cb82bf8e4f38360a51ef8358ef8557546c319ee9bcc4cb2f16e359fba56801bf

Sharing

Copy URL

Twitter E-mail

General

Target

cb82bf8e4f38360a51ef8358ef8557546c319ee9bcc4cb2f16e359fba56801bf
Size

469KB
MD5

8af7f78dbaee3494a76dcb35d691d157
SHA1

7e1c3cd08ff7a168cc0635c863025b63abfc6db8
SHA256

cb82bf8e4f38360a51ef8358ef8557546c319ee9bcc4cb2f16e359fba56801bf
SHA512

2625ca7bd4fa4d38f206b6c6d892ff1fe762178885aab90d5e18226f3c30504d4c93301c389444e8104827a47e98039ee697cc636d34d273ebdf1cf7cd380cc7
SSDEEP

12288:TVV3dfVdm4evhi6eHP/TRA2a+5R1piPnrSwe2TXwn2bL75kYfGH1:JzCKvb2twjifmFARb+3

Score

N/A

Malware Config

Signatures

Files

cb82bf8e4f38360a51ef8358ef8557546c319ee9bcc4cb2f16e359fba56801bf
.exe windows x86

515d4e0f89287c139195052bcbdf2913

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
GetStartupInfoA
GetConsoleTitleW
SetCurrentDirectoryA
OpenProcess
CreateMailslotA
CreateSemaphoreW
ReadConsoleOutputW
InterlockedExchangeAdd
ExitThread
GetCompressedFileSizeW
CreateDirectoryExW
GetLongPathNameW
SetEnvironmentVariableA
OpenWaitableTimerW
SetConsoleMode
SearchPathW
GetThreadLocale
OpenSemaphoreA
EnumCalendarInfoW
EnumCalendarInfoExW
EnumResourceNamesW
PeekNamedPipe
SetEndOfFile
AllocConsole
GlobalGetAtomNameA
MapViewOfFileEx
SetLocalTime
LocalCompact
HeapUnlock
SuspendThread
IsDebuggerPresent
EnumDateFormatsExW
FillConsoleOutputAttribute
GetConsoleCursorInfo
CreateRemoteThread
GetProcessTimes
CreateFileA
GetTempFileNameW
SetLocaleInfoA
CreateWaitableTimerA
GetFileType
FlushViewOfFile
GetLongPathNameA
GetCompressedFileSizeA
WriteConsoleW
TlsGetValue
CreateSemaphoreA
FindResourceExA
EnumTimeFormatsA
GetPrivateProfileIntA
PulseEvent
GetWriteWatch
SetEvent
GetStringTypeA
FindFirstFileExA
RtlZeroMemory
LocalAlloc
Toolhelp32ReadProcessMemory
SetPriorityClass
FreeResource
GetVersion
GetThreadTimes
GetFileAttributesExA
WriteConsoleA
FindFirstChangeNotificationW
GetProfileIntW
lstrcmpi
ReadFileEx
GetPrivateProfileSectionNamesA
SetConsoleCP
GetSystemDefaultLCID
GetCurrencyFormatA
SetConsoleTitleA
GetPrivateProfileStructA
FileTimeToDosDateTime
GlobalFindAtomW
GetEnvironmentStringsA
GetCalendarInfoA
CreateDirectoryExA
ReleaseMutex
SystemTimeToTzSpecificLocalTime
SetWaitableTimer
WritePrivateProfileStructA
UpdateResourceW
GetEnvironmentStringsW
GetEnvironmentVariableW
SleepEx
SystemTimeToFileTime
WritePrivateProfileStringW
SetSystemTime
Sleep
InitializeCriticalSectionAndSpinCount
VirtualProtect
lstrcat
GetExitCodeProcess
DisconnectNamedPipe
WaitForSingleObject
TlsAlloc
LocalSize
SetComputerNameW
lstrlenA
WriteConsoleOutputCharacterA
EnumDateFormatsW
EraseTape
GetUserDefaultLangID
AddAtomW
SetFileTime
GetSystemDefaultLangID
VirtualLock
FlushInstructionCache
