265320c08c23aa154c24cff4c155d4bdc792b466beafe80845b33e9c18ec017c

Sharing

Copy URL Twitter E-mail

General

Target

265320c08c23aa154c24cff4c155d4bdc792b466beafe80845b33e9c18ec017c
Size

1.2MB
MD5

61ccf3af5630813d38a9c2a36ce35663
SHA1

61f9bd246f574e7acbbc1ac8bb70c8c89caa034d
SHA256

265320c08c23aa154c24cff4c155d4bdc792b466beafe80845b33e9c18ec017c
SHA512

e8b4581b9c7778175a78697a39386e211a9d1fb8354378388efe4973cb0bd3a62b10983b5dc2d4ed4edb2555e24aba00c72d253d4be664657c3f5e9aa5f51dde
SSDEEP

24576:e4IFtmuhSN28wjSgYRrEVDvppqQJ0kagTEqadGp2Tig4MMoMMI/g/J/MNqhg/lj:Z92JPTPYTig4MMoMM+B

Score

N/A

Malware Config

Signatures

Files

265320c08c23aa154c24cff4c155d4bdc792b466beafe80845b33e9c18ec017c
.exe windows x86

f81f85cde3fa63712989f3839811d18e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

kernel32

LCMapStringW
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetLocaleInfoW
SetEnvironmentVariableA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
SizeofResource
LockResource
LCMapStringA
LoadResource
FindResourceA
WideCharToMultiByte
Beep
GetPrivateProfileStringA
GetLocalTime
lstrcpyA
GetLastError
CreateMutexA
GetModuleFileNameA
GetUserDefaultLangID
GetComputerNameA
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
GetStringTypeW
GetStringTypeA
GetCurrentProcessId
QueryPerformanceCounter
HeapSize
TerminateProcess
HeapReAlloc
GetCommandLineA
GetStartupInfoA
VirtualQuery
GetSystemInfo
VirtualAlloc
GetSystemTimeAsFileTime
RtlUnwind
ExitProcess
SetErrorMode
GetOEMCP
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
FlushInstructionCache
GetCurrentProcess
GetCurrentThreadId
GetProcAddress
GetModuleHandleA
GetVersion
MultiByteToWideChar
lstrcmpiA
lstrlenA
GetCPInfo
FreeResource
lstrlenW
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
LocalAlloc
GlobalFlags
GetFullPathNameA
GetVolumeInformationA
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetPrivateProfileIntA
GetFileTime
GetFileSize
GetFileAttributesA
CreateFileA
CloseHandle
FindFirstFileA
FindClose
FileTimeToLocalFileTime
FileTimeToSystemTime
VirtualProtect
InterlockedDecrement
SetLastError
lstrcpynA
FormatMessageA
LocalFree
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetTimeFormatA
GetDateFormatA
CompareStringW
CompareStringA
WritePrivateProfileStringA
GetTickCount
DeleteFileA
MoveFileA
CreateProcessA
lstrcmpA
MulDiv
HeapFree
GetProcessHeap
HeapAlloc
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
WinExec
lstrcatA

