6dcac2ab12ae2bd99e21ca784af2928a7118479497f8d041bc8483acce018142

Sharing

Copy URL Twitter E-mail

General

Target

6dcac2ab12ae2bd99e21ca784af2928a7118479497f8d041bc8483acce018142
Size

516KB
MD5

40a7913e448d0c577429cf74cce171f0
SHA1

e4d2d214c457657586b89a119999bfc0d09d80af
SHA256

6dcac2ab12ae2bd99e21ca784af2928a7118479497f8d041bc8483acce018142
SHA512

263c167fd72081ac27e8ea35cb027127bdbd3aca2e5adac5737ecbc5c61ca219079eb51279ce1ee25650102e47e6522d84085f498ea4d15d219661120a25d66e
SSDEEP

12288:XuNlS39EWn35V4FbMVEdxYTzTKB9fSsPg:X+ilJV4FbldSTiBVSog

Score

N/A

Malware Config

Signatures

Files

6dcac2ab12ae2bd99e21ca784af2928a7118479497f8d041bc8483acce018142
.exe windows x86

9725da072254bfc8b066c13f449eccab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GlobalFree
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalAlloc
FreeResource
GetCurrentThreadId
WaitForSingleObject
ResumeThread
SetThreadPriority
CreateThread
LocalFree
lstrcpynA
FormatMessageA
MulDiv
SetLastError
lstrcmpW
lstrcatA
CreateFileA
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetModuleFileNameA
lstrcpyA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
FindClose
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
LocalAlloc
LeaveCriticalSection
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetVolumeInformationA
GetFullPathNameA
GlobalFlags
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
GetFileAttributesA
GetFileTime
SetErrorMode
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
HeapReAlloc
SetStdHandle
GetFileType
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetTimeZoneInformation
GetDriveTypeA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
ReadFile
lstrcmpA
CompareStringW
CompareStringA
lstrlenA
lstrlenW
lstrcmpiA
GetVersion
DeleteCriticalSection
InitializeCriticalSection
RaiseException
CreateEventA
GetCurrentProcess
TerminateProcess
GetTickCount
Sleep
OutputDebugStringA
GetCurrentDirectoryA
SetCurrentDirectoryA
LoadLibraryA
GetProcAddress
MultiByteToWideChar
CreateSemaphoreA
GetLastError
CloseHandle
FreeLibrary
MoveFileExA
WinExec
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GlobalDeleteAtom
InterlockedExchange

user32

GetPropA
SetPropA
GetClassNameA
GetClassInfoExA
GetClassLongA
CreateWindowExA
WinHelpA
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
LoadBitmapA
GetMenuCheckMarkDimensions
CheckMenuItem
EnableMenuItem
ModifyMenuA
SetMenuItemBitmaps
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
PostQuitMessage
ValidateRect
TranslateMessage
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatA
CopyAcceleratorTableA
InvalidateRect
InvalidateRgn
wsprintfA
GetSysColorBrush
DestroyMenu
CharNextA
GetNextDlgGroupItem
GetNextDlgTabItem
MessageBeep
PostThreadMessageA
CreateDialogIndirectParamA
GetMessagePos
PeekMessageA
MapWindowPoints
MessageBoxA
UpdateWindow
GetMenu
GetSysColor
RemovePropA
EqualRect
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
IsIconic
GetWindowPlacement
GetWindow
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetParent
SetCursorPos
WindowFromPoint
IsChild
GetForegroundWindow
GetLastActivePopup
SetWindowsHookExA
UnhookWindowsHookEx
CallWindowProcA
CallNextHookEx
GetSystemMetrics
SetParent
IsWindowVisible
RegisterWindowMessageA
IsWindowEnabled
GetActiveWindow
SetActiveWindow
UpdateLayeredWindow
SetWindowPos
SetCursor
LoadCursorA
LoadIconA
FindWindowExA
SetWindowRgn
PostMessageA
SendMessageA
EndDialog
GetKeyState
GetCursorPos
GetWindowRect
IsWindow
GetClientRect
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ScreenToClient
IntersectRect
SetRect
GetWindowLongA
SetWindowLongA
GetDesktopWindow
GetDC
ReleaseDC
SystemParametersInfoA
OffsetRect
CopyRect
SetCapture
GetMessageA
DispatchMessageA
GetCapture
ReleaseCapture
SetRectEmpty
RedrawWindow
LoadImageA
IsRectEmpty
PtInRect
EnableWindow
KillTimer
SetTimer
SetForegroundWindow
CharUpperA
UnregisterClassA
SendDlgItemMessageA
GetFocus
SetFocus
GetWindowTextA
GetDlgItem
GetTopWindow
DestroyWindow
AdjustWindowRectEx
GetMessageTime

