a45e18f87c7fd43ffd48fe38e29b915cd2bf46720f6c675e4fe0d0bce92893e9

Sharing

Copy URL Twitter E-mail

General

Target

a45e18f87c7fd43ffd48fe38e29b915cd2bf46720f6c675e4fe0d0bce92893e9
Size

669KB
MD5

4a346bdda6df6887425483c7a94ddde1
SHA1

cf24aeb9f06c2dd0eae998f6fb83fb7831724238
SHA256

a45e18f87c7fd43ffd48fe38e29b915cd2bf46720f6c675e4fe0d0bce92893e9
SHA512

93fd14276762b9fb0100b25e8bd75625015f6e6c682d3e740b3a689e1ce752ba009a7b021c5c771d7f2cbe5ef3a758fc0ae8eff633829a4f1fbe62d96062339f
SSDEEP

12288:1dKOU1AnNL5NoO8+2Tzjklritz2lajerWjQ+5teCxVLq:C9+itz2EK+8CPq

Score

N/A

Malware Config

Signatures

Files

a45e18f87c7fd43ffd48fe38e29b915cd2bf46720f6c675e4fe0d0bce92893e9
.exe windows x86

5e4dc856a282bb59be31ece45fc51d2e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

_TrackMouseEvent

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

shlwapi

PathFindFileNameW
PathAppendW

wininet

InternetErrorDlg
InternetCloseHandle
HttpSendRequestW
HttpQueryInfoW
HttpOpenRequestW
InternetConnectW
InternetCrackUrlW
InternetOpenW
InternetReadFile
InternetSetFilePointer
HttpAddRequestHeadersW
HttpEndRequestW

kernel32

LeaveCriticalSection
lstrlenW
FlushInstructionCache
GetCurrentProcess
lstrcmpW
MulDiv
GlobalUnlock
GlobalLock
GlobalAlloc
SetLastError
MultiByteToWideChar
SetFileAttributesW
GetFileAttributesW
UnmapViewOfFile
MapViewOfFile
CloseHandle
CreateFileMappingW
GetFileSize
CreateFileW
WriteFile
WideCharToMultiByte
CreateDirectoryW
GetVersionExW
LocalFree
LocalAlloc
GetCurrentThread
OutputDebugStringW
GlobalFree
GlobalHandle
SetFilePointer
SystemTimeToFileTime
Sleep
CompareFileTime
GetFileTime
GetPrivateProfileIntW
GetPrivateProfileStringW
GetPrivateProfileSectionW
lstrlenA
QueryPerformanceCounter
GetCurrentProcessId
GlobalMemoryStatus
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
TlsFree
EnterCriticalSection
TlsAlloc
TlsGetValue
GetModuleHandleA
IsValidCodePage
GetOEMCP
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetModuleFileNameA
GetStartupInfoW
GetLocalTime
GetConsoleMode
GetConsoleCP
ReadFile
GetFileType
RtlUnwind
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
ExitProcess
GetStdHandle
SetStdHandle
SetEndOfFile
SetHandleCount
GetStartupInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
FatalAppExitA
lstrcpynW
GetModuleFileNameW
CopyFileW
DeleteFileW
SetEvent
InterlockedDecrement
InterlockedIncrement
GetCurrentThreadId
FileTimeToSystemTime
GetLastError
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetModuleHandleW
GetTickCount
GetSystemTimeAsFileTime
SetConsoleCtrlHandler
FlushFileBuffers
VirtualQuery
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoW
CreateFileA
LCMapStringA
LCMapStringW
HeapCreate
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA
TlsSetValue

user32

DialogBoxIndirectParamW
RegisterWindowMessageW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
CreateAcceleratorTableW
CreateDialogIndirectParamW
IsDialogMessageW
GetMessageW
GetActiveWindow
GetClassInfoExW
SetFocus
GetFocus
DestroyAcceleratorTable
GetDesktopWindow
BeginPaint
EndPaint
FillRect
ReleaseCapture
GetClassNameW
GetDlgItem
GetParent
IsChild
SetCapture
RedrawWindow
MapWindowPoints
SystemParametersInfoW
DrawTextW
LoadIconW
SetCursor
MapDialogRect
SetWindowContextHelpId
EndDialog
SetTimer
KillTimer
SetDlgItemTextW
AdjustWindowRectEx
InvalidateRgn
InvalidateRect
ReleaseDC
GetDC
ScreenToClient
ClientToScreen
SetWindowPos
CharNextW
GetSysColor
CallWindowProcW
MoveWindow
SendMessageW
GetWindow
GetClientRect
GetWindowLongW
SetWindowLongW
GetAsyncKeyState
GetKeyState
PostMessageW
CreateWindowExW
ShowWindow
PostThreadMessageW
FindWindowW
LoadCursorW
RegisterClassW
LoadStringW
PeekMessageW
TranslateMessage
DispatchMessageW
DefWindowProcW
PostQuitMessage
IsWindow
DestroyWindow
UnregisterClassW
GetWindowRect
BringWindowToTop
SendDlgItemMessageW
RegisterClassExW
UnregisterClassA

gdi32

DeleteObject
SelectObject
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CreateDCA
CreateSolidBrush
GetObjectW
GetStockObject
SetTextColor
CreateFontIndirectW
TextOutW
GetBitmapBits
GetDeviceCaps
GetObjectA

advapi32

AccessCheck
RegQueryValueExA
RegDeleteValueW
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
RegCloseKey
RegOpenKeyExW
OpenThreadToken
OpenProcessToken
DuplicateToken
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup
FreeSid
CheckTokenMembership
AllocateAndInitializeSid
IsValidSecurityDescriptor
SetSecurityDescriptorOwner

shell32

SHGetFolderPathW
ShellExecuteExW
SHFileOperationW

ole32

CoInitialize
CoUninitialize
CoCreateInstance
StringFromGUID2
OleLockRunning
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
CoTaskMemAlloc
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CoTaskMemFree
StringFromCLSID

oleaut32

VariantClear
VariantChangeType
LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
SysStringByteLen
DispCallFunc
SysAllocString
SysAllocStringLen
VariantInit
SysStringLen
SysFreeString

Sections

.text
Size: 428KB - Virtual size: 427KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5e4dc856a282bb59be31ece45fc51d2e

Headers

File Characteristics

Imports

comctl32

version

shlwapi

wininet

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 428KB - Virtual size: 427KB

.rdata Size: 96KB - Virtual size: 95KB

.data Size: 32KB - Virtual size: 68KB

.rsrc Size: 104KB - Virtual size: 104KB

.text
Size: 428KB - Virtual size: 427KB

.rdata
Size: 96KB - Virtual size: 95KB

.data
Size: 32KB - Virtual size: 68KB

.rsrc
Size: 104KB - Virtual size: 104KB