GetFullPathNameA
CreateDirectoryA
GlobalUnfix
CreateMutexW
EnumSystemLocalesA
DefineDosDeviceA
GetDriveTypeW
Heap32ListFirst
UnhandledExceptionFilter
GetQueuedCompletionStatus
SetConsoleOutputCP
FoldStringW
GetVolumeInformationA
CommConfigDialogW
LockFile
GetAtomNameW
GetComputerNameW
ContinueDebugEvent
GetNamedPipeHandleStateW
OutputDebugStringW
FindCloseChangeNotification
GetPrivateProfileSectionA
DeleteCriticalSection
SetConsoleCursorInfo
SetFilePointer
EnumDateFormatsA
SetEnvironmentVariableW
CreateThread
lstrcpy
ConnectNamedPipe
LocalShrink
GetProfileIntA
Heap32First
GetProfileSectionW
SetThreadPriorityBoost
GetComputerNameA
HeapWalk
GetStringTypeExW
OpenEventW
LockFileEx
GetNumberOfConsoleMouseButtons
SetHandleCount
LocalFileTimeToFileTime
WriteConsoleOutputA
CreateToolhelp32Snapshot
LoadLibraryExW
BeginUpdateResourceW
GlobalAddAtomA
SignalObjectAndWait
SetFileAttributesW
VirtualFree
GetShortPathNameW
GetFileAttributesExW
SetThreadContext
GetDateFormatA
DefineDosDeviceW
GetStringTypeExA
FindFirstFileExW
VirtualAllocEx
CreateEventA
SetConsoleActiveScreenBuffer
GetDateFormatW
GetConsoleOutputCP
LocalFlags
MultiByteToWideChar
MoveFileW
GlobalAddAtomW
OpenSemaphoreW
ReleaseSemaphore
HeapCreate
WaitNamedPipeW
SetConsoleScreenBufferSize
GlobalMemoryStatus
CreateEventW
GetTimeZoneInformation
SetThreadLocale
GetVersionExW
GetCurrencyFormatW
GetProcessVersion
GlobalFix
LocalHandle
FindResourceExW
GetProfileStringW
FreeEnvironmentStringsW
CloseHandle
GetTempFileNameA
WaitNamedPipeA
CreateNamedPipeW
GetPrivateProfileStringA
DeleteFileW
DeleteFileA
EnumResourceLanguagesA
MoveFileExW
WaitCommEvent
DebugActiveProcess
WriteConsoleOutputAttribute
GetMailslotInfo
ReadFileScatter
FormatMessageW
GetTimeFormatA
GetPrivateProfileSectionW
SetConsoleCtrlHandler
FoldStringA
GetVersionExA
OpenEventA
LocalReAlloc
EnumResourceNamesA
WritePrivateProfileSectionA
WriteProcessMemory
GetCurrentThread

advapi32

RegLoadKeyA
RegEnumValueA
LookupPrivilegeValueW
LookupPrivilegeValueA
CryptReleaseContext
RegCreateKeyA
AbortSystemShutdownW
CryptGetUserKey
RegOpenKeyExW
RegQueryMultipleValuesA
LookupPrivilegeDisplayNameW
RegQueryInfoKeyW
StartServiceA
GetUserNameW
RegQueryMultipleValuesW
StartServiceW
CryptGetHashParam
RegRestoreKeyA
LookupSecurityDescriptorPartsW
RegConnectRegistryW
LookupAccountSidA
CryptSetProviderW
RegEnumKeyExW
RegCreateKeyW
RegDeleteKeyA
CryptDecrypt
InitializeSecurityDescriptor
CryptVerifySignatureA
ReportEventA
CryptGetProvParam
LookupPrivilegeNameA
CryptExportKey
RegFlushKey
CryptDestroyKey
CryptEnumProviderTypesW
CryptVerifySignatureW
CryptSetProviderExA
CryptHashSessionKey
CryptEnumProviderTypesA
RegEnumKeyW
RegCreateKeyExA

