045712dcb33896dba644c6a59a551897e7ecfef50e8046fb6d37d65e94213368

Sharing

Copy URL Twitter E-mail

General

Target

045712dcb33896dba644c6a59a551897e7ecfef50e8046fb6d37d65e94213368
Size

711KB
MD5

6fb848c6eafdea507ee144a36e7614d0
SHA1

102c6034c3d3d954bff47165b18c57da37ea8d05
SHA256

045712dcb33896dba644c6a59a551897e7ecfef50e8046fb6d37d65e94213368
SHA512

2f0601a19294d9e976fd7fa5d9d3f0f8777a5d9877086c79fa97aa21857aa5fda5a1b01196a0d16771eaf6881c72cb1306881ee4b3dd927df167bba4ffc5c61f
SSDEEP

12288:Uedt5dSBOU0OZ6DfFRdLiCufqW4g9Pam2n2zTq4B3eApD0SGe:t3LSBOuQ7FRd7W4gNam22zTxB3B

Score

N/A

Malware Config

Signatures

Files

045712dcb33896dba644c6a59a551897e7ecfef50e8046fb6d37d65e94213368
.exe windows x86

6c37f02e3deda46efe9e65afe0b201be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleInformation
CreateThread
GlobalLock
GetLastError
GetTempFileNameA
GlobalAddAtomA
ExitThread
GetFullPathNameW
RtlUnwind
VirtualQuery
LeaveCriticalSection
LoadLibraryExW
WriteConsoleW
GetFullPathNameA
GetPrivateProfileStringA
GetLocaleInfoW
GetConsoleMode
CopyFileW
DeleteFileA
WinExec
ResetEvent
CreateFileMappingA
GetModuleHandleA
HeapCreate
GetCurrentThreadId
SetCurrentDirectoryA
GetVersionExA
GetThreadLocale
HeapFree
GetTempPathA
GetFileSize
SetStdHandle
lstrlenW
WriteFile
InterlockedCompareExchange
GetOEMCP
DuplicateHandle
GetStdHandle
GlobalAlloc
IsBadWritePtr
TlsSetValue
GetEnvironmentStrings
FindClose
FindFirstFileW
OpenProcess
InterlockedIncrement
LockFile
TerminateThread
CreateDirectoryA
InterlockedDecrement
TlsGetValue
GetDriveTypeA
GetWindowsDirectoryW
FormatMessageA
GetSystemInfo
GetSystemTime
FileTimeToSystemTime
FindNextFileW
GetUserDefaultLangID
CreateDirectoryW
MoveFileExA
GetFileType
FreeEnvironmentStringsA
LoadLibraryA
LoadResource
GetCurrentDirectoryW
SearchPathA
GetEnvironmentVariableA
GetACP
lstrcpynA
IsValidCodePage
GetModuleHandleW
GetCurrentProcessId
GetLocaleInfoA
lstrlenA
DeleteCriticalSection
UnlockFile
GetSystemTimeAsFileTime
LocalReAlloc
GetPrivateProfileIntA
GetDiskFreeSpaceA
HeapDestroy
LocalFileTimeToFileTime
Sleep
SetFileTime
FileTimeToLocalFileTime
SetEndOfFile
FreeResource
SetThreadPriority
ExitProcess
SetHandleCount
FlushFileBuffers
GetStringTypeA
CreateFileW
GlobalReAlloc
lstrcpyW
GetFileInformationByHandle
CompareStringA
LCMapStringW
GlobalDeleteAtom
LocalAlloc
OutputDebugStringA
GetFileTime
FormatMessageW
WaitForSingleObject
DeleteFileW
GetDateFormatA
TlsFree
GetProcAddress
CloseHandle
SetFilePointer
GetTickCount
InitializeCriticalSection
LoadLibraryExA
InterlockedExchange
PeekNamedPipe
GetCommandLineA
LoadLibraryW
OpenMutexA
ReadFile
GetCPInfo
SetLastError
CreateProcessW
GetFileAttributesA
GetCurrentProcess
VirtualFree
CopyFileA
GetProfileStringA
EnumSystemLocalesA
ConvertDefaultLocale
UnhandledExceptionFilter
QueryPerformanceFrequency
GetVolumeInformationW
CreateFileA
UnmapViewOfFile
lstrcmpA
GetModuleFileNameA
lstrcatA
WideCharToMultiByte
VirtualAlloc
LCMapStringA
CompareStringW
EnterCriticalSection
GetUserDefaultLCID
HeapAlloc
lstrcpyA
HeapReAlloc
GetCommandLineW
GetStartupInfoW
RemoveDirectoryA
SetEvent
OpenEventA
GetLocalTime
GlobalGetAtomNameA
IsBadCodePtr
MoveFileA
GetStartupInfoA
SetUnhandledExceptionFilter
CreateProcessA
SizeofResource
GlobalUnlock
AreFileApisANSI
FatalAppExitA
GetCurrentDirectoryA
TerminateProcess
GlobalFlags
GetVersion
TlsAlloc
CreateEventA
QueryPerformanceCounter
FindCloseChangeNotification
IsBadReadPtr
LocalLock
GetCurrentThread
FreeEnvironmentStringsW
CreateMutexA
lstrcmpiA
FreeLibrary
SetErrorMode
SetFileAttributesW
FileTimeToDosDateTime
MulDiv
IsValidLocale
LocalFree
GetModuleFileNameW
GlobalHandle
RaiseException
lstrcmpiW
SetCurrentDirectoryW
GetEnvironmentStringsW
FindNextChangeNotification
lstrcatW
GlobalFree
FindResourceA
VirtualProtect
SetEnvironmentVariableA
IsDebuggerPresent
MultiByteToWideChar
GetStringTypeW
GetTimeZoneInformation
HeapSize
LockResource
OutputDebugStringW

