791e535816c5cd4c907ffd3a599b7df0b967d13b10cdcc508d12b6663eae0515

Sharing

Copy URL Twitter E-mail

General

Target

791e535816c5cd4c907ffd3a599b7df0b967d13b10cdcc508d12b6663eae0515
Size

2.3MB
MD5

ee272975dedaa769a196a6a91ca5841a
SHA1

50f6d100c53dc48d93edec8cf21f6a7d23d57a4a
SHA256

791e535816c5cd4c907ffd3a599b7df0b967d13b10cdcc508d12b6663eae0515
SHA512

60bc03e3c126fa9cb97b5b2c22476b95b338a4cf5e417fcac21a43a52396b73b060f0e4a50a182560b82a939d9bc3ab4586b5398e8a0b7c41f6ecb928748d665
SSDEEP

49152:BmOksQ3ZXuzbKDloQqRbnQcrR4qeW3TjDSt:wRsQ3ZXufcqRbQc8t

Score

N/A

Malware Config

Signatures

Files

791e535816c5cd4c907ffd3a599b7df0b967d13b10cdcc508d12b6663eae0515
.exe windows x86

31196e1aba786d3e72080d7cb7f1e062

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetFullPathNameA
SetErrorMode
FindResourceExA
RtlUnwind
SetEnvironmentVariableA
SetCurrentDirectoryA
RaiseException
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
VirtualAlloc
VirtualQuery
HeapReAlloc
ExitProcess
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsValidCodePage
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
GetFileInformationByHandle
PeekNamedPipe
GetFileType
GetConsoleCP
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
VirtualFree
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoW
CompareStringW
MoveFileA
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
GlobalFlags
GetThreadLocale
WritePrivateProfileStringA
InterlockedIncrement
GetModuleHandleW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
VirtualProtect
GetFileTime
GetFileSizeEx
GetFileAttributesA
SystemTimeToFileTime
GetFileAttributesExA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
LoadLibraryExA
lstrcmpA
FreeResource
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
SuspendThread
ResumeThread
InterlockedDecrement
GetModuleFileNameW
GlobalFree
GetSystemDefaultLangID
DeviceIoControl
GetLogicalDriveStringsA
CreatePipe
GetVersion
MoveFileExA
VirtualUnlock
VirtualLock
ReleaseMutex
ReleaseSemaphore
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
MulDiv
lstrlenA
SetLastError
GetTickCount
GetCurrentThread
SetThreadPriority
GetCurrentThreadId
InterlockedExchange
GetACP
CreateSemaphoreA
GetModuleHandleA
ResetEvent
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CreateEventA
SetThreadExecutionState
ReadFile
CopyFileA
GetVolumeInformationA
RemoveDirectoryA
WaitForSingleObject
CreateMutexA
GlobalMemoryStatus
OpenProcess
GetProcessHeap
HeapAlloc
HeapFree
GetTempPathA
GetSystemInfo
FlushInstructionCache
GetCurrentProcess
GetLastError
GetDriveTypeA
GetDiskFreeSpaceExA
CreateDirectoryA
GetVersionExA
GetPrivateProfileIntA
CreateFileA
WriteFile
GetModuleFileNameA
DeleteFileA
GetFileSize
SetFilePointer
CloseHandle
FreeLibrary
LoadLibraryA
GetProcAddress
Sleep
GetCurrentProcessId
MultiByteToWideChar
CreateProcessA
SetEvent
CreateThread
GetPrivateProfileStringA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetConsoleMode

user32

LoadCursorA
GetSysColorBrush
GetAsyncKeyState
WindowFromPoint
DestroyMenu
SetWindowContextHelpId
MapDialogRect
SetCursor
PostQuitMessage
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
GetWindowThreadProcessId
GetDesktopWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
IsWindowEnabled
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
UnregisterClassA
ModifyMenuA
CheckMenuItem
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetCapture
ReleaseCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetMenu
SetForegroundWindow
UpdateWindow
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
CharUpperA
MessageBeep
SetRect
InvalidateRect
CharNextA
CopyAcceleratorTableA
IsRectEmpty
InvalidateRgn
GetNextDlgGroupItem
RegisterClipboardFormatA
LoadBitmapA
GetParent
EqualRect
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
GetWindowLongA
SetWindowLongA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindow
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
GetActiveWindow
IsWindowVisible
GetKeyState
ValidateRect
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
DispatchMessageA
PostThreadMessageA
wsprintfA
PeekMessageA
LoadIconA
IsIconic
GetSystemMenu
GetSubMenu
EnableMenuItem
AppendMenuA
DeleteMenu
DrawIcon
ShowWindow
SetWindowPos
GetSystemMetrics
ExitWindowsEx
GetCursorPos
ScreenToClient
KillTimer
SetTimer
GetWindowRect
IsZoomed
GetClientRect
SendMessageA
EnableWindow
RegisterWindowMessageA
IsWindow
PostMessageA

