db7f8060b85abd6edd0a409fde3b387edce5dfa5a0c03277658e915a76cab5f4

Sharing

Copy URL Twitter E-mail

General

Target

db7f8060b85abd6edd0a409fde3b387edce5dfa5a0c03277658e915a76cab5f4
Size

440KB
MD5

36e0c6994bad3c15102e6b40508ccf10
SHA1

cf9eeec55da72148a51af10dac67d688e897b782
SHA256

db7f8060b85abd6edd0a409fde3b387edce5dfa5a0c03277658e915a76cab5f4
SHA512

1d1179bfcd2280777710da807d5590bea9bef9b64208b3dddf15c5d609679ac72142ad5e031d9eb786e847844353af0b895f48a8487662740b650f58959effe6
SSDEEP

6144:FCT8+IDx/0WlGXfrGs5cCQhaqXzI9UOY4mVy0iqJX+d03j5JItwD72Sihw:FV0Wl6Qgoz5OY4Ddqcd0T5qwDKS

Score

N/A

Malware Config

Signatures

Files

db7f8060b85abd6edd0a409fde3b387edce5dfa5a0c03277658e915a76cab5f4
.dll windows x86

44120a14a69f9effdd844aa51fb632e5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc71

ord572
ord651
ord709
ord501
ord4353
ord5059
ord4564
ord3879
ord1185
ord5873
ord2131
ord2370
ord1564
ord3875
ord2794
ord4125
ord3161
ord1279
ord5637
ord2527
ord5611
ord6060
ord5608
ord6054
ord4161
ord6057
ord5888
ord6037
ord5727
ord5642
ord5647
ord5523
ord5588
ord5414
ord5401
ord5921
ord5719
ord3180
ord602
ord347
ord265
ord266
ord2272
ord4109
ord907
ord2164
ord1009
ord3255
ord753
ord563
ord6255
ord5331
ord6297
ord5320
ord6286
ord2271
ord2372
ord1161
ord314
ord1395
ord3989
ord2368
ord1931
ord1483
ord4098
ord2089
ord1547
ord4234
ord2991
ord3171
ord591
ord630
ord3088
ord2021
ord385
ord2095
ord1591
ord4240
ord416
ord741
ord1794
ord5613
ord3683
ord1084
ord2248
ord2410
ord3830
ord757
ord4038
ord4014
ord6278
ord3801
ord6276
ord4326
ord2063
ord2018
ord5583
ord3806
ord1010
ord5102
ord6219
ord5382
ord3832
ord1920
ord2931
ord5224
ord5226
ord3948
ord4568
ord5230
ord5566
ord2838
ord4481
ord3333
ord566
ord6120
ord4238
ord1571
ord1641
ord2092
ord1930
ord3489
ord3651
ord2654
ord2234
ord5635
ord1968
ord587
ord4232
ord2390
ord934
ord930
ord932
ord928
ord1545
ord923
ord5233
ord5235
ord5960
ord1191
ord1600
ord4282
ord4722
ord3403
ord5203
ord4185
ord760
ord4261
ord5214
ord1402
ord5915
ord3596
ord1280
ord3204
ord1934
ord3210
ord3684
ord5529
ord3997
ord5563
ord762
ord2469
ord1482
ord781
ord764
ord6118
ord2933
ord299
ord1489
ord297
ord2902
ord6090
ord310
ord784
ord2322
ord876
ord6067
ord3934
ord578
ord5731
ord4262
ord4486
ord3949
ord2644
ord3709
ord3719
ord3718
ord2533
ord2646
ord2540
ord2862
ord2714
ord4307
ord2835
ord2731
ord2537
ord5200
ord1599
ord1655
ord1656
ord1964
ord5175
ord1362
ord4967
ord3345
ord6277
ord3802
ord6279
ord1522
ord2172
ord2178
ord2405
ord2387
ord2385
ord2403
ord2415
ord2392
ord2408
ord2413
ord2396
ord2398
ord2400
ord3317
ord2394
ord4081
ord5714
ord6005
ord530
ord722
ord3361
ord1586
ord730
ord1645
ord3563
ord4888
ord330
ord589
ord642
ord4236
ord1558
ord1637
ord3473
ord5993
ord6275
ord5073
ord1908
ord5152
ord4244
ord1401
ord3946
ord1617
ord1620
ord5912
ord1551
ord1670
ord1671
ord2020
ord4890
ord4735
ord4212
ord5182
ord3441
ord3302
ord3423
ord5795
ord6068
ord5991
ord1903
ord304
ord1187
ord5213
ord3357
ord2168
ord5833
ord3401
ord3163
ord3576
ord2866
ord2495
ord2882
ord3402
ord2657
ord2264
ord2873
ord3349
ord1425
ord567
ord3761
ord758
ord4580
ord6065
ord2367
ord4320
ord605
ord354
ord3641
ord765
ord315
ord1037
ord1206
ord1208
ord1098
ord371
ord1120
ord1201
ord1175
ord1177
ord1209
ord1092
ord1167
ord581
ord658
ord3350

