72ddc1068b2fbdfb094107a1c360a0399b86f4a628ac19b3366885b98f4c8532

Sharing

Copy URL Twitter E-mail

General

Target

72ddc1068b2fbdfb094107a1c360a0399b86f4a628ac19b3366885b98f4c8532
Size

912KB
MD5

6b369944650b316a57ac5c6f5e8deb88
SHA1

4981cf0597140f4547d9ffdae53ef83f63b7bb02
SHA256

72ddc1068b2fbdfb094107a1c360a0399b86f4a628ac19b3366885b98f4c8532
SHA512

4ea9a834ffe28cbde70b68d5e9379ff1a8a9c716790de8a85addd6e36e62c3252660f509d60c6ebeeeda29cb18857b884950f681d28ec0a79d788b07d3e81a2e
SSDEEP

24576:R6gGfvPqgEfTSUwmCTh10GTmKY04jy0vzG:NgMTSW+mKteyizG

Score

N/A

Malware Config

Signatures

Files

72ddc1068b2fbdfb094107a1c360a0399b86f4a628ac19b3366885b98f4c8532
.exe windows x86

d21b6b3b42c6981a6a34f768808662f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetGetConnectionA

mcdlcan

GetVersionExW
GetFullPathNameW
CharUpperW
GetDriveTypeW
GetVolumeInformationW
LoadStringW
RegQueryValueW
RegOpenKeyExW
GetFileAttributesW
FindFirstFileW
WNetGetUniversalNameW
MoveFileW
DeleteFileW
CreateFileW
CopyFileW
lstrcpynW
LCMapStringW
GetTempFileNameW
GetTempPathW
GetObjectW
GetModuleHandleW
LoadLibraryW
SetFileAttributesW
RegQueryValueExW
RegEnumKeyW
RegOpenKeyW
RegEnumKeyExW
GetStringTypeExW
FormatMessageW
FindResourceW
lstrlenW

kernel32

LockFile
LockFileEx
UnlockFileEx
GetCurrentThreadId
GlobalDeleteAtom
GetCurrentThread
UnlockFile
GlobalAddAtomA
lstrcpynA
GetTickCount
DuplicateHandle
SetEndOfFile
GetFullPathNameA
lstrcatA
FindResourceA
GlobalFindAtomA
GlobalGetAtomNameA
FileTimeToLocalFileTime
TlsAlloc
TlsSetValue
TlsGetValue
GetProcessVersion
GetCPInfo
RtlUnwind
RaiseException
GetStartupInfoA
ExitProcess
CreateDirectoryA
GetFileSize
LocalAlloc
GetTimeZoneInformation
GetACP
HeapSize
LCMapStringA
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
CloseHandle
SetFilePointer
ReadFile
GetFileAttributesA
LoadLibraryA
GetUserDefaultLCID
FreeLibrary
GetVersionExA
GetModuleFileNameA
InterlockedExchange
LoadResource
LockResource
LocalUnlock
LocalReAlloc
LocalLock
Sleep
LocalFree
HeapCreate
GetSystemDefaultLCID
GetLocalTime
SystemTimeToFileTime
FlushFileBuffers
EnterCriticalSection
LeaveCriticalSection
GetWindowsDirectoryA
HeapDestroy
InitializeCriticalSection
HeapReAlloc
GetLogicalDrives
MulDiv
HeapFree
GetVersion
HeapAlloc
GlobalFlags
GlobalHandle
FileTimeToSystemTime
lstrcmpA
GetModuleHandleA
SetLastError
GetCommandLineA
GetShortPathNameA
GetCommandLineW
WriteFile
GlobalReAlloc
GetProcAddress
SetErrorMode
lstrcmpiA
GlobalAlloc
GlobalFree
GlobalLock
lstrcpyA
GlobalSize
GetProcessHeap
GlobalUnlock
WideCharToMultiByte
SetProcessWorkingSetSize
HeapCompact
GetCurrentProcess
DeleteCriticalSection
GetDriveTypeA
GetVolumeInformationA
InterlockedIncrement
InterlockedDecrement
FindClose
WritePrivateProfileStringA
FindFirstFileA
CreateFileA
lstrlenA
MultiByteToWideChar
TerminateProcess
GetLastError
GetFileTime
GetOEMCP

