4d93d276e3a5370be99bb52ffde9d84144c7a8d1e9b79b0ee3a6da039bd99102

Sharing

Copy URL

Twitter E-mail

General

Target

4d93d276e3a5370be99bb52ffde9d84144c7a8d1e9b79b0ee3a6da039bd99102
Size

542KB
MD5

73e57510b75d2dd1add7d5865264e5f0
SHA1

ca8ef83773f9c13dd9c6a4f317310384ecd39263
SHA256

4d93d276e3a5370be99bb52ffde9d84144c7a8d1e9b79b0ee3a6da039bd99102
SHA512

e350811bcae5c08324f6d4f8b31237f711d2433b4c843d5b84871eaed7120295a686bb4fb228553a778893d269dca7dca88286e999a8e3bc62610fbdaa3b6db4
SSDEEP

12288:i0BjrCUCez1MoZFxSyrNAXWc1K1qsvoDON:i0B2eJMoZFxSUKWqsvow

Score

N/A

Malware Config

Signatures

Files

4d93d276e3a5370be99bb52ffde9d84144c7a8d1e9b79b0ee3a6da039bd99102
.exe windows x86

45fdf0a16d7ce5333d8c0128772512bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesW
GetFileTime
SetErrorMode
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
RtlUnwind
ExitProcess
RaiseException
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
HeapSize
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
SetEnvironmentVariableA
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenA
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GlobalFlags
GetModuleHandleA
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
GetThreadLocale
MulDiv
GlobalGetAtomNameW
GlobalFindAtomW
CompareStringW
LoadLibraryA
GetVersionExA
WritePrivateProfileStringW
lstrlenW
FreeResource
InterlockedDecrement
SetLastError
GlobalDeleteAtom
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
lstrcmpW
GetModuleHandleW
GlobalAddAtomW
ReleaseMutex
CreateMutexW
LocalFree
FormatMessageW
GetLastError
GetPrivateProfileStringW
GlobalUnlock
GlobalLock
ReadFile
GetFileSize
MultiByteToWideChar
WideCharToMultiByte
GetTickCount
GlobalFree
GlobalAlloc
SetUnhandledExceptionFilter
VirtualProtect
FreeLibrary
CloseHandle
GetCurrentProcess
GetCurrentProcessId
CreateFileW
SizeofResource
LockResource
LoadResource
FindResourceW
GetModuleFileNameW
GetProcAddress
LoadLibraryW
Sleep
GetCommandLineW
GetCurrentThreadId

user32

GetNextDlgGroupItem
GetNextDlgTabItem
MessageBeep
EndDialog
CreateDialogIndirectParamW
RegisterClipboardFormatW
PostThreadMessageW
GetDC
ReleaseDC
GetSysColorBrush
CharUpperW
GetMenuItemInfoW
InflateRect
MoveWindow
SetWindowTextW
IsDialogMessageW
UnpackDDElParam
ReuseDDElParam
DestroyMenu
ReleaseCapture
LoadAcceleratorsW
InvalidateRect
InsertMenuItemW
SetRectEmpty
SetMenu
ShowWindow
TranslateAcceleratorW
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
IsWindow
SetFocus
GetWindowTextW
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
InvalidateRgn
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
UpdateWindow
GetMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
EnableMenuItem
CheckMenuItem
GetParent
GetWindowLongW
SetRect
IsRectEmpty
CopyAcceleratorTableW
SetCapture
UnregisterClassW
EndPaint
BeginPaint
GetLastActivePopup
IsWindowEnabled
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
TabbedTextOutW
GetDlgItem
LoadCursorW
EnableWindow
MessageBoxW
UnhookWindowsHookEx
PostQuitMessage
ShowOwnedPopups
SetCursor
SendMessageW
GetWindowRect
GetDesktopWindow
SystemParametersInfoW
GetMenuState
GetMenuItemID
GetMenuItemCount
CharNextW
CreateMenu
LoadMenuW
ModifyMenuW
SetMenuInfo
InsertMenuW
CreatePopupMenu
DrawTextW
DeleteMenu
DrawIconEx
GetSubMenu
FillRect
PostMessageW
FindWindowW
BringWindowToTop
SetForegroundWindow
AttachThreadInput
GetForegroundWindow
GetWindowThreadProcessId
GetClientRect
UnregisterClassA

gdi32

ExtSelectClipRgn
CreatePatternBrush
GetStockObject
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetMapMode
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutW
RectVisible
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
GetBkColor
CreateFontW
SetMapMode
RestoreDC
SaveDC
GetDeviceCaps
ExtTextOutW
CreateFontIndirectW
SetBkColor
GetClipBox
CreateBitmap
CreateSolidBrush
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
GetTextExtentPoint32W
SelectObject
CreateICW
BitBlt
SetTextColor
SetBkMode
GetObjectW
DeleteObject

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueExW
RegCreateKeyExW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
RegCloseKey
RegSetValueExW

shell32

DragFinish
DragQueryFileW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathFindExtensionW
PathStripToRootW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemAlloc
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoTaskMemFree
CreateStreamOnHGlobal
CLSIDFromProgID
CLSIDFromString

oleaut32

VariantCopy
SysAllocString
SafeArrayDestroy
SystemTimeToVariantTime
VariantTimeToSystemTime
OleCreateFontIndirect
SysStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString

ws2_32

WSACleanup
WSAStartup
WSASetLastError

gdiplus

GdipCreateFromHDC
GdipDrawImageRectRect
GdipDisposeImage
GdipCloneImage
GdipLoadImageFromStream
GdipGetImageHeight
GdipGetImageWidth
GdipAlloc
GdipFree
GdiplusStartup
GdipDeleteGraphics

Sections

.text
Size: 304KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

45fdf0a16d7ce5333d8c0128772512bb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

gdiplus

Sections

.text Size: 304KB - Virtual size: 303KB

.rdata Size: 72KB - Virtual size: 69KB

.data Size: 16KB - Virtual size: 29KB

.rsrc Size: 140KB - Virtual size: 140KB

.text
Size: 304KB - Virtual size: 303KB

.rdata
Size: 72KB - Virtual size: 69KB

.data
Size: 16KB - Virtual size: 29KB

.rsrc
Size: 140KB - Virtual size: 140KB