user32

GetSystemMenu
HideCaret
ScrollWindow
IsDlgButtonChecked
SendDlgItemMessageA
ModifyMenuA
LoadBitmapA
GetMenuState
RemovePropA
InvalidateRect
WindowFromPoint
GetFocus
ScreenToClient
GetDlgItem
LoadStringA
InsertMenuA
UpdateWindow
InsertMenuItemW
SetDlgItemTextA
GetWindowTextW
GetDlgCtrlID
OpenClipboard
DdeQueryStringA
LoadImageW
ReleaseDC
ExcludeUpdateRgn
GetScrollInfo
ShowWindow
CopyIcon
GetLastActivePopup
GetMessageA
EnableScrollBar
IsRectEmpty
FreeDDElParam
ClientToScreen
DestroyWindow
GetDC
CloseClipboard
InflateRect
TranslateMessage
EqualRect
CharUpperW
CharUpperBuffA
GetMenuItemCount
GetWindowRect
MessageBoxW
GetMenuItemInfoA
SetCursorPos
SetWindowRgn
CheckRadioButton
DestroyCursor
SetTimer
GetParent
GetDlgItemTextA
ShowCaret
EndPaint
CharNextA
GetMenu
GetActiveWindow
LoadMenuA
CopyImage
GetDCEx
UnpackDDElParam
GetWindowLongW
IsDialogMessageA
DialogBoxParamW
CreateWindowExA
GetClassNameA
GetIconInfo
GetClassLongA
UnregisterClassA
GetMessageTime
GetWindowPlacement
SetRectEmpty
SetMenu
CreateDialogParamA
SystemParametersInfoA
GetSystemMetrics
EndDialog
SetActiveWindow
GrayStringA
CharUpperA
SetWindowPos
LoadImageA
RegisterClassExA
DialogBoxParamA
GetMenuStringA
GetMenuCheckMarkDimensions
MapDialogRect
GetSubMenu
CreateMenu
InsertMenuItemA
SetScrollPos
ReleaseCapture
GetDialogBaseUnits
GetScrollRange
GetWindowTextLengthA
GetCursorPos
CheckMenuItem
AdjustWindowRectEx
MapWindowPoints
GetForegroundWindow
MessageBoxA
LoadCursorA
GetWindow
GetDlgItemInt
DrawFocusRect
EmptyClipboard
PeekMessageA
GetAsyncKeyState
GetDesktopWindow
RegisterClassA
GetCapture
SetPropA
SetWindowLongA
PtInRect
IsMenu
MapVirtualKeyExA
SetFocus
SetDlgItemInt
GetMessagePos
PostQuitMessage
LoadIconA
ChangeClipboardChain
GetMenuItemID
CreateDialogIndirectParamA
OffsetRect
SetMenuDefaultItem
SetForegroundWindow
TrackPopupMenu
DrawFrameControl
LoadAcceleratorsA
CopyRect
SetScrollInfo
GetClientRect
CreateWindowExW
GetDoubleClickTime
DefWindowProcA
DefMDIChildProcA
GetSysColorBrush
CreateIconFromResourceEx
DestroyIcon
SetWindowTextW
EnableMenuItem
BeginPaint
IsWindowEnabled
IsWindowVisible
IsWindow
IntersectRect
DrawMenuBar
CreatePopupMenu
RegisterClipboardFormatA
GetSysColor
TranslateAcceleratorA
DispatchMessageA
DrawTextW
SetCursor
BringWindowToTop
SetMenuItemBitmaps
SendMessageTimeoutA
GetNextDlgTabItem
RedrawWindow
SetWindowTextA
WindowFromDC
EnableWindow
GetWindowTextA
ValidateRect
GetClipboardData
LockWindowUpdate
RegisterWindowMessageA
SetParent
TabbedTextOutA
KillTimer
GetWindowThreadProcessId
CallWindowProcW
GetCursor
UnhookWindowsHookEx
SetRect
GetKeyState
SetCapture
RemoveMenu
IsIconic

