f97db4b14dd4b61c7690b9315e87b83a6020d8777682d3d7a61c1d8f9647c20e

Sharing

Copy URL Twitter E-mail

General

Target

f97db4b14dd4b61c7690b9315e87b83a6020d8777682d3d7a61c1d8f9647c20e
Size

2.7MB
MD5

606dfeda94d611d7e55103bb8f5ed684
SHA1

2b097912511bba5b8e5c3cf5dfcbff9095068d8e
SHA256

f97db4b14dd4b61c7690b9315e87b83a6020d8777682d3d7a61c1d8f9647c20e
SHA512

049488775c0385ba9e4146f3944c9e05e460bdfaaa107d0c1c5962af49fb13da37d2ca46ac697df6b256cbab62403cf75dc0e73ae1a5e85a529018a09faf0e1c
SSDEEP

24576:9bxJAOc0hmDKVSWkL/+b3GMTc7rzgNfcRiYwZ8TgjggRgqReIsYMVRWdy74vQL6x:NDhbfc7rSoETRCPE44vQ+qmHb/fzZsQ

Score

N/A

Malware Config

Signatures

Files

f97db4b14dd4b61c7690b9315e87b83a6020d8777682d3d7a61c1d8f9647c20e
.exe windows x86

02ae9fafe59368e5d736eebd5a2f0621

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteKeyW

winmm

waveOutClose
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
waveOutReset
waveOutOpen
waveOutGetDevCapsW
mixerGetDevCapsW
mixerOpen
mixerGetNumDevs
mixerClose
mixerGetLineControlsW
mixerGetLineInfoW
mixerGetControlDetailsW
mixerSetControlDetails

kernel32

FreeEnvironmentStringsA
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
GetModuleFileNameA
LCMapStringA
VirtualAlloc
IsBadWritePtr
GetCurrentDirectoryA
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
SetStdHandle
GetDriveTypeA
CompareStringA
GetACP
GetOEMCP
SetEnvironmentVariableA
UnhandledExceptionFilter
GetSystemDirectoryA
InterlockedExchange
QueryPerformanceCounter
FindResourceA
GlobalAddAtomA
GetProfileStringA
ExitProcess
FileTimeToSystemTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
FileTimeToLocalFileTime
Sleep
WaitForSingleObject
FindClose
ReadFile
SetLastError
CloseHandle
SetEvent
CreateThread
GetTickCount
ResumeThread
SuspendThread
LocalFree
LocalAlloc
GlobalUnlock
GlobalLock
GlobalFree
DeviceIoControl
GetLocalTime
HeapSize
HeapReAlloc
RaiseException
HeapFree
TerminateProcess
RtlUnwind
GetSystemTimeAsFileTime
HeapAlloc
GetSystemTime
GetTimeZoneInformation
SetErrorMode
GlobalSize
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
GetFileSize
ResetEvent
FreeLibrary
SetFileTime
GetLastError
GetLogicalDrives
TlsFree
TlsAlloc
GlobalFlags
lstrcmpA
lstrcmpiA
GetFileTime
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
GetModuleHandleA
GlobalDeleteAtom
lstrlenA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
GetSystemDefaultLangID
SetEndOfFile
DeleteCriticalSection
SetThreadExecutionState
CreateEventA
GetOverlappedResult
GetCurrentThread
GetExitCodeProcess
WriteFile
SetFilePointer
MapViewOfFile
UnmapViewOfFile
MulDiv
GetCurrentProcessId
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
SetThreadPriority
GlobalHandle
LoadResource
SizeofResource
LockResource
GlobalAlloc
GetCurrentThreadId
GetCurrentProcess
GetVersion
DefineDosDeviceW
GetWindowsDirectoryA

