cc5686a982d8f07c4b55260cdb7aecd3fad2a53f2a446d60690ddbc8f306559c

Sharing

Copy URL Twitter E-mail

General

Target

cc5686a982d8f07c4b55260cdb7aecd3fad2a53f2a446d60690ddbc8f306559c
Size

644KB
MD5

6419b4525bb0829fd84bda019bba4cc0
SHA1

1416d6c5eacfb9703730fda4e2166f04ffcb9bfd
SHA256

cc5686a982d8f07c4b55260cdb7aecd3fad2a53f2a446d60690ddbc8f306559c
SHA512

579cbb06cdacf3a95b82b6e2b86d9a7d664ab62550f75df97163636869d62d33c86cbddb8438b832a94064f1e3e6bd0b336c27bee5dc6949d7af5009c75bd417
SSDEEP

12288:iI09qc6/yzS0edtBanQ4Mjoxy7TB5NcCz8iyL:J09qUTMjgcFncCzi

Score

N/A

Malware Config

Signatures

Files

cc5686a982d8f07c4b55260cdb7aecd3fad2a53f2a446d60690ddbc8f306559c
.exe windows x86

fd66f21539287effefb142488f537ca5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddMasked
ImageList_Create
ImageList_Destroy

winmm

timeSetEvent
timeKillEvent

mpr

WNetEnumResourceA
WNetOpenEnumA
WNetAddConnection2A
WNetCancelConnection2A

ws2_32

connect
WSAStartup
WSASocketA
setsockopt
gethostbyaddr
socket
bind
ioctlsocket
htons
sendto
select
recvfrom
closesocket
inet_ntoa
gethostbyname
gethostname
WSAGetLastError

kernel32

InitializeCriticalSection
IsBadReadPtr
GetModuleFileNameA
GetModuleHandleA
FreeLibrary
GetProcAddress
LoadLibraryA
ReleaseSemaphore
GetTickCount
WaitForSingleObject
CreateSemaphoreA
CreateThread
IsBadStringPtrA
InterlockedIncrement
Sleep
CloseHandle
InterlockedDecrement
SetEvent
CreateEventA
GetVersionExA
GetLastError
MulDiv
ResumeThread
SetThreadPriority
ExitProcess
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
GetTimeZoneInformation
GetCPInfo
DeleteCriticalSection
GetACP
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
SetUnhandledExceptionFilter
TlsAlloc
TlsGetValue
TlsSetValue
GetCurrentThreadId
SetLastError
TlsFree
HeapFree
HeapSize
HeapReAlloc
CreateFileA
ReadFile
WriteFile
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
HeapAlloc
GetCommandLineA
GetStartupInfoA
GetCurrentProcess
TerminateProcess
FindNextFileA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
RaiseException
RtlUnwind
EnterCriticalSection
LeaveCriticalSection
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetStdHandle
FlushFileBuffers
SetEndOfFile
IsBadCodePtr
GetStringTypeA
GetStringTypeW
VirtualProtect
GetSystemInfo
VirtualQuery
GetLocaleInfoA
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetOEMCP

user32

ScreenToClient
PtInRect
EndPaint
LoadBitmapA
GetParent
GetWindowLongA
RegisterClassExA
SetRect
GetClassInfoA
RegisterClassA
GetWindowTextA
SetCapture
ClientToScreen
LoadCursorA
SetCursor
ReleaseCapture
DefWindowProcA
GetSystemMetrics
LoadImageA
GetClassNameA
SetWindowTextA
CreateWindowExA
GetDlgItemTextA
LoadIconA
GetCursorPos
TrackPopupMenu
BeginPaint
SetWindowPos
GetWindowRect
GetSysColor
SetDlgItemTextA
InvalidateRect
GetClientRect
GetFocus
GetAsyncKeyState
GetDlgItem
SetFocus
CreateDialogParamA
ShowWindow
UpdateWindow
SendDlgItemMessageA
IsWindow
EnableWindow
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
SetPropA
RemovePropA
GetPropA
SendMessageA
CreatePopupMenu
InsertMenuItemA
CreateMenu
DestroyMenu
MessageBoxA
LoadStringA
WinHelpA
DrawTextA
SetWindowLongA
EnumChildWindows

gdi32

GetDeviceCaps
SetBkColor
SetTextColor
GetTextExtentPoint32A
CreateFontA
BitBlt
CreatePen
CreateFontIndirectA
DeleteDC
GetObjectA
SelectObject
CreateCompatibleDC
DeleteObject
SetPolyFillMode
LineTo
GetStockObject
MoveToEx

comdlg32

GetSaveFileNameA

advapi32

RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegConnectRegistryA
RegOpenKeyA
OpenSCManagerA
EnumServicesStatusA
RegEnumValueA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyExA
RegEnumKeyA
RegSetValueExA

shell32

ShellExecuteA

Sections

.text
Size: 388KB - Virtual size: 384KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 805KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fd66f21539287effefb142488f537ca5

Headers

File Characteristics

Imports

comctl32

winmm

mpr

ws2_32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

Sections

.text Size: 388KB - Virtual size: 384KB

.rdata Size: 52KB - Virtual size: 49KB

.data Size: 12KB - Virtual size: 805KB

.rsrc Size: 188KB - Virtual size: 188KB

.text
Size: 388KB - Virtual size: 384KB

.rdata
Size: 52KB - Virtual size: 49KB

.data
Size: 12KB - Virtual size: 805KB

.rsrc
Size: 188KB - Virtual size: 188KB