59f9ab2df26edb2492d33c121298e655c95d696a264a368ac7a2dfa45330e0eb

Sharing

Copy URL

Twitter E-mail

General

Target

59f9ab2df26edb2492d33c121298e655c95d696a264a368ac7a2dfa45330e0eb
Size

720KB
MD5

61455851022209263e1d84227087fe10
SHA1

ece85f2700b74c641a31ab1be41185fb372132d6
SHA256

59f9ab2df26edb2492d33c121298e655c95d696a264a368ac7a2dfa45330e0eb
SHA512

de142c4aa7e8b5f9eedd0f42e8329bd7488154803eb87630e9c5b22af3684541d689155d4bc5993f8c7a74407f8c05eb151702424f0dc4525cc9c8e87f565042
SSDEEP

12288:MoxTOce8ii1mBGJ9em5ZSHUyp2Hc/Aax306gbWGPnBTdv6PLa2X7ZjWUBSsPds:MeTOFi1B/em5ZkRp4c/AaxktWuBToagu

Score

N/A

Malware Config

Signatures

Files

59f9ab2df26edb2492d33c121298e655c95d696a264a368ac7a2dfa45330e0eb
.exe windows x86

3312ec7b99a85fb364204d1e8fcdae22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

gethostbyaddr
getservbyport
ntohs
closesocket
shutdown
htons
ioctlsocket
connect
socket
WSAGetLastError
getservbyname
htonl
gethostbyname
inet_ntoa
recv
gethostname
getsockopt
recvfrom
sendto
bind
setsockopt
WSASocketA
WSACleanup
inet_addr
WSAStartup
send

kernel32

GetFileTime
SetErrorMode
RtlUnwind
ExitProcess
IsBadReadPtr
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
FindNextFileA
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
HeapReAlloc
SetStdHandle
GetFileType
HeapSize
QueryPerformanceCounter
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
IsBadCodePtr
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetLocaleInfoW
SetEnvironmentVariableA
FileTimeToLocalFileTime
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
WriteFile
FileTimeToSystemTime
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
LocalAlloc
GlobalFlags
GetProfileIntA
RaiseException
WritePrivateProfileStringA
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
CopyFileA
LocalFree
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
lstrcpynA
SetLastError
FreeResource
GlobalAlloc
GlobalFree
FormatMessageA
GetProcessHeap
HeapAlloc
HeapFree
GetCurrentProcessId
CreatePipe
CreateProcessA
Sleep
GetSystemDirectoryA
GlobalSize
GlobalLock
GlobalUnlock
MulDiv
GlobalReAlloc
FindResourceA
LoadResource
LockResource
SizeofResource
SetFilePointer
GetFileAttributesA
FindFirstFileA
FindClose
CreateFileA
GetFileSize
InterlockedDecrement
GetTickCount
InterlockedIncrement
GetCurrentDirectoryA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CompareStringW
CompareStringA
lstrlenA
lstrlenW
lstrcmpiA
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
ReadFile
TerminateProcess
GetProcAddress
FreeLibrary
LoadLibraryA
GetModuleFileNameA
WaitForSingleObject
CreateThread
CloseHandle
GetModuleHandleA

user32

DestroyMenu
GetSysColorBrush
SetWindowContextHelpId
MapDialogRect
RegisterClipboardFormatA
GetMessageA
TranslateMessage
ValidateRect
PostQuitMessage
wsprintfA
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
RegisterWindowMessageA
WinHelpA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
LoadIconA
PeekMessageA
MessageBoxA
GetScrollPos
SetForegroundWindow
ShowScrollBar
UpdateWindow
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
AdjustWindowRectEx
EqualRect
GetScrollInfo
SetScrollInfo
RegisterClassA
UnregisterClassA
GetDlgCtrlID
CallWindowProcA
SetWindowLongA
SetWindowPos
OffsetRect
IsIconic
GetWindowPlacement
GetWindow
EndPaint
BeginPaint
GetWindowDC
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetDoubleClickTime
WindowFromPoint
IsWindowVisible
ClientToScreen
IsRectEmpty
CopyRect
ReleaseCapture
ClipCursor
GetCursorPos
GetMessagePos
IsClipboardFormatAvailable
GetSystemMetrics
IsWindow
GetClassInfoA
DefWindowProcA
GrayStringA
DrawTextExA
TabbedTextOutA
GetFocus
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
SetCapture
GetCapture
ScreenToClient
PostMessageA
InvertRect
IntersectRect
GetKeyState
SetCursor
LoadCursorA
DrawEdge
FrameRect
FillRect
InflateRect
CharNextA
MessageBeep
PostThreadMessageA
MapWindowPoints
SetRect
SystemParametersInfoA
ReleaseDC
CharUpperA
GetParent
RedrawWindow
DrawTextA
GetSysColor
SendMessageA
KillTimer
SetTimer
PtInRect
TrackMouseEvent
LoadBitmapA
InvalidateRect
EnableWindow
GetDC
GetClientRect
GetWindowRect

gdi32

ExtSelectClipRgn
DeleteDC
CreateBitmap
CreateSolidBrush
CopyMetaFileA
CreateRectRgnIndirect
GetMapMode
GetTextColor
GetRgnBox
GetClipBox
SetMapMode
SetBkColor
RestoreDC
SaveDC
GetTextMetricsA
PatBlt
Escape
ExtTextOutA
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
MoveToEx
StretchBlt
SelectObject
CreateCompatibleDC
GetObjectA
TextOutA
RectVisible
PtVisible
GetBkColor
CreateCompatibleBitmap
GetCurrentObject
GetDeviceCaps
GetTextExtentPoint32A
CreateFontIndirectA
CreateDIBitmap
SetBkMode
SetTextColor
CreateFontA
CreatePen
GetStockObject
BitBlt
DeleteObject
LineTo

comdlg32

GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

ShellExecuteA

comctl32

ord17
ImageList_Draw
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_Destroy
ImageList_Create

shlwapi

PathRemoveBackslashA
PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathCanonicalizeA
PathIsRelativeA
PathIsUNCA

oledlg

ord8

ole32

OleGetClipboard
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
CLSIDFromString
CLSIDFromProgID
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleDuplicateData
ReleaseStgMedium
CoTaskMemAlloc
DoDragDrop
CoTaskMemFree
StgCreateDocfile
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoGetClassObject
CoRevokeClassObject
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
CreateStreamOnHGlobal

oleaut32

OleCreateFontIndirect
SysAllocStringByteLen
SysStringLen
SysFreeString
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
VarUdateFromDate
SystemTimeToVariantTime
VariantCopy
SafeArrayDestroy
SysAllocString

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

iphlpapi

GetNetworkParams
GetIfTable
GetAdaptersInfo
GetIpAddrTable

Sections

.text
Size: 396KB - Virtual size: 393KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 212KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3312ec7b99a85fb364204d1e8fcdae22

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

version

iphlpapi

Sections

.text Size: 396KB - Virtual size: 393KB

.rdata Size: 96KB - Virtual size: 94KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 212KB - Virtual size: 209KB

.text
Size: 396KB - Virtual size: 393KB

.rdata
Size: 96KB - Virtual size: 94KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 212KB - Virtual size: 209KB