639894ecfa3f93bec29bdd7e8143dc32e46bf3fcd64c1e601bd2454df8fee913

Sharing

Copy URL Twitter E-mail

General

Target

639894ecfa3f93bec29bdd7e8143dc32e46bf3fcd64c1e601bd2454df8fee913
Size

656KB
MD5

b1aeb27aced1abaeb811e1f22b4eb95d
SHA1

b514f53b51f6f8262f541f13881a985d712d589f
SHA256

639894ecfa3f93bec29bdd7e8143dc32e46bf3fcd64c1e601bd2454df8fee913
SHA512

4d67d5fd6d56157a0309922029b76b4134836945e0e1589230eadd93b62f3e5a7ca43d05c258017e86e729c02192aa3111f537e923e13d4da11f077959f82a6f
SSDEEP

12288:a96GTXE8vmzKIt9MIqB7eEq84UNkN7u70RDS9jogi:adbE8vmWq84UNki09S9jR

Score

N/A

Malware Config

Signatures

Files

639894ecfa3f93bec29bdd7e8143dc32e46bf3fcd64c1e601bd2454df8fee913
.exe windows x86

9c6749e2a5a1d0758196433e91634b9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
VirtualAlloc
IsBadWritePtr
IsBadReadPtr
IsBadCodePtr
VirtualFree
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapCreate
GetProfileStringA
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapSize
HeapReAlloc
TerminateProcess
HeapFree
HeapAlloc
GetSystemTime
GetTimeZoneInformation
GetACP
GetCommandLineA
GetStartupInfoA
ExitThread
CreateThread
RaiseException
RtlUnwind
GetTickCount
SetErrorMode
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GlobalFlags
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetThreadLocale
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
DuplicateHandle
MulDiv
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
lstrcmpA
FormatMessageA
LocalFree
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenW
lstrcpynA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
lstrlenA
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GlobalFree
LockResource
FindResourceA
LoadResource
GetModuleFileNameA
GlobalAlloc
GlobalLock
GlobalUnlock
GetCurrentThread
GetLastError
GetCurrentProcess
CreateEventA
WaitForSingleObject
SetEvent
CreateToolhelp32Snapshot
Process32First
Process32Next
lstrcmpiA
GetLocalTime
GetSystemInfo
Sleep
GetProcAddress
ExitProcess
CreateFileA
WriteFile
CloseHandle
GetModuleHandleA

user32

ClientToScreen
IsRectEmpty
FindWindowA
InvalidateRect
PtInRect
FillRect
SetRect
LoadCursorA
DestroyCursor
MapDialogRect
SetWindowContextHelpId
GetMessageA
ValidateRect
GetCursorPos
SetCursor
ShowOwnedPopups
PostQuitMessage
wvsprintfA
GetDC
ReleaseDC
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
LoadIconA
PostMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetWindowDC
SetScrollRange
GetScrollPos
SetScrollPos
MessageBoxA
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
EnableWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
SendMessageA
PostThreadMessageA
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
GetSystemMetrics
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
GetScrollRange
SetRectEmpty
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetWindowRect
PeekMessageA
TranslateMessage
DispatchMessageA
RegisterClipboardFormatA
LockWindowUpdate
GetDCEx
InvertRect
SetCapture
WindowFromPoint
KillTimer
SetTimer
GetTabbedTextExtentA
MessageBeep
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
LoadStringA
InflateRect
GetSysColorBrush
GetClassNameA
GetSystemMenu
DeleteMenu
AppendMenuA
SetParent
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
DestroyMenu
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
GetTopWindow
LoadAcceleratorsA
BeginPaint

gdi32

SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
DeleteObject
CreateRectRgn
SetPolyFillMode
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextExtentPoint32A
GetTextMetricsA
StretchDIBits
CreateCompatibleDC
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
CreateFontIndirectA
GetMapMode
SetRectRgn
CombineRgn
GetTextColor
GetBkColor
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
BitBlt
SetBkMode
SelectObject
RestoreDC
SaveDC
LPtoDP
DeleteDC
CreateDCA
SetAbortProc
StartDocA
StartPage
EndPage
EndDoc
AbortDoc
GetViewportOrgEx
CreatePen
DPtoLP
Rectangle
GetStockObject
CreateRectRgnIndirect
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
PatBlt
CreateDIBitmap
GetTextExtentPointA
GetDeviceCaps

comdlg32

GetSaveFileNameA
PrintDlgA
GetOpenFileNameA
GetFileTitleA
CommDlgExtendedError

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

LookupPrivilegeValueA
OpenProcessToken
OpenThreadToken
RegOpenKeyExA
SetFileSecurityA
GetFileSecurityA
RegCloseKey
RegQueryValueExA
AdjustTokenPrivileges
RegSetValueExA
RegCreateKeyExA

shell32

DragQueryFileA
DragFinish
ShellExecuteA

comctl32

ord17
ImageList_Destroy

oledlg

ord8

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromString
CLSIDFromProgID
CoUninitialize
CoInitialize
CoGetClassObject
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord251
ord253

oleaut32

VariantClear
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
VarBstrFromCy
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
SysStringLen

Sections

.text
Size: 444KB - Virtual size: 442KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c6749e2a5a1d0758196433e91634b9b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 444KB - Virtual size: 442KB

.rdata Size: 92KB - Virtual size: 89KB

.data Size: 80KB - Virtual size: 93KB

.rsrc Size: 36KB - Virtual size: 33KB

.text
Size: 444KB - Virtual size: 442KB

.rdata
Size: 92KB - Virtual size: 89KB

.data
Size: 80KB - Virtual size: 93KB

.rsrc
Size: 36KB - Virtual size: 33KB