cd5bee4dea013c1be8803edbd8125f6dc813d290fb6e149ad2b6bdb16148d50f

Sharing

Copy URL

Twitter E-mail

General

Target

cd5bee4dea013c1be8803edbd8125f6dc813d290fb6e149ad2b6bdb16148d50f
Size

313KB
MD5

38d29da733b44a9e1b5956038c3cf5b0
SHA1

1de92a644d4554c5a4950e73b4214d6b036b9661
SHA256

cd5bee4dea013c1be8803edbd8125f6dc813d290fb6e149ad2b6bdb16148d50f
SHA512

24da35acf400fd8ba06bfba94f261a4f8ff0c5e1792f089ed747ff2253107afb3c09cbf89c0a8caf38cc03e2d9a8aac76a88928ac42239217288fd9cb74e737f
SSDEEP

6144:A2+XmBH2sB5mIhng16U5qnFhcq4Sqruy2NB0NDVa4bnIW:9Dng1f5qsqArudveLn

Score

N/A

Malware Config

Signatures

Files

cd5bee4dea013c1be8803edbd8125f6dc813d290fb6e149ad2b6bdb16148d50f
.exe windows x86

a4bb05066ca6c47edacc5d6b5c4e5da3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSACleanup
WSAStartup

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

comdlg32

ChooseColorW
PrintDlgW
GetSaveFileNameW
GetOpenFileNameW
GetFileTitleW
CommDlgExtendedError

kernel32

SizeofResource
SystemTimeToFileTime
TerminateProcess
ReleaseSemaphore
UnmapViewOfFile
VirtualAlloc
VirtualFree
WideCharToMultiByte
WriteFile
_llseek
_lread
lstrcmpW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW
ReleaseMutex
RaiseException
QueryPerformanceFrequency
QueryPerformanceCounter
OutputDebugStringW
OutputDebugStringA
OpenProcess
OpenEventW
MultiByteToWideChar
MulDiv
MoveFileW
MapViewOfFile
LockResource
LocalFree
LocalFileTimeToFileTime
LocalAlloc
LoadResource
LoadLibraryW
LoadLibraryA
LeaveCriticalSection
IsDBCSLeadByte
InterlockedExchange
SetThreadPriority
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapFree
HeapAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalFree
GetVersionExW
GetVersionExA
GetVersion
GetTimeZoneInformation
GetTimeFormatW
GetTickCount
GetThreadPriority
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemTime
GetSystemInfo
GetSystemDirectoryA
GetSystemDefaultLangID
GetStdHandle
GetStartupInfoW
SetLastError
GetProfileStringW
GetProcessHeap
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetMailslotInfo
GetLogicalDrives
GetLocaleInfoW
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameA
GetFileTime
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExW
GetExitCodeProcess
GetDiskFreeSpaceW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetComputerNameExA
GetCommandLineW
GetACP
FreeLibrary
FormatMessageW
FormatMessageA
FlushFileBuffers
FindResourceW
FindNextFileW
FindFirstFileW
FindFirstFileExW
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
FatalAppExitA
ExitThread
ExitProcess
EnterCriticalSection
DuplicateHandle
DosDateTimeToFileTime
DeleteFileA
DeleteCriticalSection
DebugBreak
CreateThread
CreateSemaphoreW
CreateProcessW
CreateMutexA
CreateMailslotA
CreateFileW
CreateFileMappingW
CreateFileA
CreateEventW
CreateEventA
CreateDirectoryW
CopyFileW
CompareStringW
CompareFileTime
CloseHandle
SetFilePointer
SetFileAttributesW
SetEvent
SetErrorMode
SetEndOfFile
ResumeThread
GetShortPathNameA
RemoveDirectoryW
TlsGetValue

shell32

SHGetMalloc
SHGetFolderPathW
SHGetDesktopFolder
SHCreateDirectoryExW
SHGetSpecialFolderPathA
SHBrowseForFolderW
DragQueryFileW
DragFinish
DragAcceptFiles
CommandLineToArgvW
ShellExecuteA
ShellExecuteW
SHChangeNotify

gdi32

CreateBrushIndirect
SetMapMode
SetDIBitsToDevice
SetDIBits
SetBrushOrgEx
SetBkMode
SetBkColor
SetBitmapBits
SelectPalette
SelectObject
SelectClipRgn
SelectClipPath
UnrealizeObject
SaveDC
RoundRect
RestoreDC
Rectangle
RectVisible
RealizePalette
PtVisible
PolylineTo
Polyline
Polygon
PolyPolygon
PolyBezierTo
PlayEnhMetaFileRecord
PatBlt
PaintRgn
OffsetRgn
MoveToEx
ModifyWorldTransform
MaskBlt
LineTo
LPtoDP
IntersectClipRect
GetWorldTransform
GetWindowOrgEx
GetWindowExtEx
GetViewportOrgEx
GetViewportExtEx
GetTextMetricsW
GetTextExtentPoint32W
GetTextExtentExPointW
GetTextColor
GetTextCharset
GetTextAlign
GetSystemPaletteEntries
GetStockObject
GetPolyFillMode
GetPixel
GetPath
GetPaletteEntries
GetOutlineTextMetricsW
GetObjectW
GetNearestPaletteIndex
GetNearestColor
GetMetaFileBitsEx
GetMapMode
GetKerningPairsW
GetGlyphOutlineW
GetFontData
GetEnhMetaFileW
GetEnhMetaFileHeader
GetDeviceCaps
GetDIBits
GetCurrentObject
GetClipRgn
GetClipBox
GetCharWidthW
GetBkMode
GetBkColor
GetBitmapBits
GdiFlush
FrameRgn
FillRgn
FillPath
ExtTextOutW
ExtCreatePen
Escape
EnumFontFamiliesW
EnumFontFamiliesExW
EnumEnhMetaFile
EndPath
EndPage
EndDoc
Ellipse
DeleteObject
DeleteMetaFile
DeleteEnhMetaFile
DeleteDC
DPtoLP
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePolygonRgn
CreatePen
CreatePatternBrush
CreatePalette
CreateMetaFileW
CreateHatchBrush
CreateFontIndirectW
CreateEnhMetaFileW
CreateDIBitmap
CreateDIBSection
CreateDIBPatternBrushPt
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmapIndirect
CreateBitmap
CombineRgn
CloseMetaFile
CloseFigure
CloseEnhMetaFile
BitBlt
BeginPath
SetPixelV
SetPolyFillMode
SetRectRgn
SetStretchBltMode
SetTextAlign
SetTextColor
SetWinMetaFileBits
StartDocW
StartPage
StretchBlt
StretchDIBits
StrokePath
TextOutW
TranslateCharsetInfo
SetPixel

winmm

timeKillEvent
timeSetEvent
waveOutClose
waveOutGetDevCapsW
waveOutOpen
waveOutPrepareHeader
timeGetTime
waveOutUnprepareHeader
waveOutWrite
timeGetDevCaps
mmioDescend
mmioCreateChunk
mmioClose
mmioAscend
mmioOpenA
timeBeginPeriod
mmioWrite
mmioRead
waveOutReset
mmioOpenW
timeEndPeriod

imm32

ImmSetCompositionWindow
ImmSetCandidateWindow
ImmReleaseContext
ImmNotifyIME
ImmGetVirtualKey
ImmGetContext
ImmGetCompositionStringW
ImmSetCompositionFontW

ole32

CoUninitialize
CoInitialize
OleDraw
StgOpenStorage
StgIsStorageFile
StgCreateDocfile
ReleaseStgMedium
CoCreateInstance
CoTaskMemFree
CoFreeUnusedLibraries
CoTaskMemAlloc

shlwapi

SHDeleteKeyW
PathFileExistsW

oleaut32

SysFreeString
VariantClear
SysAllocString

wininet

HttpAddRequestHeadersW
InternetErrorDlg

msvfw32

ICCompressorFree
ICCompressorChoose

Sections

.text
Size: 227KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4bb05066ca6c47edacc5d6b5c4e5da3

Headers

File Characteristics

Imports

ws2_32

version

comdlg32

kernel32

shell32

gdi32

winmm

imm32

ole32

shlwapi

oleaut32

wininet

msvfw32

Sections

.text Size: 227KB - Virtual size: 228KB

.rdata Size: 56KB - Virtual size: 60KB

.data Size: 12KB - Virtual size: 68KB

.idata Size: 9KB - Virtual size: 12KB

.rsrc Size: 6KB - Virtual size: 8KB

.text
Size: 227KB - Virtual size: 228KB

.rdata
Size: 56KB - Virtual size: 60KB

.data
Size: 12KB - Virtual size: 68KB

.idata
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 6KB - Virtual size: 8KB