user32

SetFocus
AdjustWindowRectEx
UpdateWindow
MapWindowPoints
SendDlgItemMessageA
GetSysColorBrush
DestroyIcon
PostThreadMessageA
GetClassNameA
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetDlgCtrlID
DestroyMenu
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
RegisterWindowMessageA
GetWindowTextA
SystemParametersInfoA
GetWindowPlacement
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
GetMenuItemCount
GetSubMenu
GetMenuItemID
GrayStringA
DrawTextA
TabbedTextOutA
GetSystemMetrics
GetClassLongA
GetTopWindow
wsprintfA
CopyRect
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
GetParent
IsWindowEnabled
SetCursor
PostMessageA
LoadImageA
EnableWindow
DrawTextExA
ChildWindowFromPoint
ChildWindowFromPointEx
GetClientRect
ClientToScreen
OffsetRect
LoadStringA
GetWindowRect
SetWindowPos
IsDialogMessageA
TranslateMessage
PeekMessageA
DispatchMessageA
GetWindowLongA
SetWindowLongA
GetDlgItem
ShowWindow
SetWindowTextA
DestroyWindow
CreateDialogParamA
SetRect
FillRect
LoadIconA
LoadCursorA
DefWindowProcA
PostQuitMessage
CreateWindowExA
MessageBoxA
GetDesktopWindow
GetLastActivePopup
GetSysColor
ScreenToClient
SendMessageA
PtInRect
GetDC
ReleaseDC
CharUpperA
RegisterClipboardFormatA
UnhookWindowsHookEx
IsIconic

gdi32

SetStretchBltMode
SetWindowOrgEx
GetDIBits
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetMetaFileBitsEx
PlayMetaFileRecord
CreateDIBSection
SetMapMode
CreateSolidBrush
SelectObject
CreateDIBitmap
EnumMetaFile
CreatePalette
GetTextMetricsA
GetSystemPaletteEntries
CreateCompatibleDC
SelectPalette
RealizePalette
DeleteDC
DeleteMetaFile
DeleteObject
GetObjectType
GetMetaFileBitsEx
SetROP2
SetBkColor
SetTextColor
StretchDIBits
CloseMetaFile
SetDIBitsToDevice
GetEnhMetaFileHeader
GetDIBColorTable
CreateMetaFileA
PlayEnhMetaFile
GetObjectA
PlayMetaFile
RestoreDC
EnumEnhMetaFile
GdiFlush
SaveDC
ExtTextOutW
CreateBitmap
LPtoDP
GetStockObject
ScaleViewportExtEx
OffsetViewportOrgEx
GetClipBox
ScaleWindowExtEx
RectVisible
TextOutA
PtVisible
Escape
ExtTextOutA
GetDeviceCaps

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegSetValueA
RegCloseKey
RegOpenKeyA
RegQueryValueA
RegCreateKeyA
RegEnumKeyA
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA

shell32

ExtractIconA
CommandLineToArgvW

oledlg

ord8

ole32

OleFlushClipboard
CoRegisterMessageFilter
CoInitialize
CoFreeUnusedLibraries
CoGetMalloc
CreateBindCtx
StgOpenStorage
CoTaskMemFree
CreateFileMoniker
StringFromCLSID
OleUninitialize
OleInitialize
CoRevokeClassObject
CoRegisterClassObject
ReadClassStm
OleSaveToStream
CreateAntiMoniker
CoGetClassObject
MonikerRelativePathTo
MonikerCommonPrefixWith
CreateGenericComposite
CLSIDFromString
CreateStreamOnHGlobal
WriteClassStm
GetClassFile
OleRun
ReleaseStgMedium
StringFromGUID2
CoTaskMemRealloc
CoCreateInstance
CreateItemMoniker
CoTaskMemAlloc
OleIsCurrentClipboard
StgCreateDocfile

oleaut32

SysFreeString
SysAllocString
VariantClear
SafeArrayDestroy
VariantChangeTypeEx
VariantInit
SystemTimeToVariantTime
SysStringByteLen

winmm

mciSendCommandA

comctl32

ord17

Sections

.text
Size: 548KB - Virtual size: 545KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 128KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shrdat
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d21b6b3b42c6981a6a34f768808662f2

Headers

File Characteristics

Imports

mpr

mcdlcan

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

oledlg

ole32

oleaut32

winmm

comctl32

Sections

.text Size: 548KB - Virtual size: 545KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 128KB - Virtual size: 160KB

.shrdat Size: 68KB - Virtual size: 64KB

.rsrc Size: 12KB - Virtual size: 10KB

.crdata Size: 76KB - Virtual size: 76KB

.text
Size: 548KB - Virtual size: 545KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 128KB - Virtual size: 160KB

.shrdat
Size: 68KB - Virtual size: 64KB

.rsrc
Size: 12KB - Virtual size: 10KB

.crdata
Size: 76KB - Virtual size: 76KB