915464d3e00ee17f84e87332d2348b31458f555c6abf43583734a763662ea52c

Sharing

Copy URL

Twitter E-mail

General

Target

915464d3e00ee17f84e87332d2348b31458f555c6abf43583734a763662ea52c
Size

321KB
MD5

320cb78ebf1c3c9d7614febe0633f860
SHA1

62ef75875f72bd4360f5fca4d3faa03c54812d1e
SHA256

915464d3e00ee17f84e87332d2348b31458f555c6abf43583734a763662ea52c
SHA512

6974fad25edd7cfb9dcd21ed5447b90c9bc26c996b467a9a7766a60d556fc527744971296e09241879e599fbf24e1983f08b2c3ff22a4e76cb0958bda35dc873
SSDEEP

6144:e+C0ONzLk8zafWHInWv79/9utd0/0KF4XUKwH4juaRxEFTL8F2J:TC0OVXafWTvNedifqXjwHoRxMYC

Score

N/A

Malware Config

Signatures

Files

915464d3e00ee17f84e87332d2348b31458f555c6abf43583734a763662ea52c
.exe windows x86

3db9f190a29554c3dbaead4ca266a6ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCanonicalizeUrlW
HttpAddRequestHeadersW
HttpQueryInfoW
InternetOpenW
InternetReadFile
InternetSetFilePointer
HttpOpenRequestW
HttpSendRequestW
InternetConnectW

ws2_32

WSAStartup
socket
WSAIoctl
closesocket
WSACleanup

sensapi

IsNetworkAlive

kernel32

CreateEventW
SetEvent
OutputDebugStringA
OutputDebugStringW
LoadLibraryExW
FreeLibrary
CopyFileW
WritePrivateProfileStringW
GetSystemTime
LoadLibraryW
GetProcAddress
GetPrivateProfileIntW
SetFileAttributesW
lstrlenW
WideCharToMultiByte
CreateFileW
GetFileSize
WaitForSingleObject
DeleteFileW
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExW
LocalFree
lstrcpynW
FormatMessageW
GlobalUnlock
GlobalLock
GlobalAlloc
lstrcpyW
SizeofResource
LockResource
LoadResource
GetThreadLocale
GlobalFree
SetLastError
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
GetVersion
LocalAlloc
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
GetCurrentProcess
lstrcmpW
GlobalFlags
GetCurrentThreadId
lstrcatW
GetVersionExA
LoadLibraryA
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
ExitProcess
HeapFree
RtlUnwind
ExitThread
CreateThread
CreateDirectoryW
GetSystemTimeAsFileTime
GetModuleFileNameA
GetStartupInfoW
HeapAlloc
HeapReAlloc
SetStdHandle
GetFileType
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapSize
TerminateProcess
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetACP
InterlockedExchange
CloseHandle
GetModuleHandleW
GetModuleFileNameW
GetPrivateProfileStringW
CreateMutexW
GetLastError
FindResourceW

user32

CallWindowProcW
RegisterClassW
GetClassInfoW
AdjustWindowRectEx
PostMessageW
GetMenu
GetClientRect
SetForegroundWindow
MapWindowPoints
GetMessagePos
GetMessageTime
GetTopWindow
GetForegroundWindow
RemovePropW
GetPropW
SetPropW
GetClassLongW
GetClassInfoExW
GetCapture
WinHelpW
RegisterWindowMessageW
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
SetWindowLongW
DestroyMenu
GetSysColor
GetSysColorBrush
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
CopyRect
SetMenuItemBitmaps
ModifyMenuW
EnableMenuItem
GetDlgItem
CheckMenuItem
SetWindowsHookExW
GetMenuCheckMarkDimensions
LoadBitmapW
SetWindowPos
wsprintfW
LoadAcceleratorsW
GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
UnregisterClassW
FindWindowW
SendMessageW
LoadIconW
LoadCursorW
RegisterClassExW
BeginPaint
EndPaint
PostQuitMessage
DefWindowProcW
DestroyWindow
CreateWindowExW
ShowWindow
UpdateWindow
CallNextHookEx
GetKeyState
PeekMessageW
ValidateRect
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetFocus
SetWindowTextW
GetClassNameW
GetWindowTextW
MessageBoxW
GetParent
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
EnableWindow
UnhookWindowsHookEx
GetSystemMetrics
GetDC
ReleaseDC

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

SHGetSpecialFolderPathW
ShellExecuteW

ole32

CoInitialize
CoUninitialize

oleaut32

VariantClear
SysFreeString
SysAllocStringLen
SysAllocString
SysStringLen
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
VariantInit

comctl32

ord17

shlwapi

PathFileExistsW
StrToIntW

oleacc

CreateStdAccessibleObject
LresultFromObject

gdi32

GetStockObject
CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetDeviceCaps
SaveDC
RestoreDC
SetMapMode
DeleteObject
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3db9f190a29554c3dbaead4ca266a6ad

Headers

File Characteristics

Imports

wininet

ws2_32

sensapi

kernel32

user32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

oleacc

gdi32

winspool.drv

Sections

.text Size: 116KB - Virtual size: 115KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 8KB - Virtual size: 21KB

.rsrc Size: 160KB - Virtual size: 160KB

.text
Size: 116KB - Virtual size: 115KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 8KB - Virtual size: 21KB

.rsrc
Size: 160KB - Virtual size: 160KB