8ae1a084743f61b5e82663f79cc2a6c8f9b992e65702db5dd9c09070ecd5b6c3

Sharing

Copy URL Twitter E-mail

General

Target

8ae1a084743f61b5e82663f79cc2a6c8f9b992e65702db5dd9c09070ecd5b6c3
Size

424KB
MD5

7b049c03b28e7c8b40d130dcb9f89686
SHA1

e13e4d7bc99fa29646218857b446c284a197fc98
SHA256

8ae1a084743f61b5e82663f79cc2a6c8f9b992e65702db5dd9c09070ecd5b6c3
SHA512

92c701210dac9e7b34a030c80215421cbd2a94ceaf704985c5b1858f5d9c1bcede47410f2d8e9800f0a497683127fccaf4791105b15de1ab1e4391f3a2733272
SSDEEP

6144:FKYX2CVJoDhbBLR/HBCHc8Q6ohEc21JJEc+6tNqvPi5R7fm0qaWsrrrrJJJJ:0YX2sYbBLR/IHc8Q6og3ptNqvPi/

Score

N/A

Malware Config

Signatures

Files

8ae1a084743f61b5e82663f79cc2a6c8f9b992e65702db5dd9c09070ecd5b6c3
.exe windows x86

c6ff075a58b5a730e827fb29e04296ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersInfo

kernel32

WritePrivateProfileStringA
GetCurrentDirectoryA
SizeofResource
RtlUnwind
HeapAlloc
RaiseException
ExitProcess
TerminateProcess
GetStartupInfoA
HeapFree
CreateThread
ExitThread
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
HeapSize
HeapReAlloc
SetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileAttributesA
CreateDirectoryA
CloseHandle
GetFileSize
CreateFileA
DeleteFileA
MultiByteToWideChar
GetCommandLineA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetTickCount
SetFilePointer
WriteFile
Sleep
ReadFile
lstrlenA
GlobalFree
GlobalAlloc
DeviceIoControl
GetVersionExA
GetModuleFileNameA
GetModuleHandleA
CreateMutexA
OpenMutexA
ReleaseMutex
MoveFileExA
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
FreeLibrary
SetLastError
LocalFree
FormatMessageA
lstrcmpA
FindClose
SetErrorMode
GetOEMCP
GetCPInfo
GlobalFlags
GetProcessVersion
GetFileTime
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
MulDiv
GetCurrentThread
GetProfileStringA
IsBadReadPtr
IsBadWritePtr
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalLock
GlobalUnlock
LocalAlloc
lstrcpynA
LoadLibraryA
FindResourceA
GetLastError
LoadResource
LockResource
GetVersion
lstrcatA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetProcAddress
CreateEventA
SuspendThread
GetCurrentThreadId
SetThreadPriority
ResumeThread
SetEvent
WaitForSingleObject
FindNextFileA
lstrcpyA
FindFirstFileA

user32

InvalidateRect
RegisterClipboardFormatA
PostThreadMessageA
PtInRect
GetClassNameA
InflateRect
DestroyMenu
MapDialogRect
SetWindowContextHelpId
EndDialog
CreateDialogIndirectParamA
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
GetDC
ClientToScreen
PostQuitMessage
CharUpperA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
GetDesktopWindow
LoadStringA
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
GetFocus
MessageBeep
IsWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
DefWindowProcA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
SetWindowPos
OffsetRect
IntersectRect
GetWindowPlacement
GetWindowRect
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
GetMessageA
TranslateMessage
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
SetActiveWindow
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
SetWindowsHookExA
WaitMessage
PeekMessageA
DispatchMessageA
SetCursor
DrawTextA
GetWindowDC
ReleaseDC
SystemParametersInfoA
LoadBitmapA
SetWindowRgn
CopyRect
LoadCursorA
GetSysColorBrush
SetRect
GetParent
EnableWindow
SetMenuDefaultItem
TrackPopupMenu
GetCursorPos
LoadMenuA
GetSubMenu
ReleaseCapture
PostMessageA
KillTimer
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
MessageBoxA
SetTimer
FindWindowA
GetTopWindow
SetForegroundWindow
RedrawWindow
LoadIconA
RegisterWindowMessageA
SetWindowLongA
CallWindowProcA
SendMessageA

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
GetMapMode
DPtoLP
GetTextColor
GetBkColor
LPtoDP
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
BitBlt
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
GetObjectA
CreateFontIndirectA
GetTextExtentPointA
CreateDIBitmap
CreateSolidBrush

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey

shell32

SHBrowseForFolderA
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteA
Shell_NotifyIconA

comctl32

_TrackMouseEvent
ord17
ImageList_Destroy

oledlg

ord8

ole32

CoCreateInstance
CoInitialize
CoUninitialize
CLSIDFromProgID
CLSIDFromString
CoTaskMemAlloc
CoTaskMemFree
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysStringLen
VariantTimeToSystemTime
SysAllocStringLen
SysFreeString
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
VariantClear

wsock32

WSASetLastError
accept
bind
htons
htonl
WSAStartup
gethostbyname
recv
send
WSAGetLastError
inet_ntoa
socket
recvfrom
sendto
connect
WSACleanup
ioctlsocket
setsockopt
closesocket
listen
WSAAsyncSelect

wininet

InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetSetOptionExA
InternetOpenA
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetGetLastResponseInfoA
HttpQueryInfoA
InternetQueryDataAvailable
InternetReadFile
InternetOpenUrlA
InternetCloseHandle

Sections

.text
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c6ff075a58b5a730e827fb29e04296ec

Headers

File Characteristics

Imports

iphlpapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

wininet

Sections

.text Size: 256KB - Virtual size: 255KB

.rdata Size: 56KB - Virtual size: 53KB

.data Size: 24KB - Virtual size: 39KB

.rsrc Size: 84KB - Virtual size: 80KB

.text
Size: 256KB - Virtual size: 255KB

.rdata
Size: 56KB - Virtual size: 53KB

.data
Size: 24KB - Virtual size: 39KB

.rsrc
Size: 84KB - Virtual size: 80KB