1254c847a59eecee9263efb077dde1dde674af1e663f623b43f8f966adc6c4fb3b8647d2d520e3001dc4e46d87e4772bc5eb3dac969953433c03
SSDEEP

49152:QK/ggBeLOwaLqZmAI4OMwusJQuyDFt3xmVlBTx1w:VzB4HIOsJZyhXmV3

Score

N/A

Malware Config

Signatures

Files

d46b93be34b1d77581cee5e2785ffc70c84ab5d28ee9557371768032da4244e5
.exe windows x86

0660a7979c9410e87655352e04326a3e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

winmm

mmioRead
mmioDescend
mmioClose
mmioAscend
mmioWrite
waveOutPrepareHeader
mmioCreateChunk
mmioOpenA
waveOutUnprepareHeader
waveOutReset
waveOutOpen
waveOutWrite
waveOutClose

kernel32

RaiseException
GetTimeZoneInformation
RtlUnwind
GetLocalTime
GetDriveTypeA
TerminateProcess
ExitThread
GetSystemTime
SetEnvironmentVariableA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
GetOEMCP
SetErrorMode
GetStringTypeW
SetHandleCount
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GlobalFlags
CompareStringA
CompareStringW
GetLocaleInfoW
GetProcessVersion
GetDiskFreeSpaceA
GetCurrentThread
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileAttributesA
TlsGetValue
LocalReAlloc
GetStringTypeA
VirtualAlloc
LeaveCriticalSection
GetTempPathA
MoveFileA
CreateThread
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
SetEvent
GetTickCount
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetWindowsDirectoryA
OutputDebugStringA
ReadFile
GetFileSize
SetFilePointer
WriteFile
CreateFileA
CloseHandle
GetVolumeInformationA
LoadLibraryA
GetProcAddress
FindFirstFileA
FindClose
DeleteFileA
GlobalAlloc
GlobalFree
GlobalSize
GlobalLock
GlobalUnlock
FreeLibrary
lstrcmpiA
FreeResource
FindResourceA
LoadResource
LockResource
GetCPInfo
lstrlenW
lstrlenA
Sleep
GetProfileStringA
TlsSetValue
EnterCriticalSection
DeleteCriticalSection
TlsFree
GlobalHandle
LocalAlloc
TlsAlloc
InitializeCriticalSection
GetStringTypeExA
GetShortPathNameA
GetThreadLocale
LockFile
GetFullPathNameA
UnlockFile
DuplicateHandle
FlushFileBuffers
GetCurrentProcess
GetProfileIntA
SuspendThread
FileTimeToLocalFileTime
ResumeThread
VirtualProtect
LocalFree
FileTimeToSystemTime
SetLastError
GlobalFindAtomA
GlobalGetAtomNameA
GlobalAddAtomA
HeapReAlloc
GlobalDeleteAtom
SetEndOfFile
GetProcessHeap
HeapSize
HeapFree
Beep
HeapAlloc
SetCurrentDirectoryA
GetComputerNameA
IsBadWritePtr
GetTimeFormatA
GlobalMemoryStatus
GetDateFormatA
OpenProcess
WritePrivateProfileSectionA
GetPrivateProfileIntA
CreateDirectoryA
FormatMessageA
LCMapStringA
GetCommandLineA
GetCurrentDirectoryA
GetFileInformationByHandle
GetCurrentThreadId
WritePrivateProfileStringA
WideCharToMultiByte
SizeofResource
MultiByteToWideChar
GetSystemDefaultLangID
ExpandEnvironmentStringsA
GetACP
lstrcpynA
lstrcmpA
GetPrivateProfileStringA
FindNextFileA
MulDiv
lstrcatA
WinExec
GetCurrentProcessId
GetExitCodeThread
TerminateThread
ReleaseMutex
GetStartupInfoA
CreateProcessA
ExitProcess
SetUnhandledExceptionFilter
GetTempFileNameA
GlobalReAlloc
OpenMutexA
CreateMutexA
GetModuleFileNameA
lstrcpyA
GetModuleHandleA
GetVersion
GetVersionExA
DeviceIoControl
WaitForSingleObject
GetLastError
CreateEventA
ResetEvent
CopyFileA
SetStdHandle
GetFileType
GetUserDefaultLCID

