c4b368c7165eb2af71124b160acedc26362249199d2b3352138a7d1f03ab10cf

Sharing

Copy URL Twitter E-mail

General

Target

c4b368c7165eb2af71124b160acedc26362249199d2b3352138a7d1f03ab10cf
Size

1.1MB
MD5

136934f1a8a2d5a3ff5762990216fdd5
SHA1

8a740c4bc6a7dacf4d15b8cda230785ccd86066a
SHA256

c4b368c7165eb2af71124b160acedc26362249199d2b3352138a7d1f03ab10cf
SHA512

e67df431067bf0011c7bb01f3fd3e2850183e0fff3675e79b91428782893c90e669e473d305b46dba666d2d4be49f4f90be688f41431f2040990421886aed78f
SSDEEP

24576:YRU/SK3fbIysHoOuW2Ufs77Cor2oC4u9Oox4y/:JhwHATCor2oC4uEot/

Score

N/A

Malware Config

Signatures

Files

c4b368c7165eb2af71124b160acedc26362249199d2b3352138a7d1f03ab10cf
.exe windows x86

23a4cd62c089c181ed914f6d8da2760d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
SetStdHandle
GetLocaleInfoW
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
QueryPerformanceCounter
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
GetStartupInfoA
GetFileType
SetHandleCount
HeapCreate
GetTimeZoneInformation
IsValidCodePage
GetOEMCP
TlsFree
SetEnvironmentVariableA
TlsAlloc
TlsGetValue
GetStdHandle
GetCPInfo
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
RtlUnwind
GetStartupInfoW
CreateDirectoryA
VirtualQuery
VirtualProtect
GetModuleHandleA
ResumeThread
ExitThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetThreadLocale
GetLocaleInfoA
GetACP
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
GetSystemInfo
GetFileAttributesA
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetCurrentThread
ExpandEnvironmentStringsW
FindNextFileW
FindClose
FindFirstFileW
GetUserDefaultLangID
GetFileAttributesExW
GetSystemWindowsDirectoryW
GetLongPathNameW
GetEnvironmentVariableW
SetErrorMode
GetCurrentDirectoryW
GetTempPathW
CreateThread
FileTimeToLocalFileTime
GetSystemTime
WaitNamedPipeW
SetThreadPriority
WaitForMultipleObjects
GetSystemTimeAsFileTime
GlobalAlloc
GlobalLock
CreateMutexW
lstrcmpiW
LoadLibraryExW
OpenMutexW
InterlockedDecrement
GlobalUnlock
ExitProcess
InterlockedIncrement
InterlockedCompareExchange
SetEvent
GetCurrentProcessId
CreateEventW
CopyFileW
OpenEventW
LocalFree
SetEndOfFile
TerminateThread
SetFilePointer
WriteFile
GetSystemDirectoryW
Sleep
TerminateProcess
OpenProcess
LeaveCriticalSection
lstrlenA
EnterCriticalSection
GetCurrentThreadId
MultiByteToWideChar
WideCharToMultiByte
RaiseException
GetTickCount
GetVersion
GetFileSize
ReadFile
WaitForSingleObject
ResetEvent
FlushInstructionCache
lstrlenW
FreeResource
GetFileAttributesW
SetFileAttributesW
CloseHandle
GetVersionExW
InitializeCriticalSection
GetLastError
DeleteFileW
GetProcAddress
LoadLibraryW
FindResourceExW
FileTimeToSystemTime
FreeLibrary
GetModuleFileNameW
FindResourceW
GetLocalTime
SizeofResource
LoadResource
InterlockedExchange
LockResource
GetPrivateProfileStringW
GetModuleHandleW
SystemTimeToFileTime
CreateProcessW
GetPrivateProfileIntW
CreateDirectoryW
SetLastError
CreateFileW
WritePrivateProfileStringW
DeleteCriticalSection
GetCurrentProcess
TlsSetValue

