4fdef6f532205941cd6ec8f9f55ee69cd67d8edebbd344d47bc798c0a47c7f27

Sharing

Copy URL

Twitter E-mail

General

Target

4fdef6f532205941cd6ec8f9f55ee69cd67d8edebbd344d47bc798c0a47c7f27
Size

856KB
MD5

4451d4fe1d94d80659a1ef5d266e1460
SHA1

8490dc8a492627d56eaca703e3cec6ca9331fd70
SHA256

4fdef6f532205941cd6ec8f9f55ee69cd67d8edebbd344d47bc798c0a47c7f27
SHA512

729d7bae3bea7dd406e3f493b31a5b5b437dad1f38c703646713423751283aa551b3d8ebccd18abd3c3fe538c3fa45d11637632a06e21e9f668c313784a02b99
SSDEEP

24576:xNowb8GOVZAQYCOevQMUOGIgFzaKc7NoN/P9wh6ibKOFU6E8Rb:L8GfFkscGNWhH1FxE8Rb

Score

N/A

Malware Config

Signatures

Files

4fdef6f532205941cd6ec8f9f55ee69cd67d8edebbd344d47bc798c0a47c7f27
.exe windows x86

646550dbf463a51fa49bcbc85448fd17

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
LockFile
GlobalUnlock
OpenProcess
DeleteFileW
GetComputerNameA
GlobalSize
ReleaseSemaphore
GetUserDefaultLCID
FreeLibrary
GetExitCodeThread
IsValidLocale
LocalAlloc
GlobalLock
LockResource
GetFileAttributesExA
GetSystemPowerStatus
HeapDestroy
VirtualProtectEx
InterlockedExchangeAdd
GetModuleHandleA
Sleep
FileTimeToSystemTime
DeleteFileA
SetEnvironmentVariableA
InterlockedDecrement
GetFileSizeEx
SetNamedPipeHandleState
GetEnvironmentVariableA
SetFileTime
EnterCriticalSection
DuplicateHandle
GetFileSize
GetSystemTimeAsFileTime
CopyFileA
SetErrorMode
CreateFileMappingA
QueryPerformanceCounter
OpenFileMappingA
IsDBCSLeadByteEx
MapViewOfFile
VirtualProtect
GetTempPathA
TlsSetValue
InterlockedExchange
FindFirstFileA
GlobalFree
GetCurrentThread
GetProcessHeap
FindResourceA
SetThreadExecutionState
InterlockedCompareExchange
PeekNamedPipe
ReleaseMutex
ExitProcess
GetCurrentThreadId
UnlockFileEx
TerminateThread
GetProcAddress
GetProcessWorkingSetSize
MultiByteToWideChar
GetTempFileNameA
SetUnhandledExceptionFilter
WriteFile
GetWindowsDirectoryA
GetSystemTime
GetSystemInfo
GetVersionExA
SystemTimeToFileTime
GetTickCount
CreatePipe
FindFirstFileExA
GetFileTime
GetThreadTimes
GetLocaleInfoA
WaitForSingleObject
FindNextFileA
SetThreadPriority
FormatMessageA
GetFullPathNameA
FlushFileBuffers
CreateThread
GetProcessAffinityMask
ReadFile
HeapSize
AreFileApisANSI
GetCurrentProcess
LeaveCriticalSection
UnlockFile
DeleteCriticalSection
SetThreadLocale
GetFileAttributesA
SuspendThread
GetLastError
LockFileEx
LocalFree
InterlockedIncrement
GetExitCodeProcess
GetShortPathNameA
TlsGetValue
FindClose
GetVolumeInformationA
WideCharToMultiByte
SetLastError
UnmapViewOfFile
SizeofResource
SetCurrentDirectoryA
CreateFileA
LocalFileTimeToFileTime
ResumeThread
GetProcessTimes
GetCPInfo
GetTempPathW
IsValidCodePage
GetThreadLocale
GetProfileStringA
GetDiskFreeSpaceA
SetEndOfFile
SetFilePointer
CreateDirectoryA
GetFileType
TerminateProcess
ExpandEnvironmentStringsA
GetCurrentProcessId
GetStdHandle
LoadResource
TlsFree
GetModuleFileNameA
GetStartupInfoA
MoveFileExW
GetDriveTypeA
TlsAlloc
GlobalAlloc
GetACP
CreateSemaphoreA
DeviceIoControl
InitializeCriticalSection
GlobalMemoryStatusEx
CloseHandle
GetCommandLineA
GlobalMemoryStatus
GetLogicalDriveStringsA
RemoveDirectoryA
CreateProcessA