gdi32

GetStockObject
GetMapMode
GetBkColor
BitBlt
CreateFontIndirectA
GetTextColor
Polygon
CreateRectRgnIndirect
GetObjectA
GetCurrentObject
SelectObject
SetBkColor
GetTextExtentPoint32A
SetTextColor
SetViewportExtEx
GetDeviceCaps
ExtTextOutA
DeleteDC
CombineRgn
ExtCreateRegion
CreateDIBSection
ExtSelectClipRgn
ScaleViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
DeleteObject
CreateCompatibleDC
CreateBitmap
CreatePen
CreateSolidBrush
PtVisible
RectVisible
TextOutA
Escape
GetClipBox
GetRgnBox
SaveDC
RestoreDC
SetMapMode
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
SetBkMode
CreateCompatibleBitmap

ole32

CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoDisconnectObject
OleInitialize
CoFreeUnusedLibraries
CoTaskMemFree
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoCreateInstance
OleRun

oleaut32

SysAllocStringByteLen
VariantChangeType
VariantCopy
SysAllocString
SysStringLen
SafeArrayDestroy
SysFreeString
SysAllocStringLen
VariantInit
VariantClear
SystemTimeToVariantTime
OleCreateFontIndirect
LoadTypeLi

comctl32

ord17

shlwapi

PathStripToRootA
PathFindFileNameA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

gdiplus

GdipDrawImageRectI
GdipFillRectangleI
GdipCreateBitmapFromScan0
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipReleaseDC
GdipSetSmoothingMode
GdipDrawImageRectRectI
GdipCloneImage
GdipLoadImageFromFile
GdipGetImageWidth
GdiplusShutdown
GdiplusStartup
GdipDeleteBrush
GdipFree
GdipCreateStringFormat
GdipDeleteStringFormat
GdipDeleteGraphics
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipDeleteFont
GdipGetImageHeight
GdipCreateSolidFill
GdipCreateFromHDC
GdipDrawString
GdipCreateFont
GdipDisposeImage
GdipCloneBrush
GdipAlloc

winmm

PlaySoundA

ws2_32

WSAStartup
WSACleanup

oleacc

LresultFromObject
CreateStdAccessibleObject

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

comdlg32

GetFileTitleA

advapi32

RegCloseKey
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA

shell32

ShellExecuteA

Sections

.text
Size: 316KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9725da072254bfc8b066c13f449eccab

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

comctl32

shlwapi

oledlg

gdiplus

winmm

ws2_32

oleacc

winspool.drv

comdlg32

advapi32

shell32

Sections

.text Size: 316KB - Virtual size: 312KB

.rdata Size: 92KB - Virtual size: 91KB

.data Size: 12KB - Virtual size: 24KB

.rsrc Size: 92KB - Virtual size: 89KB

.text
Size: 316KB - Virtual size: 312KB

.rdata
Size: 92KB - Virtual size: 91KB

.data
Size: 12KB - Virtual size: 24KB

.rsrc
Size: 92KB - Virtual size: 89KB