comctl32

ImageList_GetImageInfo
ImageList_DragLeave
ImageList_Add
DestroyPropertySheetPage
ImageList_DragMove
ImageList_DragEnter
ImageList_Create
ImageList_GetIcon
ImageList_AddMasked
ImageList_SetOverlayImage
ImageList_EndDrag
ImageList_Draw
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_LoadImageA
ImageList_DragShowNolock
ImageList_Merge
InitCommonControlsEx
ImageList_Remove
ImageList_BeginDrag
ImageList_GetIconSize
ord17
ImageList_DrawEx
ImageList_ReplaceIcon
PropertySheetA
_TrackMouseEvent
ImageList_Destroy
ImageList_SetBkColor
ImageList_Replace
CreatePropertySheetPageA
ImageList_Write
ImageList_LoadImageW
ImageList_Read
ImageList_GetBkColor

advapi32

QueryServiceConfigW
RegEnumKeyExW
RegCreateKeyA
RegQueryValueExA
RegSetValueA
SetSecurityDescriptorOwner
RegOpenKeyA
OpenSCManagerA
GetSidSubAuthority
GetTokenInformation
GetUserNameA
RegOpenKeyExW
OpenServiceA
RegCloseKey
RegCreateKeyExW
RegEnumKeyA
ChangeServiceConfigA
LookupAccountSidA
RegNotifyChangeKeyValue
AllocateAndInitializeSid
RegQueryInfoKeyA
RegQueryValueA
RegFlushKey
DeleteService
FreeSid
OpenServiceW
OpenSCManagerW
CopySid
RegDeleteKeyA
SetSecurityDescriptorDacl
AdjustTokenPrivileges
CreateServiceA
DuplicateToken
GetUserNameW
IsValidSid
CloseServiceHandle
AddAce
SetSecurityDescriptorGroup
SetServiceStatus
StartServiceA
GetSidIdentifierAuthority
RegQueryValueExW
AccessCheck
RegOpenKeyExA
GetSecurityDescriptorDacl
IsValidSecurityDescriptor
ControlService
RegSetValueExA
GetSidSubAuthorityCount
InitializeAcl
RegSetValueExW
OpenThreadToken
OpenProcessToken
InitializeSecurityDescriptor
DeregisterEventSource
RegEnumValueA
GetLengthSid
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyW
RegCreateKeyExA
QueryServiceStatus

