30c7ae860b92cd0e1fabb2aae02279973ab73426fdc7fdf4eb8f9f31b2cc8830

Sharing

Copy URL Twitter E-mail

General

Target

30c7ae860b92cd0e1fabb2aae02279973ab73426fdc7fdf4eb8f9f31b2cc8830
Size

700KB
MD5

473cc2a98461b4ba2683038d2f4b85fa
SHA1

00b5618c69340bfd83c4b32aa79a8c2f68909aff
SHA256

30c7ae860b92cd0e1fabb2aae02279973ab73426fdc7fdf4eb8f9f31b2cc8830
SHA512

6bd36b8b77a6e5216833128f964e2d01b3a94325b258a00a67444e0b1b7c319eec030aafba709035f7c837bb5a0c6dce1b89ea1b6ec6ab30004539c9eace02fc
SSDEEP

12288:khwu7GS+SeSvK3a1ztbfad1RRaT1IPg1BKTDreyx429AFlRQuehiX2I0X+CEtsf2:CwIGYMq1llT1IPeqfeuA3R/Z0X+CEtse

Score

N/A

Malware Config

Signatures

Files

30c7ae860b92cd0e1fabb2aae02279973ab73426fdc7fdf4eb8f9f31b2cc8830
.exe windows x86

3085a5dfd847b4d275fee637099e9827

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderLocation
DragFinish
SHGetPathFromIDListA
SHGetDesktopFolder

user32

OffsetRect
ReleaseCapture
RegisterClassExA
MessageBoxA
ReleaseDC
DestroyWindow
DefWindowProcA
GetPropA
LoadCursorA
ShowWindow
RegisterClassA
LoadStringA
DestroyIcon
CreateWindowExA
LoadIconA
SetPropA
GetDesktopWindow
ScreenToClient

gdi32

SetPaletteEntries
GetTextExtentPoint32A
CreateICA
PatBlt
StrokeAndFillPath
GetStretchBltMode
GetCharABCWidthsA
CreateRectRgn
CreatePenIndirect
PolyPolygon
SetMapMode
RectInRegion
PtVisible
StretchDIBits
SelectClipPath
Ellipse
GetWindowExtEx
GetStockObject
GetBkMode
CloseFigure
GetTextMetricsA
SetBoundsRect
SetPixelV
SetViewportExtEx
UpdateColors
ExtFloodFill
SetAbortProc
GetCurrentPositionEx
OffsetViewportOrgEx
FlattenPath
SetROP2
ScaleViewportExtEx
ExtCreateRegion
CreateDCA
SetBitmapBits
OffsetWindowOrgEx
CloseMetaFile
PolyBezierTo
PtInRegion
CreateHatchBrush
CreateEllipticRgn
StretchBlt
GetNearestPaletteIndex
GetDCOrgEx
GetObjectType
GetPixel
ExcludeClipRect
GetCharWidthA
SetWindowExtEx
SetStretchBltMode
GetArcDirection
GetDeviceCaps
StrokePath
CombineRgn
GetBitmapBits
DeleteDC
DeleteObject
CreateEllipticRgnIndirect
GetROP2
CreateRoundRectRgn
MaskBlt
GetGlyphOutlineA
MoveToEx
CreateBrushIndirect
PlayMetaFile
SetArcDirection
SetTextCharacterExtra
SetTextJustification
CreatePolygonRgn
CreateFontIndirectA
ResetDCA
GetObjectA
StartDocA
CreateFontA
PolylineTo
SetBkColor
GetPaletteEntries
ScaleWindowExtEx
CreateMetaFileA
Rectangle
PolyBezier
GetPolyFillMode
GetTextFaceA
SelectPalette
GetPath
CopyMetaFileA

shlwapi

PathCompactPathW
PathRemoveBackslashW
PathRelativePathToW
PathIsDirectoryW
StrFormatByteSizeW
PathAddBackslashW
PathCanonicalizeW
PathIsFileSpecW
PathFindFileNameW
PathCombineW
StrStrIW
PathFileExistsW
PathIsRootW

ole32

StgCreateDocfile
OleUninitialize
OleIsCurrentClipboard
OleCreateStaticFromData
OleDuplicateData
CoFreeUnusedLibraries
StringFromGUID2
CoRegisterClassObject
StgOpenStorageOnILockBytes
CoRegisterMessageFilter

kernel32

SetHandleCount
GetPrivateProfileIntA
GetSystemTimeAsFileTime
InterlockedDecrement
SetUnhandledExceptionFilter
InterlockedExchange
QueryPerformanceCounter
FlushFileBuffers
GetStringTypeW
InitializeCriticalSection
VirtualAlloc
WaitForSingleObject
WideCharToMultiByte
IsBadCodePtr
SetEndOfFile
GetCPInfo
GetCommandLineA
GetCurrentProcess
FreeEnvironmentStringsA
MulDiv
GetCurrentThreadId
ReadFile
RemoveDirectoryA
SetEnvironmentVariableA
CreateFileA
GetEnvironmentStrings
InterlockedIncrement
HeapSize
DeleteCriticalSection
CreateMutexA
LCMapStringA
CompareStringA
IsBadWritePtr
GetFileAttributesA
SystemTimeToFileTime
TlsSetValue
GetStartupInfoA
LoadLibraryA
GetCurrentProcessId
TlsGetValue
FreeEnvironmentStringsW
GlobalLock
GetFileType
GetStringTypeA
CloseHandle
GetFullPathNameA
LeaveCriticalSection
SetLastError
GlobalFlags
GetTimeZoneInformation
HeapReAlloc
GetStringTypeExA
ExitProcess
VirtualQuery
GetOEMCP
UnhandledExceptionFilter
HeapCreate
ExpandEnvironmentStringsA
TlsAlloc
WriteFile
HeapDestroy
HeapFree
GetLastError
GetProcAddress
GetSystemTime
SetFilePointer
HeapAlloc
FreeLibrary
SetStdHandle
GetStdHandle
FindFirstFileA
FindClose
MultiByteToWideChar
GetLocalTime
GetModuleFileNameW
GetEnvironmentStringsW
GetVersion
lstrcmpiA
TerminateThread
lstrcpynA
GetACP
LCMapStringW
FreeResource
VirtualFree
GetLocaleInfoA
RaiseException
RtlUnwind
GetModuleFileNameA
GetTickCount
EnterCriticalSection
GetModuleHandleA
TerminateProcess
CompareStringW
SetEvent

comctl32

ImageList_GetImageCount
ImageList_AddMasked
InitCommonControlsEx

Sections

.text
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 464KB - Virtual size: 463KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3085a5dfd847b4d275fee637099e9827

Headers

File Characteristics

Imports

shell32

user32

gdi32

shlwapi

ole32

kernel32

comctl32

Sections

.text Size: 72KB - Virtual size: 70KB

.rdata Size: 464KB - Virtual size: 463KB

.data Size: 112KB - Virtual size: 108KB

.rsrc Size: 48KB - Virtual size: 45KB

.text
Size: 72KB - Virtual size: 70KB

.rdata
Size: 464KB - Virtual size: 463KB

.data
Size: 112KB - Virtual size: 108KB

.rsrc
Size: 48KB - Virtual size: 45KB