user32

PtInRect
GetActiveWindow
SetRect
GetClassInfoExW
SetWindowTextW
GetWindowRect
GetCursorPos
GetDC
RegisterClassExW
RegisterWindowMessageW
GetSubMenu
GetWindowTextLengthW
LoadMenuW
ExitWindowsEx
TrackPopupMenu
GetWindowTextW
SetForegroundWindow
EndMenu
SendMessageTimeoutW
LoadBitmapW
CharNextW
SetMenuItemInfoW
GetSysColor
CallWindowProcW
SetCursor
DrawIconEx
LoadCursorW
wsprintfW
IsWindow
SetWindowPos
DrawTextW
SystemParametersInfoW
IsWindowVisible
GetDlgCtrlID
MoveWindow
MapWindowPoints
EqualRect
GetParent
MonitorFromWindow
GetWindowLongW
GetClientRect
DrawFrameControl
GetMonitorInfoW
EndPaint
UnregisterClassA
GetWindow
ClientToScreen
CopyRect
InvalidateRect
DefWindowProcW
BeginPaint
LoadImageW
SetActiveWindow
EnableWindow
FrameRect
GetSystemMetrics
WindowFromPoint
GetAncestor
IsWindowEnabled
SetWindowLongW
PostMessageW
GetForegroundWindow
GetFocus
SetFocus
GetWindowThreadProcessId
FindWindowW
GetDlgItem
SetCapture
CreateWindowExW
DispatchMessageW
ReleaseCapture
TranslateMessage
OffsetRect
PostThreadMessageW
GetMessageW
SetTimer
PeekMessageW
ReleaseDC
SetWindowRgn
ShowWindow
GetDesktopWindow
KillTimer
DestroyWindow
DestroyIcon
SendMessageW
GetKeyState
InflateRect
LoadIconW

gdi32

SaveDC
CreateRectRgn
StretchBlt
SelectClipRgn
SetBkMode
MoveToEx
SelectObject
LineTo
SetTextColor
DeleteObject
CreateRectRgnIndirect
OffsetRgn
GetTextExtentPoint32W
CreateCompatibleBitmap
SetRectRgn
GetObjectW
RectInRegion
GetStockObject
TextOutW
CreateBitmap
GetClipRgn
CombineRgn
BitBlt
CreateFontIndirectW
CreateDIBSection
RoundRect
DeleteDC
RestoreDC
CreateCompatibleDC
SetBkColor
CreatePen
ExtTextOutW
Rectangle
SetWindowOrgEx
CreateSolidBrush

advapi32

RegEnumKeyExW
GetTokenInformation
RegQueryInfoKeyW
RegDeleteKeyW
RegDeleteValueW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegSetValueExW
RegCreateKeyExW
ControlService
StartServiceW
CloseServiceHandle
OpenServiceW
OpenSCManagerW
RegQueryValueExW
GetSidSubAuthority
GetSidLengthRequired
InitializeSid
RegCloseKey
GetNamedSecurityInfoW
SetNamedSecurityInfoW
RegOpenKeyExW
InitializeAcl
GetAclInformation
AddAce
GetAce
IsValidSid
CopySid
GetLengthSid
SetThreadToken
RevertToSelf
OpenThreadToken
ImpersonateSelf

shell32

SHAppBarMessage
SHGetFileInfoW
ShellExecuteW
SHGetSpecialFolderPathW
Shell_NotifyIconW
SHGetFolderPathW

ole32

CreateStreamOnHGlobal
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoInitialize
CoCreateInstance
CoUninitialize
CoInitializeEx
CoCreateGuid

oleaut32

SysFreeString
SysAllocStringLen
VarUI4FromStr
SysAllocString

shlwapi

StrRChrW
StrChrW
StrCmpNW
StrCpyNW
StrCmpNIW
PathFindFileNameW
PathStripToRootW
PathFileExistsW
PathIsDirectoryW
PathRemoveFileSpecW
PathAppendW
StrToIntW
StrToIntA
SHSetValueW
StrStrIA
SHGetValueW

comctl32

InitCommonControlsEx
ImageList_Destroy
ImageList_Create
ImageList_AddMasked
ImageList_GetIconSize
ImageList_Draw
_TrackMouseEvent

msimg32

GradientFill

gdiplus

GdipAlloc
GdipFree
GdiplusShutdown
GdipDrawImageRectI
GdipDisposeImage
GdipCloneImage
GdipLoadImageFromStream
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageRectRectI
GdipGetImageHeight
GdipGetImageWidth
GdiplusStartup

userenv

UnloadUserProfile

wininet

InternetCloseHandle
HttpSendRequestW
InternetConnectW
InternetSetOptionW
InternetOpenW
InternetCrackUrlW
HttpOpenRequestW

iphlpapi

GetAdaptersInfo

psapi

EnumProcesses
GetModuleFileNameExW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

mpr

WNetGetResourceInformationW

Sections

.text
Size: 732KB - Virtual size: 731KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

23a4cd62c089c181ed914f6d8da2760d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

msimg32

gdiplus

userenv

wininet

iphlpapi

psapi

version

mpr

Sections

.text Size: 732KB - Virtual size: 731KB

.rdata Size: 112KB - Virtual size: 111KB

.data Size: 20KB - Virtual size: 29KB

.rsrc Size: 204KB - Virtual size: 204KB

.text
Size: 732KB - Virtual size: 731KB

.rdata
Size: 112KB - Virtual size: 111KB

.data
Size: 20KB - Virtual size: 29KB

.rsrc
Size: 204KB - Virtual size: 204KB