00d54ee51886d8c3185283c8d053bc8d29bee63055d4f1bdccaf0ab4bf7551f6

Sharing

Copy URL Twitter E-mail

General

Target

00d54ee51886d8c3185283c8d053bc8d29bee63055d4f1bdccaf0ab4bf7551f6
Size

433KB
MD5

38ebfe186cbe100559099b62568b447c
SHA1

8e2bb180f33dfc30be6ada5c64f6f149179522bd
SHA256

00d54ee51886d8c3185283c8d053bc8d29bee63055d4f1bdccaf0ab4bf7551f6
SHA512

a4d75642ff8b9ab143f001dc22bb1db24fc7e345e830f623e6a6de95203675d64c7435432fe03f872db84f6e9170ffbe14f2615947b0e8090ca78982da092363
SSDEEP

6144:hLHCEXuSh/7F0rqbtQEDUvk/ZvLCEUSGA+5h6Erh9EKQBX9G6DMm:hLHCrlqbTAvk/ZvHUSGAmE8hZM9G6DM

Score

N/A

Malware Config

Signatures

Files

00d54ee51886d8c3185283c8d053bc8d29bee63055d4f1bdccaf0ab4bf7551f6
.exe windows x86

091774890d75867d5c00c26eaafaf2ca

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileTime
WritePrivateProfileStringW
SetErrorMode
GetStartupInfoW
HeapFree
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
RtlUnwind
RaiseException
HeapReAlloc
ExitProcess
HeapSize
SetStdHandle
GetFileType
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapCreate
VirtualFree
GetFileSizeEx
GetSystemTimeAsFileTime
VirtualAlloc
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
GetFileAttributesW
GlobalFlags
lstrlenA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
InterlockedIncrement
CreateFileW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
LoadLibraryExW
CompareStringA
InterlockedExchange
WaitForSingleObject
CloseHandle
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
GetModuleHandleA
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
LoadLibraryW
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
FreeLibrary
InterlockedDecrement
GetModuleHandleW
GetProcAddress
FreeResource
WideCharToMultiByte
GetLastError
SetLastError
FormatMessageW
LocalFree
lstrlenW
MulDiv
GetTempPathW
GetModuleFileNameW
GetPrivateProfileStringW
TerminateProcess
OpenProcess
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetCurrentProcessId
Sleep
GetTickCount
MultiByteToWideChar
GlobalLock
GlobalAlloc
LoadResource
LockResource
SizeofResource
FindResourceW
GlobalFree
QueryPerformanceCounter
GlobalUnlock

user32

DestroyMenu
UnregisterClassW
GetSysColorBrush
CharUpperW
PostQuitMessage
GetMessageW
ValidateRect
GetCursorPos
WindowFromPoint
GetWindowThreadProcessId
EndPaint
BeginPaint
ReleaseDC
GetDC
ClientToScreen
ShowWindow
SetWindowTextW
IsDialogMessageW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
GetKeyState
SetMenu
SetForegroundWindow
IsWindowVisible
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
ScreenToClient
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
CopyRect
PtInRect
GetMenu
SetWindowLongW
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
GetWindow
UnhookWindowsHookEx
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetMenuState
SetPropW
GetMenuItemID
GetMenuItemCount
GetSubMenu
LoadCursorW
DrawIcon
GetSystemMetrics
IsIconic
MessageBoxW
PostMessageW
DispatchMessageW
TranslateMessage
PeekMessageW
SetTimer
KillTimer
SetCursor
OffsetRect
FillRect
UpdateWindow
RedrawWindow
GetSysColor
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
IsWindow
InvalidateRect
GetWindowRect
GetParent
GetClientRect
EqualRect
EnableWindow
SendMessageW
LoadIconW

gdi32

SetWindowExtEx
ScaleWindowExtEx
DeleteDC
ScaleViewportExtEx
DPtoLP
SetWindowOrgEx
SetTextAlign
SetViewportExtEx
OffsetViewportOrgEx
SelectObject
CreateCompatibleDC
SetMapMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
Rectangle
GetStockObject
SetViewportOrgEx
GetViewportOrgEx
GetObjectW
CreateFontIndirectW
DeleteObject
CreateSolidBrush
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
BitBlt
CreateCompatibleBitmap

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyW
RegCloseKey
RegSetValueExW
RegQueryValueExW
RegCreateKeyW

shell32

ShellExecuteW
SHGetFileInfoW

comctl32

_TrackMouseEvent

shlwapi

PathFindExtensionW
PathStripToRootW
PathIsUNCW
UrlUnescapeW
PathFindFileNameW

oleaut32

VariantClear
VariantChangeType
VariantInit

gdiplus

GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipDrawImageI
GdipDeleteGraphics
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectRect
GdipCreateFromHDC

wininet

DeleteUrlCacheEntryW
InternetOpenUrlW
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallbackW
InternetOpenW
InternetGetLastResponseInfoW
InternetCloseHandle
HttpQueryInfoW
InternetQueryDataAvailable
InternetSetOptionExW
InternetQueryOptionW
InternetCanonicalizeUrlW
InternetCrackUrlW

Sections

.text
Size: 199KB - Virtual size: 199KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

091774890d75867d5c00c26eaafaf2ca

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

gdiplus

wininet

Sections

.text Size: 199KB - Virtual size: 199KB

.rdata Size: 52KB - Virtual size: 51KB

.data Size: 9KB - Virtual size: 24KB

.rsrc Size: 138KB - Virtual size: 137KB

.reloc Size: 33KB - Virtual size: 33KB

.text
Size: 199KB - Virtual size: 199KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 9KB - Virtual size: 24KB

.rsrc
Size: 138KB - Virtual size: 137KB

.reloc
Size: 33KB - Virtual size: 33KB