msvcr71

fseek
malloc
free
_resetstkoflw
_except_handler3
__CxxFrameHandler
??0exception@@QAE@ABV0@@Z
_strtime
fputs
fflush
_purecall
strncmp
_CxxThrowException
realloc
sprintf
atoi
_fsopen
memmove
qsort
time
??1exception@@UAE@XZ
??0exception@@QAE@XZ
fclose
perror
fopen
_mbscmp
strrchr
memset
__security_error_handler
?terminate@@YAXXZ
??1type_info@@UAE@XZ
__dllonexit
_onexit
_initterm
_adjust_fdiv
__CppXcptFilter
_strdate
bsearch
strchr
vsprintf
_mbschr

kernel32

GetFileAttributesA
FindClose
ReadFile
GetFileSize
CreateFileA
ReleaseSemaphore
FreeLibrary
GetProcAddress
LoadLibraryA
CreateSemaphoreA
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
ExitProcess
LocalAlloc
LocalFree
OutputDebugStringA
CloseHandle
GetModuleFileNameA
CreateMutexA
FindFirstFileA
EnterCriticalSection
LeaveCriticalSection
WritePrivateProfileStringA
DeleteFileA
CreateDirectoryA
GetCurrentProcessId
GetPrivateProfileIntA
GetPrivateProfileStringA
WaitForSingleObject
ReleaseMutex
lstrcpynA
lstrlenA
DeleteCriticalSection
InitializeCriticalSection
RaiseException
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GlobalFree
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalAlloc

user32

TabbedTextOutA
GetDC
ReleaseDC
ScreenToClient
ClientToScreen
GetClientRect
SendMessageA
CopyRect
DrawTextA
EnableWindow
SetWindowLongA
GetWindowThreadProcessId
GetForegroundWindow
GetPropA
IsWindow
GetWindow
wsprintfA
FindWindowA
SetWindowRgn
GetWindowDC
OffsetRect
GetWindowRgn
DestroyCursor
DrawTextExA
SetCursor
SetRect
CopyImage
GetSysColor
UnionRect
GetFocus
IsRectEmpty
SetRectEmpty
InflateRect
BringWindowToTop
IntersectRect
SetCapture
ReleaseCapture
GetDesktopWindow
GetMessagePos
GetMessageTime
SetPropA
FlashWindow
RemovePropA
SetLayeredWindowAttributes
GetWindowLongA
GetWindowRect
LoadIconA
DestroyIcon
DrawIcon
GrayStringA
PostMessageA
FillRect
SetTimer
PtInRect
InvalidateRect
UpdateWindow
LoadCursorA
RedrawWindow
GetParent
KillTimer
IsWindowVisible

gdi32

TextOutA
RectVisible
PtVisible
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
BitBlt
CreateFontIndirectA
SelectObject
SetTextColor
ExtTextOutA
GetTextExtentPointA
DeleteObject
GetStockObject
GetTextExtentPoint32A
CreateRectRgn
CombineRgn
OffsetRgn
GetPixel
CreateDIBSection
SetBkColor
StretchBlt
CreateBitmap
SetDIBitsToDevice
Escape
GetObjectA
CreateSolidBrush
SetBkMode
ExtCreateRegion

msimg32

AlphaBlend
TransparentBlt

shell32

DragQueryFileA
DragAcceptFiles
ShellExecuteExA
ShellExecuteA

comctl32

_TrackMouseEvent
ImageList_Remove
ImageList_GetImageCount
FlatSB_EnableScrollBar
FlatSB_ShowScrollBar
ImageList_Draw
ImageList_AddMasked
InitializeFlatSB

ole32

CoInitialize
CoUninitialize
CreateStreamOnHGlobal
CoCreateInstance

oleaut32

SysAllocStringLen
VariantClear
OleLoadPicture
SysFreeString
SysAllocString

gdiplus

GdipReleaseDC
GdipDrawImageRectRect
GdipAlloc
GdipCloneImage
GdipImageGetFrameDimensionsCount
GdipCreateFromHDC
GdipImageGetFrameCount
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipLoadImageFromStreamICM
GdipLoadImageFromFile
GdipSetImageAttributesColorMatrix
GdipDisposeImage
GdipFree
GdipImageGetFrameDimensionsList
GdipCreateHBITMAPFromBitmap
GdipDeleteGraphics
GdiplusStartup
GdiplusShutdown
GdipGetImageHeight
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipGetImageWidth

msvcp71

??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

Exports

Exports

GCInit

Sections

.text
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

44120a14a69f9effdd844aa51fb632e5

Headers

File Characteristics

Imports

mfc71

msvcr71

kernel32

user32

gdi32

msimg32

shell32

comctl32

ole32

oleaut32

gdiplus

msvcp71

Exports

Exports

Sections

.text Size: 244KB - Virtual size: 243KB

.rdata Size: 48KB - Virtual size: 47KB

.data Size: 4KB - Virtual size: 36KB

.rsrc Size: 44KB - Virtual size: 43KB

.reloc Size: 36KB - Virtual size: 32KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 244KB - Virtual size: 243KB

.rdata
Size: 48KB - Virtual size: 47KB

.data
Size: 4KB - Virtual size: 36KB

.rsrc
Size: 44KB - Virtual size: 43KB

.reloc
Size: 36KB - Virtual size: 32KB

.rmnet
Size: 60KB - Virtual size: 60KB