603410ddc9c07b7fb40ac8a4be014fe7872e2b7af964d157d4d5d17ba180d2e1

Sharing

Copy URL Twitter E-mail

General

Target

603410ddc9c07b7fb40ac8a4be014fe7872e2b7af964d157d4d5d17ba180d2e1
Size

796KB
MD5

6cfaa3826864510f11df8047c3e46650
SHA1

a283a387585c69f4bd3d5984da3e75c2f9f6ae10
SHA256

603410ddc9c07b7fb40ac8a4be014fe7872e2b7af964d157d4d5d17ba180d2e1
SHA512

7d9b854bb152bbab46a089795dc6f109f905b6990cb4d04c050b9e78f3e78635f78b8f7d09768f74029f53a8fc49b01afc5862934aea93007a64ae6199eeee08
SSDEEP

24576:lAZY210iSATjKrzCY8LbqZR5hFdxTdWiPaGS:fniSiercqvdxTXaN

Score

N/A

Malware Config

Signatures

Files

603410ddc9c07b7fb40ac8a4be014fe7872e2b7af964d157d4d5d17ba180d2e1
.exe windows x86

1a1f5fa98e7ccacea12b934c1a43b3d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
GetLocaleInfoW
SetStdHandle
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
IsBadCodePtr
IsBadReadPtr
GetTimeZoneInformation
LCMapStringW
LCMapStringA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
QueryPerformanceFrequency
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
GetCurrentProcessId
QueryPerformanceCounter
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
HeapSize
HeapReAlloc
TerminateProcess
GetCommandLineA
GetStartupInfoA
GetSystemTimeAsFileTime
ExitProcess
RtlUnwind
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapFree
HeapAlloc
IsDBCSLeadByte
GetLocalTime
FreeConsole
AllocConsole
WriteConsoleA
SetErrorMode
GetOEMCP
GetCPInfo
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GlobalFlags
WritePrivateProfileStringA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
RaiseException
InterlockedIncrement
GlobalGetAtomNameA
GlobalFindAtomA
lstrcatA
lstrcmpW
FreeResource
GlobalAddAtomA
InterlockedDecrement
GetCurrentThread
GetCurrentThreadId
GlobalDeleteAtom
lstrcmpA
GetModuleFileNameA
GetModuleHandleA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
SetLastError
GlobalFree
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
GetProcAddress
CloseHandle
LoadLibraryA
FreeLibrary
Sleep
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
FindResourceA
LoadResource
LockResource
SizeofResource
GetTickCount
CompareStringW
CompareStringA
lstrlenA
lstrlenW
InterlockedExchange
lstrcmpiA
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetStdHandle

user32

GetClassNameA
SetPropA
GetPropA
RemovePropA
IsChild
SetActiveWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
GetScrollRange
SetScrollPos
UpdateWindow
GetMenu
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
GetClassInfoA
RegisterClassA
UnregisterClassA
DefWindowProcA
CallWindowProcA
OffsetRect
IntersectRect
IsIconic
EndPaint
GetClassInfoExA
CharUpperA
IsWindowUnicode
GetCursor
RegisterClassExA
LoadIconA
SetWindowPos
GetSystemMetrics
GetWindowRect
SystemParametersInfoA
GetWindowPlacement
CopyRect
PtInRect
GetWindow
SetWindowContextHelpId
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetClassLongA
GetCapture
WinHelpA
RegisterWindowMessageA
TabbedTextOutA
DrawTextA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
MessageBoxA
GetLastActivePopup
SetCursor
GetWindowTextLengthA
GetWindowTextA
DrawTextExA
GrayStringA
ClientToScreen
GetWindowDC
BeginPaint
LoadCursorA
SetForegroundWindow
GetForegroundWindow
DestroyWindow
IsWindow
CreateWindowExA
ShowWindow
PostMessageA
SendMessageA
LoadBitmapA
EnableWindow
FillRect
GetDC
ReleaseDC
InvalidateRect
ShowScrollBar
GetClientRect
BringWindowToTop
OpenIcon
SetTimer
KillTimer
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
PostQuitMessage
UnhookWindowsHookEx
GetDlgItem
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetDesktopWindow
CharNextA
GetSysColorBrush
wsprintfA
IsRectEmpty
SetRect
CopyAcceleratorTableA
InvalidateRgn
SetCapture
ReleaseCapture
GetNextDlgGroupItem
MessageBeep
DestroyMenu
RegisterClipboardFormatA
PostThreadMessageA
UnionRect
WindowFromPoint
MapDialogRect
SendDlgItemMessageA
IsDialogMessageA
GetWindowLongA
SetWindowTextA
GetDlgCtrlID
SetWindowLongA
MoveWindow
IsWindowEnabled
SetFocus
GetParent
GetFocus

gdi32

DeleteObject
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
CreateRectRgnIndirect
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
GetTextMetricsA
SetMapMode
RestoreDC
SaveDC
GetClipBox
CreateBitmap
GetDeviceCaps
CreateFontA
GetTextExtentPoint32A
GetObjectA
CreateSolidBrush
BitBlt
CreateCompatibleDC
SelectObject
TextOutA
SetDIBitsToDevice
GetGlyphOutlineA
CreateDIBSection
CreateFontIndirectA
SetTextColor
SetBkColor
SetBkMode
ExtSelectClipRgn
CreatePatternBrush
GetStockObject

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

ShellExecuteA

comctl32

FlatSB_EnableScrollBar
InitializeFlatSB
ord17

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
OleUninitialize
OleInitialize
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoCreateInstance
CoInitialize

oleaut32

VariantCopy
SafeArrayCreate
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
SafeArrayDestroy
SystemTimeToVariantTime
OleCreateFontIndirect
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
SysFreeString

ws2_32

WSACleanup
WSAStartup
bind
connect
sendto
recvfrom
closesocket
send
recv
ntohs
inet_addr
gethostbyname
htons
WSASetLastError
listen
WSAGetLastError
getpeername
accept
socket
select
WSAAsyncSelect
htonl

Sections

.text
Size: 552KB - Virtual size: 550KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a1f5fa98e7ccacea12b934c1a43b3d9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 552KB - Virtual size: 550KB

.rdata Size: 136KB - Virtual size: 134KB

.data Size: 20KB - Virtual size: 46KB

.rsrc Size: 84KB - Virtual size: 83KB

.text
Size: 552KB - Virtual size: 550KB

.rdata
Size: 136KB - Virtual size: 134KB

.data
Size: 20KB - Virtual size: 46KB

.rsrc
Size: 84KB - Virtual size: 83KB