shell32

SHBrowseForFolder
SHLoadInProc
ExtractIconExW
DoEnvironmentSubstW
SHQueryRecycleBinA
SHUpdateRecycleBinIcon
SHGetInstanceExplorer
ExtractIconEx
SHGetMalloc
ShellAboutW
RealShellExecuteExW
DragQueryFileW
ExtractIconW
SHChangeNotify
FindExecutableW
DuplicateIcon
RealShellExecuteW
SHFreeNameMappings
ExtractIconA
SHGetNewLinkInfo
SHGetPathFromIDListA
ExtractAssociatedIconW
ShellExecuteW
InternalExtractIconListW
RealShellExecuteExA
SHGetPathFromIDList
SHGetDiskFreeSpaceA
SHFileOperation
SHFormatDrive
DragFinish
SHGetSpecialFolderLocation
DragAcceptFiles
DragQueryPoint
SHGetFileInfoW
SheSetCurDrive
CheckEscapesW
ExtractAssociatedIconExW
ShellHookProc
SHAppBarMessage
SHInvokePrinterCommandW
SHGetFileInfoA
SHInvokePrinterCommandA
SHAddToRecentDocs
DragQueryFileAorW
DragQueryFile
SHFileOperationW
SheChangeDirA
DoEnvironmentSubstA
SHGetSettings
CommandLineToArgvW
RealShellExecuteA
SHQueryRecycleBinW
SHGetDesktopFolder
DragQueryFileA
FindExecutableA
SheGetDirA
ShellExecuteA