ole32

CoRegisterClassObject
StringFromCLSID
CLSIDFromProgID
CoLockObjectExternal
OleInitialize
OleRun
ReadFmtUserTypeStg
OleSaveToStream
StgOpenStorage
CoCopyProxy
GetClassFile
OleRegGetUserType
StgCreateDocfile
StgIsStorageILockBytes
CreateOleAdviseHolder
CoResumeClassObjects
OleCreateFromData
OleSetClipboard
CoTaskMemFree
CoRevokeClassObject
RevokeDragDrop
CoGetClassObject
StgOpenStorageOnILockBytes
OleDuplicateData
CoSetProxyBlanket
StringFromGUID2
CoCreateInstance
CoInitialize
ReadClassStg
OleSetContainedObject
CoInitializeSecurity
StgCreateDocfileOnILockBytes
CLSIDFromString
OleUninitialize
OleFlushClipboard
CoTaskMemRealloc
CoInitializeEx
CreateStreamOnHGlobal
CoRegisterMessageFilter
WriteFmtUserTypeStg
CreateILockBytesOnHGlobal
OleGetClipboard
CoFreeUnusedLibraries
OleCreateStaticFromData
CoGetMalloc
CoDisconnectObject
CoUninitialize
CoSuspendClassObjects
CreateItemMoniker
GetRunningObjectTable
CoTaskMemAlloc
SetConvertStg
ReleaseStgMedium
OleIsCurrentClipboard

oleaut32

LoadTypeLi

winmm

mixerGetNumDevs
waveOutPrepareHeader
mixerGetLineControlsW
waveInUnprepareHeader
mixerClose
waveInAddBuffer
waveInClose
waveOutUnprepareHeader
waveInStart
waveOutSetVolume
mmioOpenA
waveOutGetPosition
waveInOpen
mciSendCommandA
waveOutClose
timeEndPeriod
waveInStop
mixerGetDevCapsW
PlaySoundW
waveOutRestart
waveInReset
mixerOpen
mixerGetControlDetailsW
mixerSetControlDetails
waveOutReset
mmioClose
waveInGetDevCapsA
timeGetDevCaps
waveOutGetErrorTextA
mixerGetLineInfoW
waveInPrepareHeader
waveOutWrite
waveInGetNumDevs
mmioAscend
PlaySoundA

mfc42

ord1576

winspool.drv

OpenPrinterW
GetPrinterA
ClosePrinter
ord204
EndDocPrinter
GetPrinterDriverDirectoryA
SetPrinterA
DocumentPropertiesW
AddPrinterDriverA
WritePrinter
EnumPrintersA
OpenPrinterA
AbortPrinter
AddPrinterA
StartDocPrinterW

