7044547ffdb2d80f21d353ba26e91ea24c53d524b475b551e8adb1622bf14a94

Sharing

Copy URL Twitter E-mail

General

Target

7044547ffdb2d80f21d353ba26e91ea24c53d524b475b551e8adb1622bf14a94
Size

1008KB
MD5

6dc5f624107dd87f8d2160d7b1b6aa91
SHA1

5ed1713c308fd1bee0fc7c37038e425e9a88d152
SHA256

7044547ffdb2d80f21d353ba26e91ea24c53d524b475b551e8adb1622bf14a94
SHA512

c27372e7abf5921a6e83701227283673b97e18698562ebfad3665b04b925f41f125100bd3548f059a3f74c8a0f01d6b453775afba20bb33a09abd86e9fbd1b45
SSDEEP

24576:yPk08iscMZoRdUBHC/hmfdwir4Fp3ylKtb/JFwE:5tuyBiYfdt4GlKtbJ7

Score

N/A

Malware Config

Signatures

Files

7044547ffdb2d80f21d353ba26e91ea24c53d524b475b551e8adb1622bf14a94
.exe windows x86

81f0673cc0ced50afc6a8c317e589aa9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
lstrcmpiA
HeapSize
GetSystemDefaultLangID
FileTimeToSystemTime
GetFileInformationByHandle
FileTimeToLocalFileTime
_lcreat
GetModuleHandleA
HeapReAlloc
GetACP
HeapFree
ExitProcess
CreateSemaphoreA
_lopen
GetCurrentDirectoryA
SetCurrentDirectoryA
RemoveDirectoryA
GetWindowsDirectoryA
lstrlenA
lstrcatA
lstrcmpA
FindNextFileA
GetCurrentThread
GetTimeZoneInformation
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
LoadLibraryA
GetProcAddress
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
LocalFree
CompareStringW
CompareStringA
FlushFileBuffers
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetCurrentProcessId
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetEndOfFile
SetStdHandle
RaiseException
LCMapStringW
LCMapStringA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetOEMCP
GetCPInfo
GetFullPathNameA
GetStdHandle
SetHandleCount
GetCurrentProcess
TerminateProcess
GetFileAttributesA
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
SetEnvironmentVariableA
MoveFileA
GetFileType
GetLocalTime
GetSystemTime
FreeLibrary
GetTempFileNameA
CreateMutexA
ReleaseMutex
SetErrorMode
GetLogicalDrives
GetDriveTypeA
GetDiskFreeSpaceA
GetSystemDirectoryA
GetPrivateProfileStringA
WinExec
GlobalFree
GlobalUnlock
GlobalLock
_lclose
GlobalReAlloc
_llseek
_lread
GlobalAlloc
OpenFile
GetModuleFileNameA
HeapAlloc
GetProcessHeap
GetLastError
GetTempPathA
CreateDirectoryA
DeleteFileA
_lwrite
WriteFile
WaitForSingleObject
GetVersion
SetFileAttributesA
CopyFileA
CloseHandle
CreateFileA
ReadFile
FindFirstFileA
SetFilePointer
GlobalSize
lstrcpyA
GetPrivateProfileIntA
FindClose
GetVersionExA

user32

GetDlgItem
CreateWindowExA
SetRect
DialogBoxParamA
SetWindowPos
GetSystemMetrics
DefWindowProcA
SendMessageA
OffsetRect
UpdateWindow
GetWindowRect
MapWindowPoints
EndDialog
GetParent
ReleaseCapture
SetCursor
KillTimer
EndPaint
BeginPaint
EnableWindow
FindWindowA
SetTimer
MessageBeep
ReleaseDC
GetDC
CopyRect
GetClientRect
InvalidateRect
MessageBoxA
LoadStringA
LoadBitmapA
IntersectRect
GetCapture
SetCapture
ShowCursor
PtInRect
GetSystemMenu
DestroyMenu
WindowFromPoint
EnableMenuItem
WinHelpA
SetForegroundWindow
GetAsyncKeyState
GetDesktopWindow
IsDlgButtonChecked
PeekMessageA
ShowWindow
ClientToScreen
SetCursorPos
GetCursorPos
ClipCursor
FillRect
CharUpperA
ScreenToClient
CallWindowProcA
GetWindowTextA
SetWindowTextA
SetWindowLongA
GetWindowLongA
PostMessageA
SetFocus
GetWindowTextLengthA
GetClassInfoA
BringWindowToTop
GetDlgItemInt
SetDlgItemInt
GetScrollRange
LoadCursorA
CreateDialogParamA
GetSysColor
GetActiveWindow
GetFocus
CheckRadioButton
IsWindowVisible
GetWindow
SetDlgItemTextA
RegisterClassA
IsWindowEnabled
GetClassNameA
GetLastActivePopup
GetForegroundWindow
RemoveMenu
LoadAcceleratorsA
LoadIconA
GetMessageA
IsDialogMessageA
IsWindow
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
IsRectEmpty
DrawTextA
MoveWindow
GetDlgItemTextA
SetScrollPos
SetScrollRange
CheckDlgButton
GetScrollPos
SendDlgItemMessageA
wsprintfA
DestroyWindow
LoadMenuA
GetSubMenu
TrackPopupMenu
PostQuitMessage
GetKeyState
CharLowerA
EnumWindows

