5dc690a21f7966954870f2e923b52318a78da96295dd7ff9e81f2565c4d21ca0

Sharing

Copy URL Twitter E-mail

General

Target

5dc690a21f7966954870f2e923b52318a78da96295dd7ff9e81f2565c4d21ca0
Size

702KB
MD5

3c7c3a651bdf045f09fab2cf08767570
SHA1

f37f8f385c688b3603d9af30f0df171aabd9c3fb
SHA256

5dc690a21f7966954870f2e923b52318a78da96295dd7ff9e81f2565c4d21ca0
SHA512

d643992098eaf8ec23cb9e6932d2be44f4b92d708731ecd628c0b10e4370256031f9e4126edabf005d8b8369c81459dd90becf7808fdcedf3d4f16fb3012bad2
SSDEEP

12288:RGkHAO3uMPdIC1iHd27N8MkB+A94qbW6MXPHhiBNaA3xIOG:RDAKDKXH2eBB+oHHM/C5xtG

Score

N/A

Malware Config

Signatures

Files

5dc690a21f7966954870f2e923b52318a78da96295dd7ff9e81f2565c4d21ca0
.exe windows x86

68b87aafbb84b0352a5e2de8fa28ef96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringW
GetFileAttributesExW
CloseHandle
CreateFileW
ReadFile
GetFileSize
MapViewOfFileEx
CreateFileMappingW
UnmapViewOfFile
FileTimeToSystemTime
FileTimeToLocalFileTime
lstrlenA
WideCharToMultiByte
GetTickCount
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
FreeResource
WriteFile
WritePrivateProfileStringW
VirtualQueryEx
GetProcAddress
LoadLibraryW
CopyFileW
OpenProcess
SetEvent
OpenEventW
VirtualQuery
CompareStringW
CreateProcessW
GetPrivateProfileIntW
GetCommandLineW
LoadLibraryA
GetVersionExW
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
FileTimeToDosDateTime
GetFileTime
SetFilePointer
GetFileInformationByHandle
GetFileAttributesW
GetFileType
MapViewOfFile
DuplicateHandle
SystemTimeToFileTime
GetLocalTime
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
SetEnvironmentVariableW
LoadLibraryExW
CompareStringA
GetConsoleMode
GetConsoleCP
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetLocaleInfoW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoA
SetHandleCount
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
GetTimeZoneInformation
IsValidCodePage
GetOEMCP
GetCPInfo
HeapCreate
Sleep
GetModuleFileNameA
GetStdHandle
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStartupInfoW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
ExitProcess
GetModuleHandleA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
GetVersionExA
GetProcessHeap
HeapSize
MultiByteToWideChar
FreeLibrary
SetLastError
lstrcmpiW
InterlockedDecrement
InterlockedIncrement
GetLastError
lstrlenW
GetCurrentThreadId
GetModuleHandleW
GetCurrentProcess
FlushInstructionCache
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
RaiseException
GetModuleFileNameW
SetEnvironmentVariableA

user32

SetWindowPos
MapWindowPoints
GetClientRect
SystemParametersInfoW
GetWindowRect
GetParent
SetWindowLongW
ShowWindow
DispatchMessageW
TranslateMessage
GetMessageW
GetWindowLongW
CharNextW
DestroyWindow
CreateDialogParamW
PostQuitMessage
DefWindowProcW
SendMessageW
GetDlgItem
IsWindow
DialogBoxParamW
GetActiveWindow
SetWindowTextW
GetWindowTextLengthW
GetDesktopWindow
CreateWindowExW
GetWindowTextW
MoveWindow
CheckDlgButton
IsDlgButtonChecked
SetDlgItemTextW
PeekMessageW
EndDialog
IsDialogMessageW
EndPaint
UnregisterClassA
GetWindow
EnableWindow
LoadIconW
GetSysColor
GetFocus
GetCapture
ReleaseCapture
GetCursorPos
SetCursor
DrawFocusRect
FillRect
PtInRect
CallWindowProcW
GetDlgCtrlID
SetFocus
SetCapture
IsWindowEnabled
InvalidateRect
UpdateWindow
ScreenToClient
GetClassNameW
LoadCursorW
SetRectEmpty
OffsetRect
ReleaseDC
GetDC
DrawTextW
BeginPaint

gdi32

CreateFontIndirectW
SetTextColor
SetBkMode
SelectObject
GetObjectW
GetStockObject
CreateFontW
DeleteObject

advapi32

RegQueryInfoKeyW
RegDeleteValueW
RegCloseKey
RegEnumValueW
RegQueryValueExW
RegEnumKeyExW
RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW

shell32

ShellExecuteW

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoTaskMemFree
CoUninitialize
CoCreateGuid
CLSIDFromProgID
OleRun
CreateStreamOnHGlobal
CoInitialize

oleaut32

VariantInit
VarUI4FromStr
VariantClear
SysAllocString
SysFreeString
SysStringLen

shlwapi

PathStripPathW
PathAppendW
PathFileExistsW
PathRemoveBackslashW
PathRemoveFileSpecW
PathCanonicalizeW
PathIsRelativeW
PathAddBackslashW
PathFindExtensionW

comctl32

_TrackMouseEvent
InitCommonControlsEx

dbghelp

MiniDumpReadDumpStream
MiniDumpWriteDump
MakeSureDirectoryPathExists

wininet

InternetConnectW
InternetCloseHandle
InternetErrorDlg
HttpSendRequestExW
HttpEndRequestW
InternetOpenW
HttpOpenRequestW
HttpAddRequestHeadersW
InternetCrackUrlW
InternetWriteFile

gdiplus

GdipDeleteGraphics
GdipLoadImageFromStream
GdipDisposeImage
GdiplusStartup
GdipGetImageWidth
GdipGetImageHeight
GdipCreateFromHDC
GdipDrawImageRectI
GdipCloneImage
GdipFree
GdiplusShutdown
GdipAlloc

psapi

GetModuleFileNameExW

Sections

.text
Size: 308KB - Virtual size: 305KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 288KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

68b87aafbb84b0352a5e2de8fa28ef96

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

dbghelp

wininet

gdiplus

psapi

Sections

.text Size: 308KB - Virtual size: 305KB

.rdata Size: 84KB - Virtual size: 82KB

.data Size: 12KB - Virtual size: 18KB

.rsrc Size: 288KB - Virtual size: 288KB

.text
Size: 308KB - Virtual size: 305KB

.rdata
Size: 84KB - Virtual size: 82KB

.data
Size: 12KB - Virtual size: 18KB

.rsrc
Size: 288KB - Virtual size: 288KB