user32

ChangeDisplaySettingsExW
GetKeyboardState
ChangeMenuA
GetClientRect
EnumChildWindows
CreateWindowStationA
ReleaseCapture
CharUpperA
EnumWindows
GetCursor
CopyImage
LoadMenuW
DestroyCaret
CallMsgFilterW
wvsprintfW
SendIMEMessageExW
LoadAcceleratorsA
GetGUIThreadInfo
IsClipboardFormatAvailable
LookupIconIdFromDirectoryEx
RegisterClassA
GetMonitorInfoA
GetClipboardViewer
DdeDisconnectList
DrawFocusRect
GetPropW
RemovePropW
GetMenuCheckMarkDimensions
IsWindowUnicode
CreateAcceleratorTableA
DdeQueryNextServer
EnumDisplaySettingsA
UnloadKeyboardLayout
DlgDirSelectExW
EnumDisplaySettingsExW
GetClipboardOwner
SetWindowsHookExW
DefWindowProcW
DrawMenuBar
DdeQueryStringW
GetScrollBarInfo
FlashWindowEx
RedrawWindow
ChildWindowFromPoint
EnableMenuItem
EnumDesktopsA
MsgWaitForMultipleObjectsEx
SendIMEMessageExA
ShowWindowAsync
GetSystemMetrics
RegisterDeviceNotificationW
GetWindowRgn
TrackPopupMenuEx
DdeSetUserHandle
DestroyCursor
GetWindowLongA
InvalidateRgn
VkKeyScanA
CharPrevW
InSendMessageEx
PostMessageA
DialogBoxIndirectParamA
SetMenuInfo
IsCharLowerW
ChangeDisplaySettingsA
WinHelpA
BeginDeferWindowPos
GetUpdateRect
SetCaretBlinkTime
MapWindowPoints
ValidateRgn
PtInRect
SetKeyboardState
CreateMDIWindowA
ChangeMenuW
BroadcastSystemMessageW
CharToOemBuffA
SetWindowsHookExA
GetForegroundWindow
MessageBoxIndirectW
GetClassLongW
CreateDialogParamW
DdeSetQualityOfService
DrawEdge
GetMenuBarInfo
CreateAcceleratorTableW
LoadIconW
OemToCharA
InvertRect
GetDesktopWindow
InSendMessage
FindWindowA
GetMessageExtraInfo
EnumThreadWindows
SetMessageQueue
DdeAddData
RegisterWindowMessageA
MonitorFromWindow
GetWindowPlacement
EndTask
BlockInput
GetMenuContextHelpId
GetQueueStatus
SetDoubleClickTime
DrawCaption
PackDDElParam
LoadImageW
EnumDisplayMonitors
EndPaint
SetDlgItemTextA
MonitorFromRect
CharToOemW
GetWindow
DdeCmpStringHandles
ExcludeUpdateRgn
GetMenuStringA
CreateCaret
ToAsciiEx
GetProcessDefaultLayout
GetOpenClipboardWindow
IsRectEmpty
CopyIcon
DrawIcon
BroadcastSystemMessage
GetWindowThreadProcessId
SetWindowsHookA
EnumPropsW
SetPropW
SetScrollRange
UnregisterClassW
ShowCaret
MessageBoxExA
GetMessageTime
EnumPropsA
GetProcessWindowStation
CharNextA
GetWindowContextHelpId
SetCursor
SetWindowLongW
GetListBoxInfo
CloseDesktop
IsCharUpperA
DispatchMessageW
LoadKeyboardLayoutA
ModifyMenuA
GetParent
GetTabbedTextExtentA
UnhookWindowsHook
GetMessageA
SystemParametersInfoW
SetUserObjectInformationW
ReleaseDC
GetShellWindow
OpenWindowStationW
GetMenuDefaultItem
DdeReconnect
GetGuiResources
UnionRect
ChangeClipboardChain
SendDlgItemMessageW
SetMenuItemInfoW
DdeConnectList
GetSysColorBrush
GetUserObjectInformationA
CharNextW
DdeAbandonTransaction
EnumDisplayDevicesA
CloseClipboard
GetClipCursor
GetCaretPos
CharUpperBuffW
SetClipboardData
GrayStringW
OemKeyScan
CreateDialogIndirectParamA
WinHelpW
SetRect
GetPropA
DestroyIcon
AppendMenuW
GetScrollPos
GetClassWord
SetActiveWindow
DdeQueryConvInfo
ExitWindowsEx
SendMessageA
LoadMenuA
EnableScrollBar
SetSysColors
WindowFromDC
DdeUnaccessData
PeekMessageA
GetClassInfoA
SendMessageTimeoutW
EndMenu
CreateIcon
SendMessageW
IsDialogMessageW
GetDlgItem
GetTabbedTextExtentW
PostThreadMessageW
CheckMenuRadioItem
EnumClipboardFormats
EnumDisplayDevicesW
AnyPopup
LoadCursorA
WaitMessage
CreateIconIndirect
SetWinEventHook
FillRect
DefDlgProcW
GetClassInfoW
DlgDirSelectExA
LoadAcceleratorsW
CreatePopupMenu
DeferWindowPos
EndDeferWindowPos
GetKBCodePage
EnumPropsExW
TrackMouseEvent
GetDlgCtrlID
CharLowerA
wsprintfA
GetWindowWord
LoadStringA
CreateCursor
InsertMenuItemA
CallWindowProcA
GetComboBoxInfo
SetClassLongW
FrameRect
SetCaretPos
GetActiveWindow
UnhookWinEvent
SetWindowPlacement
GetUpdateRgn
ScrollWindow
CloseWindow
RegisterClassExW
GetNextDlgGroupItem
InflateRect
LoadImageA
OffsetRect
GetClassInfoExW
IntersectRect
GetIconInfo
GetCapture
ShowScrollBar

Sections

.text
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 291KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

515d4e0f89287c139195052bcbdf2913

Headers

File Characteristics

Imports

kernel32

advapi32

shell32

user32

Sections

.text Size: 150KB - Virtual size: 150KB

.data Size: 291KB - Virtual size: 291KB

.reloc Size: 20KB - Virtual size: 20KB

.bss Size: 5KB - Virtual size: 5KB

.text
Size: 150KB - Virtual size: 150KB

.data
Size: 291KB - Virtual size: 291KB

.reloc
Size: 20KB - Virtual size: 20KB

.bss
Size: 5KB - Virtual size: 5KB