gdi32

GetStockObject
IntersectClipRect
SelectClipRgn
SetDIBitsToDevice
DeleteObject
CreateRectRgn
BitBlt
SelectObject
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
SetDIBits
LineTo
MoveToEx
CreatePen
GetObjectA
SetROP2
CreateSolidBrush
CreateDIBSection
Rectangle
GetTextExtentPoint32A
CreateFontA
SetBkMode
SetBkColor
SetTextColor
RectInRegion
GetTextMetricsA
GetPixel
EnumFontFamiliesA
CreateFontIndirectA
GetClipBox
CreateRectRgnIndirect
OffsetRgn
CombineRgn
EndDoc
EndPage
SetStretchBltMode
StartDocA
StartPage
StretchDIBits
TextOutA
GetDeviceCaps
CreateDCA
ExcludeClipRect
SetTextAlign
GetTextExtentPointA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
PrintDlgA

advapi32

RegCloseKey
RegQueryValueExA
RegSetValueExA
RegDeleteKeyA
RegEnumValueA
RegOpenKeyExA
RegCreateKeyExA

shell32

DragFinish
SHGetDesktopFolder
SHGetMalloc
DragAcceptFiles
DragQueryFileA
ShellExecuteA

ole32

CoInitialize
CoCreateInstance

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
GetErrorInfo
SysAllocString

winmm

timeGetTime
sndPlaySoundA
PlaySoundA
waveOutGetNumDevs

ezdll

ArcMemLock
ArcMemUnlock
EzDibNew
SetAbortFunc
EzDibGetType
ArcMemFree
EzDibResample
EzOpenFile
EzDumpPcxFile
EzSaveFile
ArcMemAlloc
EzDumpBmpFile
EzGetLastError
EzLoadBmpFileThumbnail
EzDumpTifFile
EzDumpJpgFile
EzDibGetSize
EzDibDisplay
EzImageCropToDib
EzImageDelete
EzOpenFileAsImage
EzLoadPcdFile
EzDibConvert8BitToTrueColor

stitch30

?VerifyMatrixLayout@@YAHPAUStitchMatrix@@@Z
?DeInitializeDxFrame@@YAXXZ
?InitializeDxFrame@@YAHPAUHWND__@@@Z
?Blend@@YAJPAUStitchMatrix@@PAUStitchOptions@@PAPAXPAUtagRECT@@P6AHH@Z@Z
?Align@@YAJPAUStitchMatrix@@PAUStitchOptions@@P6AHH@Z@Z
?BuildAllPyramids@@YAJPAUStitchMatrix@@HHP6AHH@Z@Z
?SetProgressState@@YAXH@Z
?ReleasePyramid@@YAJPAUStitchPyramid@@@Z
?Locate@@YAJPAUStitchMatrix@@PAUStitchOptions@@UtagPOINT@@PAJ333@Z

comctl32

ImageList_Destroy
ImageList_Draw
ImageList_AddMasked
ImageList_Create

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 524KB - Virtual size: 523KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 124KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�RH
Size: 240KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

81f0673cc0ced50afc6a8c317e589aa9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

winmm

ezdll

stitch30

comctl32

version

Sections

.text Size: 524KB - Virtual size: 523KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 124KB - Virtual size: 176KB

.rsrc Size: 100KB - Virtual size: 97KB

�RH Size: 240KB - Virtual size: 240KB

.text
Size: 524KB - Virtual size: 523KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 124KB - Virtual size: 176KB

.rsrc
Size: 100KB - Virtual size: 97KB

�RH
Size: 240KB - Virtual size: 240KB