d7998e1c4cd6da568cbac9ef5fb9beabd3d08480ed9c08630cf826b5c57ad092

Sharing

Copy URL Twitter E-mail

General

Target

d7998e1c4cd6da568cbac9ef5fb9beabd3d08480ed9c08630cf826b5c57ad092
Size

736KB
MD5

6d99f448ffbf6a7ec33dfb9543224893
SHA1

f084047cbbab5bc0d6323a8457bc871f0135a700
SHA256

d7998e1c4cd6da568cbac9ef5fb9beabd3d08480ed9c08630cf826b5c57ad092
SHA512

4e650608da0cdfdb882af53eceda10d0bf909e4150e9c6da6b2d04477b61e4f2ab2904cfad67fb61b2e3f9e8fb65a921e598e66e1193645b5272ee14e67a6654
SSDEEP

12288:HGiS4P4Z5SYMAmwU96oU3Ga4+j9oDVjPQbgOENVruDmX:HGiS4P4Z5SYMA86oU3GatYMgOENVrf

Score

N/A

Malware Config

Signatures

Files

d7998e1c4cd6da568cbac9ef5fb9beabd3d08480ed9c08630cf826b5c57ad092
.exe windows x86

55501c5c86fc5e2b8e40cf3e6fdfc8f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetLocalTime
GetStartupInfoA
TerminateProcess
GetACP
ExitThread
SetStdHandle
GetFileType
HeapReAlloc
CreateThread
HeapSize
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
HeapDestroy
HeapAlloc
InitializeCriticalSection
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
LCMapStringA
LCMapStringW
RaiseException
ExitProcess
IsBadReadPtr
IsBadCodePtr
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetTimeZoneInformation
FreeLibrary
LoadLibraryA
GetProcAddress
GetTickCount
SetLastError
SetPriorityClass
CloseHandle
CreateEventA
GetCurrentProcess
SuspendThread
ResumeThread
WaitForSingleObject
SetEvent
GetLastError
GetModuleFileNameA
GetSystemTime
Sleep
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InterlockedExchange
GetProfileStringA
HeapFree
RtlUnwind
SetErrorMode
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
SizeofResource
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DuplicateHandle
CreateFileA
FindFirstFileA
FindClose
GetFileTime
GetFileSize
GetFileAttributesA
LocalAlloc
lstrcpynA
MulDiv
SetThreadPriority
GlobalAlloc
GetCurrentThread
FormatMessageA
LocalFree
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
FileTimeToLocalFileTime
FileTimeToSystemTime
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
lstrcmpA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetVersionExA
UnhandledExceptionFilter

user32

InvalidateRect
RegisterClipboardFormatA
PostThreadMessageA
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenuItemID
InflateRect
SetRect
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetMenuState
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
MessageBeep
GetNextDlgGroupItem
IsWindowEnabled
SetTimer
KillTimer
WaitMessage
PostMessageA
IsWindow
RedrawWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetMenuItemCount
GetSubMenu
GetMenu
CopyAcceleratorTableA
GetSystemMenu
AppendMenuA
SendMessageA
LoadIconA
PostQuitMessage
wsprintfA
EnableWindow
PeekMessageA
TranslateMessage
DispatchMessageA
GetLastActivePopup
GetSysColorBrush
LoadCursorA
PtInRect
GetClassNameA
CharUpperA
GetDesktopWindow
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
DestroyMenu
LoadStringA
MapDialogRect
SetWindowContextHelpId
GetMessageA
ValidateRect
GetCursorPos
SetCursor
wvsprintfA
GetMenuCheckMarkDimensions
LoadBitmapA
GetWindowTextLengthA
CharNextA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode

gdi32

SetTextColor
GetObjectA
CreateBitmap
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
CreateDIBitmap
CreateCompatibleDC
BitBlt
GetTextExtentPointA
SetBkColor
GetClipBox

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

comctl32

ord17

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysFreeString
SysStringLen

wsock32

gethostbyaddr
accept
WSAAsyncSelect
ntohs
select
recvfrom
sendto
WSASetLastError
bind
ioctlsocket
closesocket
gethostname
inet_addr
recv
WSAStartup
WSAGetLastError
WSACleanup
htonl
htons
socket
gethostbyname
send
connect
inet_ntoa

rpcrt4

RpcStringFreeA
UuidCreate
UuidToStringA

Sections

.text
Size: 544KB - Virtual size: 541KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55501c5c86fc5e2b8e40cf3e6fdfc8f8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

rpcrt4

Sections

.text Size: 544KB - Virtual size: 541KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 44KB - Virtual size: 127KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 544KB - Virtual size: 541KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 44KB - Virtual size: 127KB

.rsrc
Size: 40KB - Virtual size: 39KB