e176057b2d6d958d4fd6eb23c3c412f4c6f6048d0fdfeb61993a31a44a88e830

Sharing

Copy URL Twitter E-mail

General

Target

e176057b2d6d958d4fd6eb23c3c412f4c6f6048d0fdfeb61993a31a44a88e830
Size

434KB
MD5

4c21cb75ec86ca2cb10b41eede494720
SHA1

79628ec3bf80fa6c31f77ed170bbe753dd7de090
SHA256

e176057b2d6d958d4fd6eb23c3c412f4c6f6048d0fdfeb61993a31a44a88e830
SHA512

5d7be0fe66202b632e0735bb26476d67aa80526ed93bb83e22b2caea8948dac0023c5c532e7f2dfd3f5ba1961da265c4a4bfa5ac705dcf5933412294180bf6f8
SSDEEP

6144:fvluk2p4QbzqCqlBUD2keH47AaqUir3z9xNl8Nbg2BcTNsKTcM0c8ZwuYA/WobdF:4ACql2urtl8Ns2eTqXH+VX4

Score

N/A

Malware Config

Signatures

Files

e176057b2d6d958d4fd6eb23c3c412f4c6f6048d0fdfeb61993a31a44a88e830
.exe windows x86

27ff26cf5d4f57d131158b859b4be504

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapSize
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
ExitProcess
IsDebuggerPresent
Sleep
GetCPInfo
GetACP
GetOEMCP
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
RaiseException
RtlUnwind
GetStartupInfoW
GetProcessHeap
HeapAlloc
HeapFree
GetVersionExW
SetErrorMode
LocalFileTimeToFileTime
FileTimeToLocalFileTime
CreateFileW
GetShortPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiW
GetStringTypeExW
DeleteFileW
MoveFileW
SystemTimeToFileTime
FileTimeToSystemTime
GetThreadLocale
GetCurrentDirectoryW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GlobalFlags
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetDiskFreeSpaceW
GetFullPathNameW
GetTempFileNameW
GetFileTime
SetFileTime
GetFileAttributesW
GetModuleHandleA
lstrlenA
CloseHandle
CopyFileW
GlobalSize
FormatMessageW
LocalFree
GlobalFree
InterlockedDecrement
InterlockedIncrement
GetCurrentThread
ConvertDefaultLocale
GetModuleFileNameW
EnumResourceLanguagesW
lstrcmpA
CompareStringA
InterlockedExchange
GlobalAlloc
FreeResource
GlobalFindAtomW
GlobalDeleteAtom
FreeLibrary
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GetVersion
GlobalLock
GlobalUnlock
lstrlenW
GetCurrentProcessId
GetProcAddress
GetModuleHandleW
GlobalGetAtomNameW
GlobalAddAtomW
GetLastError
SetLastError
GetProfileIntW
GetTickCount
GetCurrentThreadId
WideCharToMultiByte
MulDiv
MultiByteToWideChar
LoadLibraryW
GetLocaleInfoW
GetUserDefaultLCID
FindResourceW
LoadResource
LockResource
SetUnhandledExceptionFilter
SizeofResource

user32

DeleteMenu
DestroyIcon
UnregisterClassW
CharUpperW
GetTabbedTextExtentA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
SetParent
InSendMessage
ShowOwnedPopups
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
GetMenuStringW
AppendMenuW
InsertMenuW
RemoveMenu
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
RegisterClipboardFormatW
PostQuitMessage
SetWindowTextW
IsDialogMessageW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
SendDlgItemMessageW
SendDlgItemMessageA
IsChild
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
GetSysColorBrush
GetWindowTextW
GetForegroundWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
TrackPopupMenu
SetScrollRange
SetForegroundWindow
MessageBoxW
CreateWindowExW
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
DefWindowProcW
CallWindowProcW
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSystemMetrics
RegisterWindowMessageW
UnpackDDElParam
ReuseDDElParam
LoadMenuW
GetClassNameW
GetSysColor
WinHelpW
SetWindowPos
SetFocus
GetWindowThreadProcessId
GetActiveWindow
IsWindowEnabled
GetFocus
EqualRect
GetDlgItem
SetWindowLongW
GetKeyState
GetDlgCtrlID
GetMenu
LoadIconW
SetCursor
GetCapture
ReleaseCapture
LoadAcceleratorsW
SetActiveWindow
IsWindowVisible
InvalidateRect
UpdateWindow
IsIconic
SendMessageW
InsertMenuItemW
GetSubMenu
SystemParametersInfoW
GetMenuItemInfoW
LoadCursorW
RemovePropW
GetMenuItemID
GetMenuItemCount
CreatePopupMenu
GetClassInfoW
OffsetRect
GetLastActivePopup
BringWindowToTop
PostMessageW
SetMenu
GetDesktopWindow
GetWindow
ShowWindow
GetWindowLongW
IsWindow
TranslateAcceleratorW
ScreenToClient
GetClientRect
InflateRect
PtInRect
PostThreadMessageW
GetParent
IntersectRect
CopyRect
SetRectEmpty
CreateMenu
CopyAcceleratorTableW
PeekMessageW
DestroyMenu
ReleaseDC
GetDC
EnableWindow
MessageBeep
MapWindowPoints
UnregisterClassA

gdi32

SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
GetViewportExtEx
DeleteDC
CreatePatternBrush
GetStockObject
CreatePen
CreateSolidBrush
CreateMetaFileW
CloseMetaFile
SetWindowOrgEx
CreateFontIndirectW
GetMapMode
GetTextAlign
DeleteObject
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetPixel
BitBlt
DeleteMetaFile
CreateFontW
MoveToEx
LineTo
SetMapMode
SetBkMode
RestoreDC
SaveDC
CreateDCW
CopyMetaFileW
GetDeviceCaps
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
CreateCompatibleBitmap
GetTextMetricsW
GetTextExtentPoint32W
GetWindowExtEx

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
GetFileSecurityW
SetFileSecurityW
RegSetValueW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegCreateKeyW

shell32

DragQueryFileW
ExtractIconW
SHGetFileInfoW
DragFinish

shlwapi

PathFindFileNameW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CreateILockBytesOnHGlobal
WriteClassStm
OleSaveToStream
CreateStreamOnHGlobal
CreateGenericComposite
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
OleLockRunning
StgCreateDocfileOnILockBytes
CreateItemMoniker
GetRunningObjectTable
CreateFileMoniker
CoDisconnectObject
OleRegGetMiscStatus
OleRegEnumVerbs
OleDuplicateData
ReleaseStgMedium
CreateBindCtx
OleRegGetUserType
WriteClassStg
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CoRevokeClassObject
CoRegisterClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CoTaskMemAlloc
CoTaskMemFree
StringFromCLSID
CreateOleAdviseHolder
CreateDataAdviseHolder
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
OleIsRunning
OleRun

oleaut32

LoadTypeLi
SysAllocString
VariantCopy
SysStringLen
SysStringByteLen
SysFreeString
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen

Sections

.text
Size: 269KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

27ff26cf5d4f57d131158b859b4be504

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 269KB - Virtual size: 268KB

.rdata Size: 73KB - Virtual size: 73KB

.data Size: 11KB - Virtual size: 26KB

.rsrc Size: 74KB - Virtual size: 76KB

.text
Size: 269KB - Virtual size: 268KB

.rdata
Size: 73KB - Virtual size: 73KB

.data
Size: 11KB - Virtual size: 26KB

.rsrc
Size: 74KB - Virtual size: 76KB