b195cf6435d64f0593cf1a1e804ac5a19e197c7ee775056339916e15faaaf309

Sharing

Copy URL Twitter E-mail

General

Target

b195cf6435d64f0593cf1a1e804ac5a19e197c7ee775056339916e15faaaf309
Size

3.1MB
MD5

00e647de0b2f8a9c849c6080b3f78363
SHA1

14e3f91abde3dd2bb4db4d8714b839a5b0c22247
SHA256

b195cf6435d64f0593cf1a1e804ac5a19e197c7ee775056339916e15faaaf309
SHA512

aee8e23795a84f2119cc584e9ac90d68bfa2b51876648b33872c4f45d077d1db2cf2382059254bd483be5a09b0276dc856f48926189f7f6e0b6aa16b22b29fca
SSDEEP

49152:CZVe6CqNaiSZqlFU9gDXLUvSpJTa100jVqntJFHFfOvdnXJpsww:GHCqNIZQuqUvSAwnLfOvdXJpsw

Score

N/A

Malware Config

Signatures

Files

b195cf6435d64f0593cf1a1e804ac5a19e197c7ee775056339916e15faaaf309
.exe windows x86

107c618e3ce4c4ce20fe251dfd28ba00

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetCancelConnection2W
WNetDisconnectDialog1W
WNetCloseEnum
WNetEnumResourceW
WNetOpenEnumW
WNetAddConnection2W

netapi32

NetApiBufferFree
NetGetDCName
NetUseAdd
NetUseDel
NetWkstaGetInfo
NetServerGetInfo
NetUseEnum
NetGetAnyDCName

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

kernel32

HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
CompareStringA
CompareStringW
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetStringTypeW
SetStdHandle
GetACP
GetOEMCP
SetEnvironmentVariableA
lstrcpyW
lstrlenW
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCommandLineA
GetCommandLineW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
HeapReAlloc
TerminateProcess
RaiseException
HeapAlloc
CreateThread
RtlUnwind
HeapFree
GetSystemTime
GetTimeZoneInformation
GetStartupInfoW
CopyFileW
GlobalSize
GetCurrentDirectoryW
GetProfileIntW
GetTempPathW
GetPrivateProfileSectionNamesW
EnumResourceLanguagesW
EnumResourceNamesW
EnumResourceTypesW
Sleep
FreeLibrary
GetProcAddress
GetLastError
lstrcatW
LoadLibraryW
ExitThread
GetComputerNameW
CloseHandle
TerminateThread
ResumeThread
DuplicateHandle
GetCurrentProcess
lstrlenA
GetModuleFileNameW
SetLastError
SetThreadPriority
SetEvent
MulDiv
CreateEventW
WaitForSingleObject
LocalFree
FormatMessageW
LoadLibraryExW
lstrcpyA
DeleteFileW
GlobalUnlock
GlobalLock
GlobalAlloc
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetExitCodeThread
ExitProcess
FindResourceExW
SetErrorMode
SetFileAttributesW
SystemTimeToFileTime
LocalFileTimeToFileTime
GetProcessVersion
SizeofResource
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
GlobalGetAtomNameW
LocalAlloc
LocalLock
LocalUnlock
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDiskFreeSpaceW
GetFileTime
SetFileTime
GetTempFileNameW
GetFileAttributesW
GetTickCount
lstrcmpiA
GetCurrentThread
lstrcmpW
lstrcmpA
GetShortPathNameW
GetThreadLocale
GetStringTypeExW
GetFullPathNameW
lstrcpynW
GetVolumeInformationW
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
ReadFile
GetModuleHandleA
LoadLibraryA
GetVersion
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetModuleHandleW
LockResource
FindResourceW
LoadResource
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GlobalFree
lstrcmpiW
CreateFileW
CreateDirectoryW
GetFileSize
MoveFileW
SetFilePointer
lstrcatA
WriteFile
CreateProcessW
GetExitCodeProcess
GetVersionExW
FindFirstFileW
FindClose
GetLocalTime