user32

BringWindowToTop
TranslateAcceleratorA
ShowOwnedPopups
PostQuitMessage
EndPaint
BeginPaint
GetWindowDC
GetMessageA
TranslateMessage
ValidateRect
GetMenuStringA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
WinHelpA
CreateWindowExA
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
IsChild
GetWindowTextLengthA
GetLastActivePopup
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
PeekMessageA
MapWindowPoints
MessageBoxA
TrackPopupMenu
GetScrollPos
GetMenu
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
RegisterClassA
UnregisterClassA
SetWindowPlacement
CallWindowProcA
IsIconic
GetWindowPlacement
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
GetDlgItem
IsWindowEnabled
EndDialog
CharUpperA
GetWindowTextA
GetDoubleClickTime
IntersectRect
MoveWindow
ShowWindow
GetKeyState
SetMenuDefaultItem
InsertMenuItemA
SetWindowPos
IsWindowVisible
SetMenu
EnableMenuItem
RegisterWindowMessageA
RegisterClipboardFormatA
GetClassInfoExA
IsClipboardFormatAvailable
GetClipboardData
SetWindowLongA
RegisterHotKey
LoadIconA
SetForegroundWindow
CheckMenuRadioItem
UnregisterHotKey
DrawStateA
CopyIcon
MessageBeep
GetClipCursor
ClipCursor
GetClassInfoA
DefWindowProcA
InvertRect
GetMessagePos
GetWindowLongA
WindowFromPoint
GetNextDlgTabItem
DrawFocusRect
EmptyClipboard
SetClipboardData
CloseClipboard
SetCursor
OpenClipboard
ScreenToClient
CheckMenuItem
IsMenu
GetMenuItemInfoA
GrayStringA
DrawTextA
TabbedTextOutA
GetDesktopWindow
RemoveMenu
ModifyMenuA
InsertMenuA
GetSubMenu
GetMenuState
GetMenuItemID
GetMenuItemCount
AppendMenuA
CreatePopupMenu
CreateMenu
DrawEdge
LoadBitmapA
SetRect
GetDC
ReleaseDC
DrawIconEx
LoadAcceleratorsA
ReuseDDElParam
UnpackDDElParam
SetParent
LockWindowUpdate
GetDCEx
GetSysColor
SystemParametersInfoA
GetIconInfo
GetCursorPos
CallNextHookEx
EqualRect
SetWindowsHookExA
ReleaseCapture
LoadCursorA
GetSysColorBrush
RegisterClassExA
SetCapture
GetCapture
KillTimer
SetTimer
RedrawWindow
InvalidateRect
SetWindowRgn
PostMessageA
DrawFrameControl
OffsetRect
SetRectEmpty
PtInRect
IsRectEmpty
UnhookWindowsHookEx
IsZoomed
GetWindowThreadProcessId
WaitMessage
LoadMenuA
GetDlgCtrlID
DestroyMenu
ClientToScreen
LoadImageA
wsprintfA
SetFocus
GetFocus
UpdateWindow
DestroyIcon
IsWindow
GetSystemMetrics
DrawTextExA
GetClientRect
GetWindowRect
FrameRect
FillRect
InflateRect
CopyRect
GetWindow
SendMessageA
GetParent
EnableWindow
DestroyWindow
GetForegroundWindow

gdi32

GetViewportExtEx
GetWindowExtEx
DPtoLP
LPtoDP
GetCurrentObject
CreateHalftonePalette
StretchDIBits
SetDIBitsToDevice
GetDIBits
GetDIBColorTable
StartDocA
StartPage
EndPage
AbortDoc
EndDoc
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetStretchBltMode
SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
GetMapMode
SelectClipRgn
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
CreatePatternBrush
SelectPalette
CreateRectRgnIndirect
SetRectRgn
GetCharWidthA
CreateFontA
GetBkColor
RealizePalette
CreatePalette
GetTextMetricsA
GetStockObject
Polygon
GetTextExtentPoint32W
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetTextExtentPoint32A
SetPixel
GetPixel
PatBlt
Rectangle
Ellipse
GetBkMode
GetDeviceCaps
CreatePen
CreateDIBSection
SelectObject
BitBlt
DeleteDC
DeleteObject
StretchBlt
FrameRgn
CreateCompatibleDC
OffsetRgn
EqualRgn
CombineRgn
CreateRoundRectRgn
CreatePolygonRgn
CreateRectRgn
CreateCompatibleBitmap
GetObjectA
CreateSolidBrush
CreateFontIndirectA

comdlg32

GetFileTitleA
ChooseColorA
GetOpenFileNameA
GetSaveFileNameA
ChooseFontA
PrintDlgA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueA
RegDeleteValueA
RegSetValueExA
RegOpenKeyA
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueExA

shell32

DragQueryFileA
ShellExecuteA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetMalloc
Shell_NotifyIconA
DragFinish
SHGetPathFromIDListA

comctl32

_TrackMouseEvent
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_SetBkColor
ImageList_GetImageInfo
ImageList_GetIcon
ImageList_AddMasked
ImageList_Add
ImageList_GetImageCount
ord17
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_Draw
ImageList_DrawIndirect

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

ole32

CoInitialize

oleaut32

SysFreeString
SystemTimeToVariantTime
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
VarDateFromStr
VariantTimeToSystemTime
VarBstrFromDate
VarUdateFromDate

ws2_32

closesocket
accept
socket
select
gethostbyname
htonl
htons
WSACleanup
bind
WSAGetLastError
WSASetLastError
connect
WSAStartup
inet_addr
recvfrom
WSAAsyncSelect
send
recv
listen
sendto

Sections

.text
Size: 560KB - Virtual size: 559KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 300KB - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f81f85cde3fa63712989f3839811d18e

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

ws2_32

Sections

.text Size: 560KB - Virtual size: 559KB

.rdata Size: 116KB - Virtual size: 115KB

.data Size: 12KB - Virtual size: 22KB

.rsrc Size: 300KB - Virtual size: 299KB

.text
Size: 560KB - Virtual size: 559KB

.rdata
Size: 116KB - Virtual size: 115KB

.data
Size: 12KB - Virtual size: 22KB

.rsrc
Size: 300KB - Virtual size: 299KB