user32

GetMessageTime
GetMenuItemInfoW
TranslateAcceleratorW
DdeCreateStringHandleW
DdeUninitialize
SetMenu
GetAsyncKeyState
DdeClientTransaction
SetCursor
DrawStateW
SendMessageW
GetDesktopWindow
TrackPopupMenu
DrawEdge
MoveWindow
MessageBoxW
DdeGetLastError
OffsetRect
FlashWindow
DdeQueryStringW
RemoveMenu
CreatePopupMenu
EndDialog
CallWindowProcW
EnumWindows
EnumClipboardFormats
IsWindowVisible
EndDeferWindowPos
UpdateWindow
SetCursorPos
DdeFreeDataHandle
SetCapture
GetUpdateRect
PtInRect
GetClassInfoW
GetUpdateRgn
SetWindowTextW
GetMessageW
CopyRect
GetDC
PostThreadMessageW
ExitWindowsEx
WaitForInputIdle
DestroyCursor
PostMessageW
LoadAcceleratorsW
GetDoubleClickTime
GetForegroundWindow
GetSystemMetrics
ModifyMenuW
RegisterWindowMessageW
RegisterClipboardFormatW
DdeConnect
GetDlgItem
SetClipboardData
SetWindowsHookExW
RedrawWindow
GetKeyState
ShowWindow
ScrollWindow
GetParent
GetClientRect
CreateWindowExW
EndPaint
InflateRect
EnableMenuItem
DefWindowProcW
DestroyIcon
GetClassNameW
InvalidateRect
WindowFromPoint
GetWindow
DdePostAdvise
EmptyClipboard
ReleaseCapture
EnumDisplaySettingsW
GetCapture
UnionRect
DrawTextW
DestroyMenu
TranslateMessage
GetMenuItemCount
EnableWindow
IsWindow
keybd_event
GetScrollInfo
GetActiveWindow
UnhookWindowsHookEx
ChildWindowFromPoint
CallNextHookEx
GetSubMenu
IsZoomed
DispatchMessageW
CheckMenuRadioItem
GetSysColor
InsertMenuW
GetWindowThreadProcessId
ReleaseDC
SetWindowPos
ShowCaret
DdeDisconnect
GetWindowTextLengthW
CreateDialogIndirectParamW
GetKeyboardState
SetForegroundWindow
BeginPaint
GetWindowRect
SetWindowLongW
GetWindowLongW
BeginDeferWindowPos
DrawIcon
LoadImageW
SystemParametersInfoW
DdeInitializeW
IsClipboardFormatAvailable
BringWindowToTop
GetFocus
DdeFreeStringHandle
DeferWindowPos
DdeCreateDataHandle
CreateAcceleratorTableW
FillRect
ShowCursor
ScreenToClient
EnumThreadWindows
DdeNameService
OpenClipboard
GetWindowDC
EndMenu
CheckMenuItem
InsertMenuItemW
DrawFocusRect
AppendMenuW
GetClipboardFormatNameW
IsDialogMessageW
SetScrollInfo
GetMessagePos
ClientToScreen
ChangeDisplaySettingsW
SetWindowRgn
KillTimer
GetClipboardData
GetMenuState
GetCursorPos
RegisterClassW
MessageBeep
DrawMenuBar
LoadBitmapW
ValidateRect
PostQuitMessage
FindWindowExW
LoadIconW
CreateMenu
SetMenuItemInfoW
ToUnicode
SetFocus
CreateDialogParamW
GetMenu
LoadCursorFromFileW
CloseClipboard
PeekMessageW
DdeGetData
GetWindowTextW
UnregisterClassW
DrawFrameControl
DestroyAcceleratorTable
DestroyWindow
SetParent
HideCaret
IsWindowEnabled
DrawIconEx
IsIconic
VkKeyScanW
GetSystemMenu
GetIconInfo
SetTimer
CreateIconIndirect
MsgWaitForMultipleObjects
AdjustWindowRectEx
MapWindowPoints