user32

CheckRadioButton
FindWindowA
CharNextA
SetWindowContextHelpId
GetNextDlgGroupItem
RegisterClipboardFormatA
DefFrameProcA
TranslateMDISysAccel
DefMDIChildProcA
InvertRect
MoveWindow
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
GetDlgItemTextA
CharUpperA
CheckDlgButton
SendDlgItemMessageA
DeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
WinHelpA
GetClassInfoA
RegisterClassA
SetWindowPlacement
GetWindowTextLengthA
DefWindowProcA
GetMessageTime
GetLastActivePopup
GetWindowPlacement
CreateDialogIndirectParamA
DestroyWindow
IsWindowEnabled
GetDlgItemInt
PostThreadMessageA
GetWindowDC
GetTopWindow
PostQuitMessage
SetWindowRgn
LoadStringA
CreateWindowExA
EndDialog
wsprintfA
MapWindowPoints
IsZoomed
GetForegroundWindow
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetMenuItemRect
GetPropA
SetPropA
RemovePropA
CheckMenuRadioItem
EmptyClipboard
SetClipboardData
GetKeyboardState
GetAsyncKeyState
ToAscii
GetCaretPos
GetWindowThreadProcessId
SetFocus
BeginDeferWindowPos
EndDeferWindowPos
GetClassLongA
SetMenuItemInfoA
DrawMenuBar
MessageBeep
ShowScrollBar
PeekMessageA
TranslateMessage
AdjustWindowRectEx
CallWindowProcA
UnionRect
UnregisterHotKey
RegisterHotKey
GetTabbedTextExtentA
IsChild
GetCursor
GetMessagePos
GetDlgItem
ShowWindow
EnumChildWindows
GetClassNameA
EqualRect
ClipCursor
DrawFrameControl
ScreenToClient
GetCapture
GetMessageA
DispatchMessageA
GetDlgCtrlID
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetSystemMenu
SetMenu
GetMenu
LoadAcceleratorsA
CopyAcceleratorTableA
SetScrollRange
SetScrollPos
GetScrollPos
GetFocus
GetCursorPos
GetWindowTextA
SetWindowTextA
GetKeyState
GetKeyNameTextA
DrawTextExA
CopyIcon
OpenClipboard
SetClipboardViewer
ChangeClipboardChain
PostMessageA
GetClipboardData
CloseClipboard
RedrawWindow
LockWindowUpdate
GetDCEx
IsIconic
SetWindowLongA
MessageBoxA
SetCapture
ReleaseCapture
GetWindowLongA
WindowFromPoint
GetNextDlgTabItem
GetActiveWindow
DrawFocusRect
DrawStateA
GetIconInfo
LoadImageA
TrackPopupMenuEx
SetCursor
DestroyCursor
DestroyMenu
SendMessageTimeoutA
LoadCursorA
RemoveMenu
ModifyMenuA
GetMenuStringA
GetMenuState
GetMenuItemID
AppendMenuA
CreatePopupMenu
GrayStringA
TabbedTextOutA
DrawEdge
GetSysColorBrush
SetRect
DrawIconEx
DestroyIcon
SystemParametersInfoA
GetMenuItemInfoA
EnableScrollBar
InvalidateRect
UpdateWindow
PtInRect
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
TranslateAcceleratorA
ValidateRect
MapDialogRect
wvsprintfA
EndPaint
BeginPaint
SetParent
ShowOwnedPopups
TrackPopupMenu
GetSysColor
LoadBitmapA
OffsetRect
DrawIcon
InflateRect
LoadIconA
SetForegroundWindow
FlashWindow
GetDesktopWindow
KillTimer
ClientToScreen
GetClientRect
LoadMenuA
InsertMenuA
GetMenuItemCount
DeleteMenu
SetWindowPos
GetSystemMetrics
IsMenu
GetSubMenu
GetWindowRect
GetDC
ReleaseDC
DrawAnimatedRects
CopyRect
SetRectEmpty
IsRectEmpty
DrawTextA
FrameRect
FillRect
GetParent
SetTimer
IsWindowVisible
RegisterWindowMessageA
GetWindow
IsWindow
SendMessageA
EnableWindow
SetActiveWindow
IntersectRect
SetDlgItemInt
IsWindowUnicode
DefDlgProcA
ShowCaret
HideCaret
UnregisterClassA
ExcludeUpdateRgn