user32

GetDCEx
ValidateRect
ShowOwnedPopups
PostQuitMessage
SetRect
IsRectEmpty
SetParent
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetRectEmpty
TranslateMessage
DestroyCursor
SetCursorPos
DestroyMenu
EndPaint
BeginPaint
MapDialogRect
GetAsyncKeyState
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
ShowWindow
MoveWindow
CheckRadioButton
SendDlgItemMessageA
MapWindowPoints
AdjustWindowRectEx
DeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetMenu
TrackPopupMenu
GetMessageTime
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowPos
IntersectRect
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
DestroyWindow
IsWindowEnabled
MessageBoxA
FrameRect
DrawEdge
DrawFocusRect
GetWindowDC
CreateIconIndirect
IsWindow
SetCapture
GetWindowTextLengthA
HideCaret
GetDlgCtrlID
EnumChildWindows
SetMenuDefaultItem
GetCursorPos
IsWindowVisible
FillRect
LockWindowUpdate
SetMenu
CheckMenuRadioItem
GetSysColorBrush
GetCapture
ReleaseCapture
PtInRect
GetMessagePos
UpdateWindow
IsZoomed
GetIconInfo
DestroyIcon
WindowFromPoint
SetClipboardData
EmptyClipboard
GetMenuItemCount
ScreenToClient
GetDesktopWindow
TrackPopupMenuEx
UnhookWindowsHookEx
CallNextHookEx
GetDlgItem
SetFocus
GetKeyState
GetFocus
EqualRect
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
SetWindowsHookExA
SendMessageA
GetClassNameA
InvalidateRect
SetCursor
KillTimer
SetTimer
GetParent
SetForegroundWindow
GetSystemMetrics
GetWindowRect
ClientToScreen
GetClientRect
GetSubMenu
CheckMenuItem
EnableMenuItem
CreatePopupMenu
RemoveMenu
GetMenuItemID
BroadcastSystemMessage
CloseClipboard
OpenClipboard
OffsetRect
CopyRect
GetSysColor
InflateRect
RedrawWindow
ReleaseDC
GetDC
BeginDeferWindowPos
EndDeferWindowPos
IsDlgButtonChecked

gdi32

SetTextColor
SetBkColor
StretchBlt
GetDeviceCaps
SetDIBits
GetClipBox
CreateRectRgnIndirect
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
Escape
CreatePatternBrush
SetRectRgn
CombineRgn
StretchDIBits
LPtoDP
RectVisible
PtVisible
CreateRectRgn
GetTextColor
Ellipse
DeleteDC
CreateCompatibleBitmap
RoundRect
GetDIBits
CreatePen
DeleteObject
CreateSolidBrush
Rectangle
GetStockObject
SelectObject
CreateBitmap
BitBlt
SetStretchBltMode
SetPixel
GetPixel
ExtTextOutA
GetTextExtentPointA
CreateCompatibleDC
CreateDIBSection
CreateDIBitmap
PatBlt

winspool.drv

ClosePrinter

advapi32

RegCloseKey
OpenProcessToken
RegQueryValueExA
RegOpenKeyExA
GetTokenInformation

shell32

SHGetDesktopFolder
DragAcceptFiles
SHGetSpecialFolderPathW
SHGetMalloc
DragFinish

comctl32

ord17
_TrackMouseEvent
ImageList_SetBkColor
ImageList_AddMasked
ImageList_Destroy
ImageList_Create
ImageList_ReplaceIcon
PropertySheetW
DestroyPropertySheetPage
ImageList_Add
CreatePropertySheetPageW

ole32

RevokeDragDrop
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
OleDuplicateData
CoTaskMemAlloc
CoLockObjectExternal
CoRegisterMessageFilter
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
DoDragDrop
OleGetClipboard
CoTaskMemFree
CreateStreamOnHGlobal
ReleaseStgMedium
CoInitialize
CoCreateInstance
CoUninitialize
RegisterDragDrop

olepro32

ord251

wininet

InternetConnectW
InternetOpenW
InternetCloseHandle
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
HttpQueryInfoW
InternetReadFile
InternetAttemptConnect

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 828KB - Virtual size: 826KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 440KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 344KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

02ae9fafe59368e5d736eebd5a2f0621

Headers

File Characteristics

Imports

shlwapi

winmm

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

ole32

olepro32

wininet

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 828KB - Virtual size: 826KB

.data Size: 440KB - Virtual size: 1.1MB

.rsrc Size: 344KB - Virtual size: 344KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 828KB - Virtual size: 826KB

.data
Size: 440KB - Virtual size: 1.1MB

.rsrc
Size: 344KB - Virtual size: 344KB