gdi32

Polygon
SetBrushOrgEx
DeleteObject
SetViewportOrgEx
GetCharABCWidthsW
SetPixel
SelectClipRgn
Rectangle
GetPixel
ExtSelectClipRgn
GetBkColor
GetPaletteEntries
BitBlt
CreateHatchBrush
RealizePalette
GetStockObject
SaveDC
Arc
GetDIBits
GetDeviceCaps
CopyEnhMetaFileW
GdiFlush
CreateSolidBrush
CreatePen
SetViewportExtEx
CreateBitmapIndirect
DeleteEnhMetaFile
ExcludeClipRect
GetSystemPaletteEntries
StretchDIBits
CreateRectRgnIndirect
SelectObject
GetRgnBox
GetWinMetaFileBits
PatBlt
EqualRgn
GetClipBox
CloseEnhMetaFile
GetNearestPaletteIndex
SetBkColor
RoundRect
GetMetaFileBitsEx
SetStretchBltMode
SetMetaFileBitsEx
Ellipse
StretchBlt
RestoreDC
SetTextAlign
RectInRegion
SetWinMetaFileBits
CombineRgn
GetTextMetricsW
CreatePalette
GetTextExtentPoint32W
SelectPalette
CreateRectRgn
PlayEnhMetaFile
MoveToEx
CreateCompatibleDC
TextOutW
SetWindowExtEx
SetTextColor
GetTextExtentExPointW
ExtFloodFill
PtInRegion
LineTo
CreateBitmap
CreateFontIndirectW
CreateCompatibleBitmap
CreateICW
OffsetRgn
GetEnhMetaFileHeader
ExtCreatePen
GetObjectW
CreatePatternBrush
GetRegionData
DeleteDC
CreateDIBitmap
GetEnhMetaFileW
SetBkMode
GetDIBColorTable
CreateDIBSection
SetMapMode
GetTextColor
Pie
Polyline
CreateEnhMetaFileW
ExtCreateRegion
SetROP2
PolyPolygon
SetWindowOrgEx
EnumFontFamiliesExW
SetPolyFillMode
CreatePolygonRgn
MaskBlt

comdlg32

CommDlgExtendedError
GetOpenFileNameW
ChooseColorW
GetSaveFileNameW
ChooseFontW

advapi32

OpenServiceW
RegCloseKey
RegDeleteKeyW
OpenProcessToken
ControlService
RegOpenKeyExW
RegEnumKeyW
RegCreateKeyW
RegSetValueExW
OpenSCManagerW
RegQueryInfoKeyW
CloseServiceHandle
AdjustTokenPrivileges
LookupPrivilegeValueW
RegDeleteValueW
RegQueryValueExA
RegQueryValueExW
RegOpenKeyExA
RegEnumValueW
GetUserNameW

shell32

SHGetFileInfoW
SHFileOperationW
ExtractIconW
SHGetSpecialFolderLocation
DragQueryFileW
SHGetMalloc
ExtractIconExW
SHGetFolderPathW
SHGetIconOverlayIndexW
ShellExecuteExW
SHBrowseForFolderW
Shell_NotifyIconW
DragAcceptFiles
DragQueryPoint
SHGetPathFromIDListW
DragFinish

oleaut32

SysStringLen
SysAllocString

oledlg

ord3

Sections

.text
Size: 494KB - Virtual size: 493KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 259KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

646550dbf463a51fa49bcbc85448fd17

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

oledlg

Sections

.text Size: 494KB - Virtual size: 493KB

.rdata Size: 81KB - Virtual size: 80KB

.data Size: 259KB - Virtual size: 290KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 494KB - Virtual size: 493KB

.rdata
Size: 81KB - Virtual size: 80KB

.data
Size: 259KB - Virtual size: 290KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 4KB - Virtual size: 4KB