c2771ecd86e0fb8920b25de3c156aed0ef6640e53d2706eb750d2900e663bee5

Sharing

Copy URL Twitter E-mail

General

Target

c2771ecd86e0fb8920b25de3c156aed0ef6640e53d2706eb750d2900e663bee5
Size

895KB
MD5

1605d05460f99d1ae030151c5a7d48d4
SHA1

05e5336f85047ce4edd06a2afc121e8643c1cb52
SHA256

c2771ecd86e0fb8920b25de3c156aed0ef6640e53d2706eb750d2900e663bee5
SHA512

f3ac617d8ad1fe76992854460e20468bc79fe251a7046b81f758ade31f948e331ddad735632c879338dc5cdb010a8a474272c7385b70cc92db661fcaa8a7ee5b
SSDEEP

12288:zaniMA8j0WQbsfH9KjSg0G7imKQ/ALw7hW1rNp2bLHXxdkivYI4OYORuJLq+n3VP:2niyffH9BgnM9wI12naItz23clgIk/

Score

N/A

Malware Config

Signatures

Files

c2771ecd86e0fb8920b25de3c156aed0ef6640e53d2706eb750d2900e663bee5
.exe windows x86

ce7f33e2202eb023a8a4298e795dfa80

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

FindWindowExW
UpdateWindow
RegisterClipboardFormatA
DrawTextExA
ScreenToClient
WaitMessage
IsClipboardFormatAvailable
OpenClipboard
DrawTextA
GetKeyNameTextA
GetMessagePos
MapDialogRect
IsDlgButtonChecked
GetClassLongA
SetDlgItemTextW
CallWindowProcA
AttachThreadInput
GetWindowLongW
wsprintfA
RedrawWindow
BeginDeferWindowPos
GrayStringA
GetFocus
ReleaseDC
SetClipboardData
GetWindow
SetDlgItemTextA
DeferWindowPos
LockWindowUpdate
InvalidateRgn
LoadBitmapA
DestroyCursor
GetSysColor
GetCapture
GetNextDlgGroupItem
ShowScrollBar
HideCaret
RegisterHotKey
SystemParametersInfoA
DrawFrameControl
SetCursorPos
GetWindowThreadProcessId
GetMessageW
SetWindowTextA
DestroyIcon
PostMessageA
WindowFromDC
EndDialog
SetWindowPlacement
LoadCursorA
InvalidateRect
MessageBoxW
GetClassNameW
BringWindowToTop
GetSubMenu
GetSystemMenu
GetDlgItem
AppendMenuW
MessageBoxA
CharUpperA
ModifyMenuA
LoadAcceleratorsW
IsZoomed
SendMessageTimeoutW
CheckMenuItem
IsIconic
SetScrollPos
PostThreadMessageA
GetMenuCheckMarkDimensions
CopyRect
SetForegroundWindow
CharNextW
GetMenuStringA
CreateDialogIndirectParamA
EnumWindows
CreatePopupMenu
GetClassInfoExW
InsertMenuA
DestroyAcceleratorTable
SetMenuItemBitmaps
KillTimer
ScrollWindow
GetDlgItemInt
DeleteMenu
MsgWaitForMultipleObjects
UnpackDDElParam
ShowWindow
SetPropW
SystemParametersInfoW
CopyAcceleratorTableA
BeginPaint
SetWindowsHookExA
GetMenuItemCount
UnhookWindowsHookEx
DefWindowProcA
DestroyWindow
GetMenuState
SetMenuItemInfoA
SetPropA
GetWindowDC
PostThreadMessageW
TabbedTextOutA
GetMessageA
EnableMenuItem
GetDCEx
CheckRadioButton
SetWindowPos
LoadAcceleratorsA
SetTimer
CopyIcon
SetCaretPos
GetMenu
TranslateMessage
SetClipboardViewer
GetLastActivePopup
IsMenu
OffsetRect
GetAsyncKeyState
GetKeyNameTextW
GetWindowRgn
TranslateAcceleratorA
GetWindowTextLengthA
GetMenuDefaultItem
SetWindowLongW
SetWindowLongA
EqualRect
GetTopWindow
GetWindowTextA
SetScrollInfo
SendMessageA
CreateMenu
RegisterClassA
GetWindowRect
SetWindowRgn
CheckDlgButton
SetCapture
IsWindowUnicode
DrawIcon
DdeFreeDataHandle
SetFocus
DefDlgProcA
DrawTextExW
RegisterWindowMessageA
GetClipboardViewer
EmptyClipboard
GetMenuItemInfoA
DrawEdge
GetWindowTextLengthW
ReleaseCapture
GetOpenClipboardWindow
WinHelpA
PostQuitMessage
IntersectRect
DragDetect
IsWindow
CloseClipboard
SendDlgItemMessageA
LoadIconA
GetSystemMetrics
UnregisterClassA
SetRectEmpty
RegisterClassExA
GetKeyState
SetCursor
IsChild
TrackPopupMenu
GetMenuItemID
DefWindowProcW
ChangeClipboardChain
EndPaint
ClientToScreen
VkKeyScanA
LoadMenuA
DefFrameProcA
ValidateRect
FindWindowA
CharUpperW
DrawMenuBar
DestroyMenu
GetClassInfoA
LoadStringA
SetScrollRange
GetClientRect
CreateAcceleratorTableA
SetParent
SetDlgItemInt
DrawFocusRect
SetActiveWindow
CallNextHookEx
SendDlgItemMessageW
GetActiveWindow
CharNextA
SetWindowsHookExW
GetNextDlgTabItem
EnumChildWindows
LoadImageA
MapWindowPoints
EnableScrollBar
GetDesktopWindow
PeekMessageW
GetMessageTime
SendMessageW
GetClassInfoExA
CreateWindowExA
EndDeferWindowPos
CharLowerBuffA
GetDlgCtrlID
ChildWindowFromPoint
WindowFromPoint
DispatchMessageA
GetClassLongW
IsWindowVisible
GetDialogBaseUnits
IsRectEmpty
GetWindowLongA
GetCursorPos
EnableWindow
PtInRect
DrawStateW
SetRect
GetDC
UnionRect
SetClassLongA
SetWindowContextHelpId
GetSysColorBrush
DrawTextW
AdjustWindowRectEx
RemoveMenu
GetWindowPlacement
DdeGetData
InsertMenuW
RemovePropA
MoveWindow
GetPropA
MessageBeep
FillRect
InflateRect
ExcludeUpdateRgn
PeekMessageA
GetParent
IsWindowEnabled
FrameRect
AppendMenuA
GetForegroundWindow

