4a540712b7e53db8f2b1bdda56cf047b76159a9a4136cd82346423dbf301b2d5

Sharing

Copy URL Twitter E-mail

General

Target

4a540712b7e53db8f2b1bdda56cf047b76159a9a4136cd82346423dbf301b2d5
Size

545KB
MD5

425bcbff5e8a50c64155abc3835f23b0
SHA1

e2280c5a7695db7c44de5317c90580ffd969303b
SHA256

4a540712b7e53db8f2b1bdda56cf047b76159a9a4136cd82346423dbf301b2d5
SHA512

66f18fca17980be8b4331fe1b933633da15664e0a198b8d41b5bb58c7f361dbe1b665ab30b2897566179baa5ddf3ad8a97903f367d6ba6faedf0a1ff759c831c
SSDEEP

12288:Pwm8VtqF5o7TR+i7OSXcQ9f2/3pVukAPjA4sTBNBfIrlUkc0:PwHoF5oPRh1B9fEPuUzfYll

Score

N/A

Malware Config

Signatures

Files

4a540712b7e53db8f2b1bdda56cf047b76159a9a4136cd82346423dbf301b2d5
.exe windows x86

b741ad2afd93b26c951b63c13745dc57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoW
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
HeapReAlloc
RaiseException
ExitProcess
HeapSize
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
GlobalFlags
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
SetEnvironmentVariableA
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
lstrlenA
GetFileTime
GetFileAttributesW
SetErrorMode
GetModuleHandleA
GlobalFindAtomW
CompareStringW
LoadLibraryA
GetVersionExA
GlobalAddAtomW
InterlockedDecrement
FreeResource
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
lstrcmpW
GlobalDeleteAtom
GetModuleHandleW
GlobalLock
GlobalUnlock
MulDiv
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
SetLastError
GetThreadLocale
ReleaseMutex
CreateMutexW
LocalFree
FormatMessageW
lstrlenW
GetVersion
GetLastError
MoveFileW
DeleteFileW
FindClose
FindFirstFileW
FileTimeToSystemTime
FileTimeToLocalFileTime
SystemTimeToFileTime
GetTempPathW
ReadFile
GetFileSize
MultiByteToWideChar
WideCharToMultiByte
CreateDirectoryW
CreateProcessW
GetTickCount
GlobalFree
GlobalAlloc
OpenProcess
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
SetUnhandledExceptionFilter
WriteProcessMemory
VirtualProtect
FreeLibrary
CloseHandle
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
CreateFileW
GetProcAddress
LoadLibraryW
GetPrivateProfileStringW
GetVersionExW
SizeofResource
LockResource
LoadResource
FindResourceW
GetModuleFileNameW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetLocalTime
CreateThread
Sleep
HeapDestroy
TerminateThread

user32

UnregisterClassW
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
InvalidateRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
CharNextW
PostThreadMessageW
ReleaseCapture
SetCapture
LoadCursorW
GetSysColorBrush
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextW
GetForegroundWindow
GetTopWindow
GetMessagePos
MapWindowPoints
SetForegroundWindow
UpdateWindow
GetMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
PtInRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetSysColor
DestroyMenu
CopyRect
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
MessageBoxW
SetCursor
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetMessageTime
GetFocus
ModifyMenuW
EnableMenuItem
CheckMenuItem
UnhookWindowsHookEx
GetWindow
SetWindowContextHelpId
GetParent
MapDialogRect
SetWindowPos
RegisterClipboardFormatW
PostQuitMessage
PostMessageW
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
CharUpperW
GetWindowRect
GetDesktopWindow
EnableWindow
GetClientRect
GetSystemMetrics
SendMessageW
IsIconic
LoadIconW
UnregisterClassA

gdi32

GetWindowExtEx
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetMapMode
GetViewportExtEx
DeleteObject
GetStockObject
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutW
RectVisible
PtVisible
GetDeviceCaps
SetMapMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
ExtTextOutW
GetObjectW
CreateBitmap

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

InitializeSecurityDescriptor
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyW
RegSetValueExW
CreateProcessAsUserW
DuplicateTokenEx
SetSecurityDescriptorDacl
StartServiceCtrlDispatcherW
OpenProcessToken
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
DeleteService
ControlService
ChangeServiceConfig2W
CreateServiceW
CloseServiceHandle
OpenServiceW
OpenSCManagerW
SetServiceStatus
RegisterServiceCtrlHandlerW

shell32

ShellExecuteW
ShellExecuteExW
SHGetSpecialFolderPathW

comctl32

InitCommonControlsEx

shlwapi

PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathFileExistsW
PathFindFileNameW

oledlg

OleUIBusyW

ole32

CLSIDFromString
CLSIDFromProgID
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleFlushClipboard
CoTaskMemFree
CoCreateInstance
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
CoGetClassObject
CoRevokeClassObject
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemAlloc

oleaut32

SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen

wininet

InternetSetFilePointer
HttpQueryInfoW
InternetOpenW
InternetCloseHandle
InternetOpenUrlW
InternetReadFile

Sections

.text
Size: 272KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b741ad2afd93b26c951b63c13745dc57

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

wininet

Sections

.text Size: 272KB - Virtual size: 270KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 188KB - Virtual size: 188KB

.text
Size: 272KB - Virtual size: 270KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 188KB - Virtual size: 188KB