18c9b186e18a4e591ecd86edefdb0bde6134fb7ec911eab9afc5b30874ac3515

Sharing

Copy URL

Twitter E-mail

General

Target

18c9b186e18a4e591ecd86edefdb0bde6134fb7ec911eab9afc5b30874ac3515
Size

732KB
MD5

6771bf116a7fcb8f9451f74cd71dd050
SHA1

ef729276365aefb6eb7eb39ce80b5f52ce610003
SHA256

18c9b186e18a4e591ecd86edefdb0bde6134fb7ec911eab9afc5b30874ac3515
SHA512

1d0f8b830ac35c8d8bf6153f33db03e866bc6d2904d78b8a03a35b75398171237fae1f5c56740c25885dfa0a952ba20955872ae06e35bd66674cd4c404f2f72a
SSDEEP

12288:MRXOebdynUojLXkqlrAHYhvMRIqMq2DIXGrLzvIXGBi9q0cbXJ+/ttV:MRXDbdYjLXPliBnsLDh0cbXJ+/x

Score

N/A

Malware Config

Signatures

Files

18c9b186e18a4e591ecd86edefdb0bde6134fb7ec911eab9afc5b30874ac3515
.exe windows x86

2fd16d2128281ac52174ed393f1f6941

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

c4dll32m

_f4assign@8
_d4appendStart@8
_d4append@4
_d4tagSelect@8
_d4optimizeWrite@8
_d4eof@4
_d4seek@8
_d4tag@8
_d4fieldJ@8
_f4long@4
_d4freeBlocks@4
_f4memoStr@4
_d4flush@4
_d4create@16
_d4close@4
_code4initUndo@4
_d4field@8
_code4initLow@12
_d4open@8
_f4assignLong@8
_d4skip@8
_d4top@4

kernel32

WritePrivateProfileStringA
TlsSetValue
LocalReAlloc
TlsGetValue
GetCPInfo
GetOEMCP
TlsFree
GlobalReAlloc
SetErrorMode
RtlUnwind
GetCommandLineA
ExitProcess
RaiseException
GetSystemTimeAsFileTime
LocalAlloc
TlsAlloc
TerminateProcess
SetStdHandle
HeapReAlloc
HeapSize
GetACP
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
HeapFree
GetShortPathNameA
GlobalDeleteAtom
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
GlobalHandle
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
GetModuleFileNameA
GetWindowsDirectoryA
GetStartupInfoA
CreateProcessA
lstrlenW
GetProfileStringA
GetPrivateProfileStringA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetVolumeInformationA
GetThreadLocale
GetStringTypeExA
SetEndOfFile
DeleteFileA
MoveFileA
FlushFileBuffers
UnlockFile
LockFile
ReadFile
SetFilePointer
WriteFile
GlobalFlags
GetCurrentProcess
DuplicateHandle
LeaveCriticalSection
GetProcessVersion
EnterCriticalSection
SetLastError
DeleteCriticalSection
InitializeCriticalSection
MulDiv
SystemTimeToFileTime
CreateFileA
FindClose
LocalFileTimeToFileTime
FindFirstFileA
GetFileSize
GetTickCount
CloseHandle
LoadLibraryA
lstrcmpA
GetCurrentThread
LoadResource
FreeLibrary
FindResourceA
GlobalFindAtomA
LockResource
GetCurrentThreadId
GetVersionExA
lstrcatA
GlobalGetAtomNameA
lstrcpyA
GlobalAddAtomA
GetVersion
lstrcmpiA
GetModuleHandleA
GetProcAddress
GetLastError
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
lstrcpynA
GetFileAttributesA
FormatMessageA
HeapDestroy
HeapCreate
GetFileType
HeapAlloc

user32

GetSysColorBrush
ReleaseDC
GetDC
GetClassNameA
LoadCursorA
PtInRect
ClientToScreen
CharUpperA
BeginPaint
EndPaint
GrayStringA
DestroyIcon
PostThreadMessageA
GetTopWindow
RegisterClassA
DrawTextA
TabbedTextOutA
GetWindowTextA
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetForegroundWindow
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSystemMetrics
BringWindowToTop
EqualRect
CopyRect
GetDlgItem
SetWindowLongA
GetMessageA
SetWindowTextA
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
SetMenu
GetMenu
LoadIconA
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
GetActiveWindow
ShowWindow
IsWindow
GetDesktopWindow
GetWindow
SetCursor
PeekMessageA
PostMessageA
GetCapture
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
UpdateWindow
GetDlgCtrlID
IsChild
InvalidateRect
AdjustWindowRectEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
TranslateMessage
ValidateRect
GetCursorPos
ShowOwnedPopups
PostQuitMessage
EndDialog
CreateDialogIndirectParamA
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
LoadStringA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SendMessageA
MessageBoxA
IsIconic
SetForegroundWindow
FindWindowA
RegisterClipboardFormatA
GetSubMenu
GetMenuItemID
wsprintfA
GetKeyState
IsDialogMessageA
IsWindowVisible
EnableWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
DispatchMessageA
ScreenToClient
DeferWindowPos
GetClientRect
BeginDeferWindowPos
EndDeferWindowPos
SetWindowPos
GetMenuItemCount
WinHelpA
GetMessagePos
UnregisterClassA

gdi32

GetClipBox
SetBkColor
GetObjectA
GetDeviceCaps
DeleteObject
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetMapMode
SetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
ScaleWindowExtEx
PtVisible
TextOutA
ExtTextOutA
RectVisible
Escape
CreateBitmap
SetTextColor

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
RegCreateKeyA
RegQueryValueExA
RegSetValueA
RegCreateKeyExA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegQueryValueA
GetFileSecurityA
RegCloseKey
RegOpenKeyExA
RegEnumValueA
SetFileSecurityA

shell32

ExtractIconA
DragQueryFileA
DragFinish
SHGetFileInfoA

comctl32

ord17

oledlg

ord8

ole32

CLSIDFromString
StringFromCLSID
OleRun
CoDisconnectObject
CoCreateInstance
CoTaskMemFree
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoRevokeClassObject
CoRegisterClassObject
CLSIDFromProgID
StringFromGUID2
OleIsCurrentClipboard
OleFlushClipboard
CoTaskMemAlloc

oleaut32

VariantClear
VariantCopy
VariantChangeType
SysAllocStringLen
SysFreeString
SysAllocString
SysStringByteLen
SysStringLen
SysAllocStringByteLen
LoadTypeLi

Exports

Exports

??4l4linkSt@@QAEAAU0@ABU0@@Z

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 360KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2fd16d2128281ac52174ed393f1f6941

Headers

File Characteristics

Imports

c4dll32m

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

oleaut32

Exports

Exports

Sections

.text Size: 176KB - Virtual size: 174KB

.rdata Size: 360KB - Virtual size: 356KB

.data Size: 24KB - Virtual size: 39KB

.rsrc Size: 20KB - Virtual size: 18KB

.text Size: 148KB - Virtual size: 148KB

.text
Size: 176KB - Virtual size: 174KB

.rdata
Size: 360KB - Virtual size: 356KB

.data
Size: 24KB - Virtual size: 39KB

.rsrc
Size: 20KB - Virtual size: 18KB

.text
Size: 148KB - Virtual size: 148KB