advapi32

AccessCheck
RegConnectRegistryA
RegEnumValueW
OpenSCManagerA
RegCreateKeyW
RegQueryValueExW
SetSecurityDescriptorOwner
RegCreateKeyExA
RegEnumValueA
RegEnumKeyExA
GetFileSecurityA
GetSidSubAuthorityCount
OpenThreadToken
RegQueryInfoKeyW
GetLengthSid
ImpersonateSelf
RegDeleteValueA
RegEnumKeyA
RegQueryValueExA
GetSecurityInfo
SetSecurityDescriptorGroup
RegOpenKeyW
SetFileSecurityA
RegQueryInfoKeyA
QueryServiceStatus
RegDeleteKeyA
RegCloseKey
RegOpenKeyExW
AdjustTokenPrivileges
RegCreateKeyExW
QueryServiceConfigA
InitializeAcl
RegisterEventSourceA
OpenProcessToken
RegOpenKeyA
RegSetValueExA
MapGenericMask
LookupPrivilegeValueW
SetSecurityDescriptorDacl
RegQueryValueA
LookupPrivilegeValueA
AllocateAndInitializeSid
DeleteService
FreeSid
AddAccessAllowedAce
InitializeSecurityDescriptor
RegEnumKeyExW
InitiateSystemShutdownA
RegOpenKeyExA
GetTokenInformation
RevertToSelf
RegSetValueA
CreateProcessAsUserA
RegCreateKeyA
CloseServiceHandle
StartServiceA
EqualSid
RegSetValueExW
RegDeleteValueW
IsValidSecurityDescriptor
GetAce
ChangeServiceConfigA

