44cb871afab35fefbff52c60b7d942137d5d79a128f022a3c7944c43755206dc

Sharing

Copy URL Twitter E-mail

General

Target

44cb871afab35fefbff52c60b7d942137d5d79a128f022a3c7944c43755206dc
Size

977KB
MD5

49767ec775cab6cb734251cfdd608730
SHA1

1539fe2ae2b5ceee5f7cdba26dc1db83a1126807
SHA256

44cb871afab35fefbff52c60b7d942137d5d79a128f022a3c7944c43755206dc
SHA512

dbd2c2f9b880d3d72ebe808def83fe724126495aa899a576ced281a8244df407f8f098bb437f25597ea17c159a90e477a1157f5045cd87ef69cf5c398ff171a4
SSDEEP

24576:d4Sd1kI1oK1L/hVmWUTrUZX1IFMs/zx2XtvEeeD9xyyoMVtzjTjsf:2SnZKTcIFMsVSvDM3yyjf/8f

Score

N/A

Malware Config

Signatures

Files

44cb871afab35fefbff52c60b7d942137d5d79a128f022a3c7944c43755206dc
.exe windows x86

73db57ae09266b8832c96fa6116eb201

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
memcpy
wcslen
wcscpy
wcscat
_wcsicmp
wcsncpy
wcscmp
memmove
_CIacos
floor
ceil
_CIpow
fread
longjmp
_setjmp3
memcmp
wcsncmp
_itow
_wcsnicmp
localtime
mktime
gmtime
fabs
malloc
free
fclose
sqrt
abs
fmod
sin
cos
_isnan
setlocale
swscanf
_wcsdup
frexp
modf
__p__iob
fprintf
atof
_vsnwprintf

kernel32

GetModuleHandleW
HeapCreate
HeapDestroy
ExitProcess
GetUserDefaultLangID
GetCurrentProcess
CloseHandle
TerminateProcess
GetLastError
GetExitCodeProcess
ReadFile
CreatePipe
CreateProcessW
CreateSemaphoreW
FormatMessageW
GetDiskFreeSpaceExW
GetFileAttributesW
GetShortPathNameW
GetVolumeInformationW
SetFileAttributesW
EnterCriticalSection
WaitForSingleObject
LeaveCriticalSection
InitializeCriticalSection
CreateThread
GetThreadPriority
SetThreadPriority
HeapFree
HeapAlloc
HeapReAlloc
LoadLibraryW
GetProcAddress
FreeLibrary
GetCurrentThreadId
GetCurrentProcessId
GetCommandLineW
GetModuleFileNameW
DuplicateHandle
GetStdHandle
PeekNamedPipe
TlsAlloc
TlsSetValue
GetTickCount
TlsGetValue
Sleep
GetVersionExA
MulDiv
GetTempPathW
SetCurrentDirectoryW
GetDriveTypeW
FindFirstFileW
FindClose
DeleteFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileW
CreateDirectoryW
MoveFileW
CreateFileW
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
CopyFileW
RemoveDirectoryW
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
GlobalFree
WriteFile
MultiByteToWideChar
GetFileSize
SetFilePointer
SetEndOfFile
WideCharToMultiByte
GetVersionExW
LoadLibraryA
SetLastError
GetLocalTime
DeleteCriticalSection
HeapSize
TlsFree
lstrlenA
WaitForMultipleObjects
GetCurrentThread
CreateSemaphoreA
ReleaseSemaphore