user32

GetMenuStringW
DeleteMenu
InsertMenuW
GetSysColorBrush
GetClassNameW
SetCursorPos
UnpackDDElParam
ReuseDDElParam
SetMenu
TranslateAcceleratorW
LoadAcceleratorsW
SetRectEmpty
WindowFromPoint
GetWindowThreadProcessId
GetDesktopWindow
WaitMessage
ReleaseCapture
SetCapture
IsClipboardFormatAvailable
GetTabbedTextExtentW
DestroyMenu
FillRect
LoadCursorW
DestroyCursor
RegisterClipboardFormatW
SetWindowContextHelpId
SetCursor
ShowOwnedPopups
PostQuitMessage
InflateRect
GrayStringW
DrawTextW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GetMessageW
TranslateMessage
ValidateRect
MapDialogRect
CharUpperW
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
CharNextW
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
SetDlgItemTextW
CheckDlgButton
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
PeekMessageW
wsprintfW
LoadStringW
SendMessageW
RegisterWindowMessageW
UpdateWindow
EnableWindow
GetParent
GetClientRect
SetTimer
GetSystemMenu
SetParent
InvalidateRect
GetWindowRect
DispatchMessageW
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
CopyAcceleratorTableW
GetNextDlgGroupItem
PostThreadMessageW
AppendMenuW
IsRectEmpty
GetTabbedTextExtentA
GetDCEx
LockWindowUpdate
SetMenuItemBitmaps
WinHelpW
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
GetKeyState
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
KillTimer
DrawIcon
GetSysColor
PtInRect
IsWindowVisible
GetAsyncKeyState
PostMessageW
CopyIcon
DestroyIcon
DrawIconEx
LoadImageW
MessageBoxW
ReleaseDC
GetDC
LoadBitmapW
GetSubMenu
LoadMenuW
GetCursorPos
CopyRect
UnregisterClassW
DrawMenuBar
TranslateMDISysAccel
DefFrameProcW
GetClipboardFormatNameW
SendMessageTimeoutW
GetDoubleClickTime
UnionRect
GetCursor
GetWindowRgn
IsMenu
GetClassLongW
GetMenuDefaultItem
LoadIconW
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongW
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
GetSystemMetrics
CreateDialogIndirectParamW
DestroyWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
UnhookWindowsHookEx
FindWindowW
BringWindowToTop
DrawEdge
ScreenToClient
wsprintfA
MessageBeep
RedrawWindow
SetRect
LookupIconIdFromDirectoryEx
HideCaret
SetFocus
GetFocus
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
IsWindow
ShowWindow
mouse_event
CreateIconFromResourceEx
GetIconInfo
CreateIconIndirect
DrawStateW
MapVirtualKeyW
SetWindowRgn
DrawFocusRect
CreatePopupMenu
DrawFrameControl
DestroyAcceleratorTable
IsCharLowerW
GetKeyNameTextW
MapVirtualKeyExW
GetKeyboardLayout
ToUnicodeEx
GetKeyboardState
GetKeyboardLayoutList
CreateAcceleratorTableW
IsZoomed
GetMenuItemInfoW
GetClipboardData
ShowCaret
InvertRect

gdi32

SetTextAlign
GetCurrentPositionEx
DeleteObject
CreateRectRgn
ExtSelectClipRgn
GetViewportExtEx
GetWindowExtEx
CreatePen
CreatePatternBrush
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
Rectangle
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
LineTo
SetAbortProc
CreateDCW
GetCharWidthW
StretchDIBits
CreateCompatibleBitmap
CreateFontW
EnumFontFamiliesExW
GetBkColor
LPtoDP
CopyMetaFileW
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceW
GetTextExtentPoint32A
GetWindowOrgEx
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SelectObject
GetStockObject
GetTextColor
CreateSolidBrush
GetTextExtentPoint32W
GetDeviceCaps
CreateFontIndirectW
GetTextMetricsW
GetObjectW
BitBlt
CreateCompatibleDC
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
PatBlt
CreateRectRgnIndirect
GetPixel
SetPixel
Polygon
StretchBlt
CreateDIBSection
GetDIBits
SetDIBits
GetCurrentObject
PtInRegion
GetBitmapBits
ExtCreateRegion
GetRgnBox
CreatePolygonRgn
RoundRect
ExtFloodFill
Ellipse
SetPixelV
SetROP2
DeleteDC
StartDocW
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
StartPage

comdlg32

FindTextW
CommDlgExtendedError
GetOpenFileNameW
ReplaceTextW
PrintDlgW
ChooseColorW
GetSaveFileNameW
GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegDeleteKeyW
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegOpenKeyW
RegQueryValueW
RegEnumKeyW
SetFileSecurityW
GetFileSecurityW
RegSetValueW
RegCreateKeyW

shell32

SHGetSpecialFolderLocation
ExtractIconW
DragQueryFileW
DragFinish
SHGetFileInfoW
ShellExecuteW
SHGetMalloc
SHBrowseForFolderW
SHGetPathFromIDListW

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Add
ImageList_Draw
ImageList_Create
ImageList_LoadImageW
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW
_TrackMouseEvent
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_GetImageInfo
ord17
ImageList_Remove

oledlg

OleUIBusyW
OleUIAddVerbMenuW

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
StringFromCLSID
CoTaskMemFree
CoDisconnectObject
CoCreateInstance
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CreateILockBytesOnHGlobal
CLSIDFromProgID
CoRevokeClassObject
CoRegisterClassObject
CoCreateGuid
CoInitializeSecurity
CoInitializeEx
CoUninitialize
CoTaskMemAlloc
CoRegisterMessageFilter
ReleaseStgMedium
OleFlushClipboard
OleIsCurrentClipboard
OleDuplicateData
CLSIDFromString
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop

olepro32

ord253

oleaut32

VarDateFromStr
VarBstrFromDate
VariantTimeToSystemTime
SysStringLen
LoadTypeLi
VariantChangeTypeEx
OleLoadPicturePath
SysAllocStringByteLen
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SysAllocString
SafeArrayUnaccessData
VariantChangeType
VariantClear
VariantCopy
SysAllocStringLen
SysStringByteLen
SysFreeString

winmm

PlaySoundW

Sections

.code
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 260KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0000EC9D
Size: 59KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

107c618e3ce4c4ce20fe251dfd28ba00

Headers

File Characteristics

Imports

mpr

netapi32

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

winmm

Sections

.code Size: 1.4MB - Virtual size: 1.4MB

.idata Size: 260KB - Virtual size: 264KB

0000EC9D Size: 59KB - Virtual size: 80KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.code
Size: 1.4MB - Virtual size: 1.4MB

.idata
Size: 260KB - Virtual size: 264KB

0000EC9D
Size: 59KB - Virtual size: 80KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB