c1c8c49dcc2959b1fc1a6e636d03d3faf2f7dfe75c79d19c6a122dc54e5f1f2c

Sharing

Copy URL Twitter E-mail

General

Target

c1c8c49dcc2959b1fc1a6e636d03d3faf2f7dfe75c79d19c6a122dc54e5f1f2c
Size

388KB
MD5

4a22db2df2b018b46f3d5af9e6d5d5f0
SHA1

62bbbba771a132c4452d117b17022a7fa7b22a1a
SHA256

c1c8c49dcc2959b1fc1a6e636d03d3faf2f7dfe75c79d19c6a122dc54e5f1f2c
SHA512

2b3e53869db35c9bd1f6b86a09ce535412779762baeaf7674b5f7ccb13efb328b7862a85aa8bacd6cbb1a4ebd7ed4e2bbd913b41c0c66ff4d8327d8e030e68ff
SSDEEP

6144:7f1L9mFsjXgGo3gS4LViD5R9zny8CBvefus52o2H4gpgw2lpgyz:7dL9SGo3oy5R9znMefuxLFH2Hgy

Score

N/A

Malware Config

Signatures

Files

c1c8c49dcc2959b1fc1a6e636d03d3faf2f7dfe75c79d19c6a122dc54e5f1f2c
.exe windows x86

403141ae39a73d6ec5e88b66e7e2fe06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GlobalFlags
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
SetErrorMode
GetTickCount
RtlUnwind
HeapAlloc
HeapFree
HeapReAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCommandLineA
GetProcessHeap
GetStartupInfoA
ExitProcess
InterlockedIncrement
GetACP
LCMapStringA
LCMapStringW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualFree
HeapDestroy
HeapCreate
GetStdHandle
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetThreadLocale
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcessId
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
FreeResource
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetCurrentThreadId
InterlockedDecrement
GetModuleFileNameW
SetLastError
GlobalLock
GlobalUnlock
FormatMessageA
MulDiv
RaiseException
LocalFree
LocalAlloc
GetModuleHandleA
GlobalAlloc
GlobalFree
Sleep
GetModuleFileNameA
OpenFileMappingA
OpenMutexA
CreateFileMappingA
MapViewOfFile
CreateMutexA
WaitForSingleObject
ReleaseMutex
UnmapViewOfFile
LoadLibraryA
GetProcAddress
GetPrivateProfileSectionA
GetPrivateProfileStringA
GetVersionExA
FreeLibrary
LoadLibraryExA
CreateProcessA
CloseHandle
lstrlenA
CompareStringW
CompareStringA
GetVersion
GetLastError
MultiByteToWideChar
InterlockedExchange
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
HeapSize

user32

InvalidateRect
InvalidateRgn
SetCapture
ReleaseCapture
GetNextDlgGroupItem
MessageBeep
RegisterClipboardFormatA
PostThreadMessageA
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ClientToScreen
UnregisterClassA
LoadCursorA
GetSysColorBrush
DestroyMenu
GetDesktopWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
SetWindowContextHelpId
MapDialogRect
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
GetWindowThreadProcessId
IsWindowEnabled
SetCursor
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
EnableMenuItem
CheckMenuItem
PostQuitMessage
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
SetActiveWindow
SetRect
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
GetParent
EqualRect
CopyRect
PtInRect
GetDlgCtrlID
ReleaseDC
GetDC
MessageBoxA
GetClassNameA
CharUpperA
UpdateWindow
IsWindowVisible
RegisterWindowMessageA
IsWindow
SetForegroundWindow
GetLastActivePopup
PostMessageA
LoadBitmapA
DefWindowProcA
CallWindowProcA
GetWindowLongA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
GetWindow
SetWindowsHookExA
IsRectEmpty
CopyAcceleratorTableA
CharNextA
CallNextHookEx
GetMessageA
TranslateMessage
EndPaint
BeginPaint
GetWindowDC
LoadIconA
LoadStringA
AppendMenuA
GetSystemMenu
GetWindowRect
GetClientRect
EnableWindow
SendMessageA
GetKeyState
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
UnhookWindowsHookEx
ValidateRect
GetCursorPos
PeekMessageA
GetActiveWindow
DispatchMessageA

gdi32

ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
GetStockObject
SetViewportExtEx
GetBkColor
GetTextColor
GetRgnBox
GetMapMode
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutA
RectVisible
PtVisible
GetWindowExtEx
SelectObject
DeleteDC
SetMapMode
RestoreDC
SaveDC
ExtTextOutA
CreateRectRgnIndirect
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
DeleteObject
CreateBitmap
GetObjectA
GetViewportExtEx

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
GetPrinterDriverA
EnumMonitorsA
EnumPortsA
DocumentPropertiesA
GetPrinterA

advapi32

RegQueryValueA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA

comctl32

PropertySheetA
ord17

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA

oledlg

ord8

ole32

CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoGetClassObject
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes

oleaut32

SysStringLen
SysFreeString
SysAllocStringByteLen
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString

Sections

.text
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

403141ae39a73d6ec5e88b66e7e2fe06

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 228KB - Virtual size: 227KB

.rdata Size: 56KB - Virtual size: 54KB

.data Size: 12KB - Virtual size: 25KB

.rsrc Size: 88KB - Virtual size: 88KB

.text
Size: 228KB - Virtual size: 227KB

.rdata
Size: 56KB - Virtual size: 54KB

.data
Size: 12KB - Virtual size: 25KB

.rsrc
Size: 88KB - Virtual size: 88KB