gdi32

GetPath
CreateEnhMetaFileA
CreateHatchBrush
GetBitmapBits
EndDoc
ResetDCA
OffsetClipRgn
OffsetViewportOrgEx
GetFontData
SetWindowExtEx
CreateBrushIndirect
GetStockObject
ScaleWindowExtEx
DeleteObject
SetViewportOrgEx
StrokePath
Ellipse
LPtoDP
StretchDIBits
SetPolyFillMode
SetMapMode
GetCharWidthW
CreateEllipticRgnIndirect
GetClipRgn
SetTextCharacterExtra
EnumMetaFile
EqualRgn
CreateHalftonePalette
ResizePalette
SetWorldTransform
CreateDIBSection
CreateRoundRectRgn
GetCurrentObject
GetViewportExtEx
SetPixel
SetRectRgn
PlayMetaFile
RestoreDC
RectVisible
CreateMetaFileA
DeleteEnhMetaFile
GetObjectW
EndPath
PolyBezierTo
SetROP2
AbortDoc
CreateRectRgn
CreatePalette
RectInRegion
PaintRgn
GetCharABCWidthsW
SetTextAlign
TextOutA
CreateFontA
CopyMetaFileA
EnumFontFamiliesExA
FlattenPath
SelectClipPath
GetRegionData
Pie
SelectObject
FloodFill
SelectPalette
DeleteMetaFile
PolyBezier
CreateDIBPatternBrushPt
SetBoundsRect
SetMapperFlags
ExcludeClipRect
GetTextAlign
SetViewportExtEx
GetTextFaceW
ExtCreateRegion
SetPixelV
CopyEnhMetaFileA
GetBoundsRect
SetWindowOrgEx
GetTextFaceA
SetGraphicsMode
MaskBlt
CreateSolidBrush
GetTextExtentPointA
GetStretchBltMode
GetCharABCWidthsA
SelectClipRgn
SetStretchBltMode
GetMapMode
GetROP2
GetRgnBox
OffsetRgn
GetBkColor
ExtCreatePen
CreateEllipticRgn
UnrealizeObject
BitBlt
PatBlt
RealizePalette
ScaleViewportExtEx
ExtTextOutW
GetWindowExtEx
SetColorAdjustment
SetBitmapDimensionEx
PtVisible
TranslateCharsetInfo
ExtTextOutA
SetBkColor
GetPaletteEntries
MoveToEx
GetSystemPaletteEntries
GetCurrentPositionEx
Polyline
GetNearestColor
SaveDC
Escape
CreateFontIndirectW
IntersectClipRect
GetDCOrgEx
PathToRegion
GdiFlush
CreateBitmapIndirect
SetTextJustification
GetCharWidthA
EnumFontFamiliesA
GetNearestPaletteIndex
CreateDIBitmap
EndPage
SetDIBColorTable
CreateCompatibleDC
TextOutW
ExtSelectClipRgn
CreateDCA
RoundRect
FillPath
EnumFontFamiliesExW
ExtFloodFill
GetEnhMetaFileA
SetPaletteEntries
GetTextCharsetInfo
PolyDraw
CreateFontIndirectA
SetBkMode
CreateICA
GetTextExtentPoint32W
PtInRegion
GetTextExtentPoint32A
GetGlyphOutlineW
CreateCompatibleBitmap
CreatePolygonRgn
GetPixel
Arc
CreatePatternBrush
PlayMetaFileRecord
GetDeviceCaps
CreatePen
GetPolyFillMode
GetViewportOrgEx
Rectangle
CreateICW
SetTextColor
CombineRgn
StretchBlt
StartDocA
GetTextExtentExPointA
GetWindowOrgEx
DeleteDC
GetObjectA
CloseFigure
PolyPolygon
GetTextColor
Polygon
LineTo
GetDIBits
GetClipBox
StrokeAndFillPath
CreateRectRgnIndirect
OffsetWindowOrgEx
GetOutlineTextMetricsA
GetCharABCWidthsFloatW
ArcTo
GetBkMode
CreatePenIndirect
CreatePolyPolygonRgn
Chord
CreateBitmap
DPtoLP
GetTextMetricsA
BeginPath
GetBitmapDimensionEx
CreateFontW
StartPage
CloseMetaFile
FillRgn
SetAbortProc
SetBrushOrgEx
GetGlyphOutlineA
FrameRgn
CloseEnhMetaFile

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 459KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 123KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c37f02e3deda46efe9e65afe0b201be

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

ole32

oleaut32

winmm

mfc42

winspool.drv

gdi32

Sections

.text Size: 69KB - Virtual size: 69KB

.rdata Size: 460KB - Virtual size: 459KB

.data Size: 123KB - Virtual size: 146KB

.rsrc Size: 57KB - Virtual size: 56KB

.text
Size: 69KB - Virtual size: 69KB

.rdata
Size: 460KB - Virtual size: 459KB

.data
Size: 123KB - Virtual size: 146KB

.rsrc
Size: 57KB - Virtual size: 56KB