gdi32

EnumFontFamiliesExA
GetRgnBox
GetTextColor
GetBkColor
GetMapMode
CreateSolidBrush
GetStockObject
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
DeleteObject
SetMapMode
CreateFontIndirectA
GetObjectA
GetDeviceCaps
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
CreateRectRgnIndirect
SaveDC
RestoreDC
SetBkMode

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegDeleteValueA
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
ShellExecuteA

shlwapi

PathFindExtensionA
PathRemoveFileSpecW
PathStripToRootA
PathFindFileNameA
PathIsUNCA

oledlg

ord8

ole32

CoInitialize
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoInitializeEx
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysAllocString
SysFreeString
SysStringLen
SysAllocStringByteLen
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
VariantCopy

skinmagic

ord9
ord8
ord10
ord2
ord3
ord1
ord5

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

winmm

timeGetTime
PlaySoundA

starburn

StarBurn_UpStartEx
StarBurn_FindDevice
StarBurn_CdvdBurnerGrabber_Create
StarBurn_CdvdBurnerGrabber_GetDeviceInformation
StarBurn_CdvdBurnerGrabber_GetSupportedMediaFormats
StarBurn_CdvdBurnerGrabber_GetSupportedMediaFormatsExEx
StarBurn_GetDeviceNameByDeviceAddress
StarBurn_Destroy
StarBurn_CdvdBurnerGrabber_Eject
StarBurn_CdvdBurnerGrabber_TestUnitReadyEx
StarBurn_CdvdBurnerGrabber_Load
StarBurn_CdvdBurnerGrabber_GetDiscInformation
StarBurn_CdvdBurnerGrabber_GetTrackInformation
StarBurn_CdvdBurnerGrabber_GetInsertedDiscType
StarBurn_CdvdBurnerGrabber_GetTOCInformation
StarBurn_CdvdBurnerGrabber_TestUnitReady
StarBurn_CdvdBurnerGrabber_Blank
StarBurn_DVDVideo_Create
StarBurn_CdvdBurnerGrabber_ProbeSupportedWriteModes
StarBurn_DVDVideo_GetSizeInUCHARs
StarBurn_CdvdBurnerGrabber_GetBUP
StarBurn_CdvdBurnerGrabber_SetBUP
StarBurn_CdvdBurnerGrabber_GetSpeeds
StarBurn_CdvdBurnerGrabber_SetSpeeds
StarBurn_CdvdBurnerGrabber_SendOPC
StarBurn_DVDVideo_GetTreePointer
StarBurn_CdvdBurnerGrabber_TrackAtOnceFromTree
StarBurn_CdvdBurnerGrabber_CloseSession
StarBurn_DVDVideo_Destroy
StarBurn_DVDVideo_Read
StarBurn_DownShut

wininet

InternetCloseHandle
InternetOpenA
InternetGetConnectedState
InternetReadFile
HttpQueryInfoA
InternetOpenUrlA

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_TEXT64
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MY_LONG
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31196e1aba786d3e72080d7cb7f1e062

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

skinmagic

version

winmm

starburn

wininet

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

_TEXT64 Size: 1KB - Virtual size: 1KB

.rdata Size: 264KB - Virtual size: 264KB

.data Size: 37KB - Virtual size: 131KB

.MY_LONG Size: 512B - Virtual size: 4B

.rsrc Size: 136KB - Virtual size: 136KB

.text
Size: 1.9MB - Virtual size: 1.9MB

_TEXT64
Size: 1KB - Virtual size: 1KB

.rdata
Size: 264KB - Virtual size: 264KB

.data
Size: 37KB - Virtual size: 131KB

.MY_LONG
Size: 512B - Virtual size: 4B

.rsrc
Size: 136KB - Virtual size: 136KB