comctl32

InitCommonControlsEx
ImageList_Add
ImageList_DragShowNolock
CreateToolbarEx
ord17
ImageList_GetDragImage
ImageList_GetBkColor
ImageList_ReplaceIcon
CreateStatusWindowW
ImageList_AddMasked
ImageList_GetImageCount
ImageList_DrawEx
ImageList_DragEnter
ImageList_GetImageInfo
ImageList_Merge
_TrackMouseEvent
ImageList_SetDragCursorImage
ImageList_Destroy
CreatePropertySheetPageA
ImageList_EndDrag
ImageList_SetOverlayImage
ImageList_Create
ImageList_Draw
ImageList_Read
ImageList_Replace
ImageList_GetIconSize
ImageList_DragMove
ImageList_SetBkColor
ImageList_LoadImageA
ImageList_GetIcon
ImageList_Write
PropertySheetA
CreatePropertySheetPageW

oleaut32

LoadTypeLi

ole32

CreateDataAdviseHolder
OleCreateLinkFromData
OleSetMenuDescriptor
CreateGenericComposite
CLSIDFromProgID
StgCreateDocfile
CoLockObjectExternal
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
WriteClassStm
RegisterDragDrop
StringFromCLSID
CoGetMalloc
OleLoad
CoFreeUnusedLibraries
GetClassFile
OleGetClipboard
SetConvertStg
OleRegGetMiscStatus
CoDisconnectObject
OleCreateMenuDescriptor
OleFlushClipboard
CLSIDFromString
OleIsCurrentClipboard
CoInitialize
StgCreateDocfileOnILockBytes
OleRun
OleSetClipboard
StgOpenStorage
ProgIDFromCLSID
OleSave
StgIsStorageILockBytes
CoGetInterfaceAndReleaseStream
OleGetIconOfClass
CreateItemMoniker
StringFromGUID2
OleCreateLinkToFile
CoUninitialize
DoDragDrop
CreateBindCtx
OleCreateFromData
WriteClassStg
OleCreateStaticFromData
OleRegGetUserType
StgIsStorageFile
CreateFileMoniker
OleUninitialize
OleSaveToStream
CoCreateInstance
CreateStreamOnHGlobal
OleTranslateAccelerator
OleDuplicateData
ReadFmtUserTypeStg
OleCreateFromFile
CoInitializeEx
CoTreatAsClass
RevokeDragDrop
IsAccelerator
GetHGlobalFromILockBytes
OleIsRunning
OleInitialize
CoGetClassObject
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
WriteFmtUserTypeStg
OleDestroyMenuDescriptor
OleRegEnumVerbs
ReadClassStg
OleCreate
ReleaseStgMedium
OleLockRunning

version

GetFileVersionInfoW
VerQueryValueA
VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoA
GetFileVersionInfoSizeW

shell32

FindExecutableA
Shell_NotifyIconW
SHAppBarMessage
SHGetPathFromIDListA
DragFinish
SHGetFileInfoW
DragQueryFileW
SHBrowseForFolderA
ShellExecuteA
ShellExecuteExW
ord155
ShellExecuteW
SHBrowseForFolderW
DragAcceptFiles
SHGetFileInfoA
SHGetDesktopFolder
SHGetPathFromIDListW
SHGetMalloc
SHGetSpecialFolderLocation