user32

RemovePropW
SendMessageW
SetWindowLongW
SetPropW
PostMessageW
LoadCursorW
SetCursor
GetSysColor
GetSystemMetrics
GetPropW
ReleaseCapture
CallWindowProcW
DrawMenuBar
GetSubMenu
RemoveMenu
SetMenuItemInfoW
InsertMenuItemW
MessageBoxW
SetForegroundWindow
ExitWindowsEx
GetDesktopWindow
GetDC
ReleaseDC
SetRect
DrawTextW
GetWindowLongW
SetClassLongW
SetWindowPos
BringWindowToTop
ClientToScreen
ClipCursor
DrawIconEx
GetClientRect
GetClipCursor
GetComboBoxInfo
GetCursorInfo
GetForegroundWindow
GetIconInfo
GetLastInputInfo
GetScrollInfo
GetWindowInfo
GetWindowRect
GetWindowTextW
IsWindow
SetCursorPos
SetParent
ShowScrollBar
SystemParametersInfoW
mouse_event
DestroyWindow
GetParent
GetCapture
CreateWindowExW
LoadIconW
FillRect
DrawStateW
InvalidateRect
IsZoomed
GetWindowLongA
SendMessageA
MoveWindow
ShowWindow
EnableWindow
DefWindowProcW
GetWindowTextLengthW
UnregisterClassW
RegisterClassExW
IsWindowEnabled
SetFocus
CreateAcceleratorTableW
GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
DestroyAcceleratorTable
GetWindowThreadProcessId
IsWindowVisible
EnumWindows
SetMenu
DestroyMenu
CreatePopupMenu
AppendMenuW
GetPropA
GetMenu
CallWindowProcA
CreateMenu
SetWindowLongA
SetPropA
GetMenuItemInfoW
GetCursorPos
EnableMenuItem
TrackPopupMenu
RedrawWindow
DrawFocusRect
ScreenToClient
GetClassNameW
IntersectRect
EnumChildWindows
MapWindowPoints
GetWindow
GetDlgCtrlID
GetScrollPos
SetScrollPos
UpdateWindow
BeginPaint
EndPaint
SetCapture
ValidateRect
GetSysColorBrush
SetWindowTextW
InflateRect
GetWindowDC
GetFocus
FrameRect
DrawFrameControl
PeekMessageW
SetActiveWindow
RegisterClassW
AdjustWindowRectEx
GetActiveWindow
IsIconic
MsgWaitForMultipleObjects
SetTimer
KillTimer
DefFrameProcW
LoadImageW
GetKeyState
IsChild
DestroyIcon
CreateIconFromResourceEx
CreateIconFromResource
CharLowerW
CharUpperW

gdi32

DeleteObject
GetObjectW
CreateFontIndirectW
BitBlt
AddFontMemResourceEx
GetDeviceCaps
SetDeviceGammaRamp
GetObjectType
IntersectClipRect
GetStockObject
CreateDCW
CreateFontW
DeleteDC
SetBkColor
SetTextColor
ExcludeClipRect
CreateRectRgn
SelectClipRgn
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
CreateSolidBrush
CreatePen
MoveToEx
LineTo
StretchBlt
CreateDIBSection
GetObjectA
CreateRectRgnIndirect
GetClipRgn
ExtSelectClipRgn
GetDIBits
CreateBitmap
SetPixel
SetDIBits
GdiSetBatchLimit
GdiGetBatchLimit
SetTextAlign
SetPixelV
Rectangle
RoundRect
Ellipse
SetROP2
SetBkMode
SelectPalette
RealizePalette
SetStretchBltMode
StretchDIBits
TextOutW
GetPixel
ExtFloodFill
GetTextExtentPoint32W
SetBrushOrgEx
GetTextMetricsW

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
GetUserNameW
RegCreateKeyW
RegDeleteValueW
RegOpenKeyW
RegSetValueExW

comctl32

ImageList_SetIconSize
CreateToolbarEx
ImageList_ReplaceIcon
ImageList_Add
CreateStatusWindowW
InitCommonControlsEx
ImageList_Destroy
ImageList_Create
ImageList_Remove
ImageList_AddMasked
ImageList_GetIconSize

ole32

CoInitialize
CoTaskMemFree
CoUninitialize
CoCreateInstance
OleInitialize
OleUninitialize
ReleaseStgMedium
RevokeDragDrop
RegisterDragDrop

shell32

SHGetDesktopFolder
SHFileOperationW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHChangeNotify
SHGetFileInfoW
ShellExecuteExW
DragQueryFileW

winmm

timeBeginPeriod
timeEndPeriod

Sections

.code
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 523KB - Virtual size: 527KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

73db57ae09266b8832c96fa6116eb201

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comdlg32

advapi32

comctl32

ole32

shell32

winmm

Sections

.code Size: 113KB - Virtual size: 112KB

.text Size: 228KB - Virtual size: 227KB

.rdata Size: 26KB - Virtual size: 26KB

.data Size: 523KB - Virtual size: 527KB

.rsrc Size: 85KB - Virtual size: 88KB

.code
Size: 113KB - Virtual size: 112KB

.text
Size: 228KB - Virtual size: 227KB

.rdata
Size: 26KB - Virtual size: 26KB

.data
Size: 523KB - Virtual size: 527KB

.rsrc
Size: 85KB - Virtual size: 88KB