9900bc558f97b7dd0a98cf2a875b186d9dacac4b35a3cd720d5496f4d1069227

Sharing

Copy URL Twitter E-mail

General

Target

9900bc558f97b7dd0a98cf2a875b186d9dacac4b35a3cd720d5496f4d1069227
Size

753KB
MD5

119acc9a5ba9363d40dba6cb8863ce91
SHA1

1a1dbf1665c15c70b008e682ffcdf9e254e06045
SHA256

9900bc558f97b7dd0a98cf2a875b186d9dacac4b35a3cd720d5496f4d1069227
SHA512

34727efb3e427b8533d227863b328f7263e06c2a36df9f36fd126d4960272f2c671fd0955687cd875e84c909b9498e50fd4bb14fea4d6312f2ec2563642e0f3c
SSDEEP

12288:ApzLJtMQm1OmAsc4PtRPV1iX4IZcY8Ok4sTsYB5nce1g3u0/lGFl3YvsiPdQ67:WLJtM71OmLRPVoXloFxTlvnceqlGz3Yj

Score

N/A

Malware Config

Signatures

Files

9900bc558f97b7dd0a98cf2a875b186d9dacac4b35a3cd720d5496f4d1069227
.exe windows x86

a7b781ce2186cfb958447091d9c25947

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsSetValue
LocalReAlloc
TlsFree
InterlockedIncrement
GlobalFlags
GetFileTime
SetErrorMode
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoW
RtlUnwind
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
ExitProcess
HeapReAlloc
SetStdHandle
GetFileType
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
TlsAlloc
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
GlobalHandle
GlobalReAlloc
TlsGetValue
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
UnlockFile
LockFile
FlushFileBuffers
GetThreadLocale
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
GetModuleHandleA
GlobalFindAtomW
CompareStringW
LoadLibraryA
GetVersionExA
WritePrivateProfileStringW
FreeResource
GetCurrentProcessId
GlobalAddAtomW
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
lstrcmpW
GetModuleHandleW
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
MulDiv
SetLastError
CopyFileW
GetExitCodeProcess
CreateThread
CreateProcessW
Sleep
GetTickCount
GetModuleFileNameW
GetFileAttributesW
GetLastError
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
SetFilePointer
SetEndOfFile
LoadLibraryW
FreeLibrary
CreateEventW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalFree
GetDiskFreeSpaceExW
GetPrivateProfileIntW
GetPrivateProfileStringW
TerminateProcess
GetTempPathW
CreateDirectoryW
WideCharToMultiByte
CreateFileW
GetFileSize
ReadFile
CloseHandle
WriteFile
FindFirstFileW
FindNextFileW
DeleteFileW
FindClose
RemoveDirectoryW
lstrlenW
InterlockedDecrement
GetVersionExW
GetModuleFileNameA
MultiByteToWideChar
GetProcAddress
lstrlenA
ResetEvent
SetEvent
GetCommandLineW
WaitForSingleObject
FindResourceW
LoadResource
LockResource
FreeEnvironmentStringsW
SizeofResource

user32

PostThreadMessageW
CharNextW
ReleaseCapture
SetCapture
GetSysColorBrush
CharUpperW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
TabbedTextOutW
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextW
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
RegisterClipboardFormatW
SetForegroundWindow
GetMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
ScreenToClient
EqualRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetSysColor
DestroyMenu
UnhookWindowsHookEx
GetWindow
SetWindowContextHelpId
MapDialogRect
DrawIcon
EnableMenuItem
UnregisterClassA
SendMessageW
GetSystemMenu
IsIconic
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
MessageBoxW
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
UnregisterClassW
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
IsRectEmpty
MapWindowPoints
CopyAcceleratorTableW
GetWindowRect
GetClientRect
EnableWindow
LoadIconW
GetSystemMetrics
SetCursor
SetWindowPos
LoadCursorW
UpdateWindow
InvalidateRect
IsWindow
PostMessageW
LoadImageW
DrawTextW
SetRect
CopyRect
PtInRect
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
PostQuitMessage
CheckMenuItem
ModifyMenuW
GetParent
GetFocus
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ValidateRect
GetCursorPos
PeekMessageW
GetKeyState
IsWindowVisible
GetActiveWindow

gdi32

ExtSelectClipRgn
DeleteDC
CreateRectRgnIndirect
GetMapMode
GetBkColor
GetRgnBox
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
CreateCompatibleDC
SetMapMode
SetBkMode
SetBkColor
GetClipBox
ExtTextOutW
CreateBitmap
GetBkMode
GetCurrentPositionEx
GetDeviceCaps
SaveDC
GetTextExtentPoint32W
RestoreDC
GetStockObject
CreateFontIndirectW
GetTextColor
SetTextColor
GetObjectW
DeleteObject
BitBlt
SelectObject

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegQueryValueW
RegEnumKeyW
RegCloseKey
RegOpenKeyW
RegQueryValueExW
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegEnumValueW

shell32

ShellExecuteW
SHGetSpecialFolderPathW
SHGetPathFromIDListW
SHBrowseForFolderW
CommandLineToArgvW

comctl32

ord17

shlwapi

PathFindFileNameW
UrlUnescapeW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CoLoadLibrary
CoFreeLibrary
CoSetProxyBlanket
CoCreateInstance
CoInitializeSecurity
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoInitialize

oleaut32

SysFreeString
SysStringLen
SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString

ws2_32

htons
htonl

wininet

InternetCanonicalizeUrlW
HttpOpenRequestW
InternetConnectW
HttpSendRequestW
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallbackW
InternetOpenW
InternetGetLastResponseInfoW
InternetCloseHandle
HttpQueryInfoW
HttpAddRequestHeadersW
InternetErrorDlg
InternetQueryDataAvailable
InternetCrackUrlW
InternetQueryOptionW

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

Sections

.text
Size: 364KB - Virtual size: 362KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a7b781ce2186cfb958447091d9c25947

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

wininet

version

Sections

.text Size: 364KB - Virtual size: 362KB

.rdata Size: 100KB - Virtual size: 99KB

.data Size: 16KB - Virtual size: 30KB

.rsrc Size: 264KB - Virtual size: 264KB

.text
Size: 364KB - Virtual size: 362KB

.rdata
Size: 100KB - Virtual size: 99KB

.data
Size: 16KB - Virtual size: 30KB

.rsrc
Size: 264KB - Virtual size: 264KB