kernel32

GetTimeFormatA
SetFilePointer
GetModuleFileNameA
CreateThread
CompareStringA
WaitForMultipleObjects
ReadFile
FindResourceA
WriteFile
SetLastError
SuspendThread
GlobalFindAtomA
FreeLibrary
FindResourceExW
FindResourceExA
LCMapStringA
ConvertDefaultLocale
HeapAlloc
DeleteCriticalSection
CloseHandle
GetModuleHandleA
LocalFileTimeToFileTime
GlobalUnlock
GetTempPathA
SetFileAttributesA
QueryPerformanceFrequency
GetConsoleMode
HeapReAlloc
GlobalGetAtomNameA
LeaveCriticalSection
GetLocalTime
GlobalDeleteAtom
FileTimeToSystemTime
GetFileTime
lstrcatA
CreateMutexA
GetCurrentDirectoryA
InterlockedIncrement
GlobalFree
TlsSetValue
GetTimeZoneInformation
lstrlenW
IsDebuggerPresent
InterlockedExchange
lstrcmpiA
OutputDebugStringA
OutputDebugStringW
LocalFree
FindFirstFileA
GetThreadLocale
MoveFileW
GetSystemTimeAsFileTime
FormatMessageA
GetFileInformationByHandle
GetSystemInfo
MulDiv
IsBadWritePtr
WideCharToMultiByte
GetProcessHeap
GetDateFormatW
EnumResourceLanguagesA
GetComputerNameW
FileTimeToLocalFileTime
TlsGetValue
IsBadReadPtr
GlobalFlags
GlobalReAlloc
FreeEnvironmentStringsA
ResetEvent
EnumSystemLocalesA
WritePrivateProfileStringW
GetEnvironmentStrings
GetExitCodeProcess
GetStringTypeW
UnhandledExceptionFilter
WriteConsoleA
IsBadStringPtrA
GetExitCodeThread
SetThreadPriority
WaitForSingleObject
GetProfileIntW
SetHandleCount
FindClose
GlobalHandle
GetFileAttributesA
InterlockedDecrement
GetWindowsDirectoryA
GetVersionExA
GetDriveTypeA
CreateEventA
LoadResource
LocalAlloc
GlobalAddAtomA
OpenProcess
LockResource
ExitProcess
OpenMutexA
GlobalLock
GetLastError
LCMapStringW
lstrcpyA
GetCurrentThread
LocalReAlloc
GetTempFileNameA
GetStartupInfoW
GetShortPathNameA
GetEnvironmentStringsW
SetEvent
UnlockFile
MapViewOfFile
HeapSize
PeekNamedPipe
GetCPInfo
lstrcmpA
SetEnvironmentVariableA
lstrcpyW
GetSystemTime
SetEndOfFile
VirtualAlloc
GetModuleFileNameW
TlsFree
HeapFree
GlobalMemoryStatus
QueryPerformanceCounter
HeapDestroy
RtlUnwind
SetStdHandle
GetTempFileNameW
TerminateProcess
GetDateFormatA
OpenFile
GetCurrentThreadId
FatalAppExitA
GetDiskFreeSpaceA
GetFullPathNameA
GetConsoleOutputCP
GetLocaleInfoA
GlobalAlloc
RaiseException
LocalLock
GetACP
TlsAlloc
GetStartupInfoA
SystemTimeToFileTime
TerminateThread
GetSystemDirectoryA
GetCommandLineA
GetFileSize
SetFileTime
DuplicateHandle
VirtualProtect
SetUnhandledExceptionFilter
DebugBreak
GetCommandLineW
GetTickCount
MoveFileA
lstrcmpiW
VirtualFree
SetConsoleCtrlHandler
GetStringTypeExA
GetOEMCP
GlobalAddAtomW
GetStringTypeA
lstrcpynA
WriteConsoleW
SetErrorMode
RemoveDirectoryW
FindResourceW
GetCurrentProcess
GetVolumeInformationW
WriteProcessMemory
CreateFileW
GetConsoleCP
WritePrivateProfileStringA
IsValidCodePage
lstrcpynW
GetProcAddress
LoadLibraryA
FindNextFileW
FreeEnvironmentStringsW
IsValidLocale
VirtualQuery
GetLocaleInfoW
CompareStringW
MultiByteToWideChar
GetStdHandle
FlushFileBuffers
HeapValidate
InitializeCriticalSection
LockFile
EnterCriticalSection
ReleaseMutex
CreateFileA
GetCurrentProcessId
GetFileType
GetPrivateProfileIntA
FormatMessageW
lstrlenA
SizeofResource
LoadLibraryW
GetUserDefaultLCID
IsBadCodePtr
HeapCreate

Sections

.text
Size: 222KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 496KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce7f33e2202eb023a8a4298e795dfa80

Headers

File Characteristics

Imports

user32

advapi32

comctl32

oleaut32

ole32

version

shell32

kernel32

Sections

.text Size: 222KB - Virtual size: 222KB

.rdata Size: 496KB - Virtual size: 496KB

.data Size: 136KB - Virtual size: 135KB

.rsrc Size: 39KB - Virtual size: 38KB

.text
Size: 222KB - Virtual size: 222KB

.rdata
Size: 496KB - Virtual size: 496KB

.data
Size: 136KB - Virtual size: 135KB

.rsrc
Size: 39KB - Virtual size: 38KB