gdi32

SetTextColor
GetTextExtentPointA
TextOutA
CreateDIBitmap
SetBkMode
GetTextExtentPoint32A
LineTo
MoveToEx
Ellipse
CreatePen
DeleteObject
Polyline
SetROP2
SelectObject
GetTextMetricsA
ExtSelectClipRgn
GdiFlush
LPtoDP
CreatePolygonRgn
DPtoLP
FrameRgn
PtInRegion
FillRgn
GetDIBits
RealizePalette
SetTextJustification
BeginPath
EndPath
SelectPalette
GetViewportExtEx
GetWindowExtEx
GetMapMode
SetWindowExtEx
StretchBlt
SetMapMode
CreateRectRgn
SetViewportExtEx
SetPolyFillMode
PolyPolygon
CombineRgn
RoundRect
CreateRoundRectRgn
SaveDC
RestoreDC
StartDocA
SetViewportOrgEx
OffsetViewportOrgEx
SetStretchBltMode
GetClipBox
SetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SelectClipRgn
IntersectClipRect
ExcludeClipRect
SetTextAlign
GetCurrentPositionEx
GetClipRgn
SelectClipPath
CreatePatternBrush
SetRectRgn
StretchDIBits
AbortDoc
EndDoc
GetCharWidthA
StartPage
SetAbortProc
EndPage
GetViewportOrgEx
CopyMetaFileA
CreateDCA
GetStretchBltMode
GetPolyFillMode
GetNearestColor
GetROP2
GetTextFaceA
GetTextAlign
CreateBitmap
GetWindowOrgEx
GetStockObject
Rectangle
SetBkColor
Escape
PatBlt
CreateHatchBrush
SetPixel
GetPixel
ExtTextOutA
PtVisible
CreateDIBSection
RectVisible
GetBkMode
GetDeviceCaps
CreateCompatibleDC
CreateCompatibleBitmap
CreateFontIndirectA
Polygon
CreateRectRgnIndirect
CreateSolidBrush
GetObjectA
GetTextColor
GetBkColor
BitBlt
DeleteDC
GetCurrentObject
Arc
CreateFontA

comdlg32

GetFileTitleA
GetSaveFileNameA
CommDlgExtendedError
PageSetupDlgA
PrintDlgA
GetOpenFileNameA
ChooseColorA
ChooseFontA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

GetFileSecurityA
RegSetValueA
RegEnumKeyA
RegCreateKeyA
RegDeleteValueA
RegCloseKey
SetFileSecurityA
RegDeleteKeyA
RegQueryValueExA
GetUserNameA
RegOpenKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA

shell32

DragQueryFileA
DragFinish
SHFileOperationA
SHGetFileInfoA
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
ExtractIconA
ShellExecuteA
ShellExecuteExA

comctl32

ImageList_AddMasked
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
ImageList_Duplicate
ImageList_GetIcon
ImageList_Draw
ord17
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_DrawEx
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_SetBkColor

oledlg

ord8

ole32

CoLockObjectExternal
CreateStreamOnHGlobal
OleIsCurrentClipboard
CLSIDFromString
CLSIDFromProgID
RevokeDragDrop
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleDuplicateData
ReleaseStgMedium
CoCreateInstance
StgIsStorageFile
StgOpenStorage
CoTaskMemFree
RegisterDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
CoGetClassObject
OleFlushClipboard
DoDragDrop
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoTaskMemAlloc
StgOpenStorageOnILockBytes

olepro32

ord253
ord251

oleaut32

VariantChangeType
SysAllocStringByteLen
VariantCopy
SafeArrayCreate
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetDim
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
VariantClear
SysFreeString
VariantInit
SysAllocStringLen
VariantTimeToSystemTime
SysStringLen
SafeArrayGetUBound

wsock32

WSAGetLastError
ntohs
connect
getservbyname
ioctlsocket
inet_addr
gethostbyname
gethostname
WSAStartup
htons
setsockopt
send
recv
closesocket
sendto
socket
WSACleanup
WSASetLastError
bind
accept
inet_ntoa
htonl
WSAAsyncSelect
recvfrom

wininet

InternetReadFile
InternetWriteFile
InternetGetLastResponseInfoA
HttpQueryInfoA
HttpSendRequestA
InternetErrorDlg
HttpOpenRequestA
InternetCloseHandle
InternetConnectA
InternetQueryDataAvailable
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 416KB - Virtual size: 415KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0660a7979c9410e87655352e04326a3e

Headers

File Characteristics

Imports

version

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

wininet

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rdata Size: 416KB - Virtual size: 415KB

.data Size: 48KB - Virtual size: 73KB

.rsrc Size: 1.8MB - Virtual size: 1.8MB

.text
Size: 2.4MB - Virtual size: 2.4MB

.rdata
Size: 416KB - Virtual size: 415KB

.data
Size: 48KB - Virtual size: 73KB

.rsrc
Size: 1.8MB - Virtual size: 1.8MB