04ccea1662195b8583805b38d0eff6d00c9035c3344da34022354c0febbb8df8

Sharing

Copy URL Twitter E-mail

General

Target

04ccea1662195b8583805b38d0eff6d00c9035c3344da34022354c0febbb8df8
Size

152KB
MD5

dfe42c34780e29cd5c9ebcc0c6c79513
SHA1

ee141989ad3b388d010abecc19aa9e9c434f03a4
SHA256

04ccea1662195b8583805b38d0eff6d00c9035c3344da34022354c0febbb8df8
SHA512

2e7daf665e8d9ddae07d7e1ee43ca0fbd298e46274d77987b226f6dd19ca08f025bbf09368aac935537bd6ac2ecb809c0cc1a3868477097c2125d13994f37ab9
SSDEEP

3072:wQyVjJXEwfsQxA115x5/+dgmr5V2/o5cvY:wPXHsQuR8ag

Score

N/A

Malware Config

Signatures

Files

04ccea1662195b8583805b38d0eff6d00c9035c3344da34022354c0febbb8df8
.exe windows x86

ee1d6ee87e33dc9f16cc13b4abd888bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileA
FindNextFileA
UnmapViewOfFile
ExitThread
LoadLibraryA
GetLastError
FindClose
GetProcAddress
SystemTimeToFileTime
Sleep
IsDBCSLeadByte
ResumeThread
SuspendThread
SetFileTime
SetFileAttributesA
CreateDirectoryA
GetFileAttributesA
GetSystemTime
GetFileSize
FreeLibrary
CreateFileMappingA
MapViewOfFile
IsBadReadPtr
GetTickCount
CreateThread
GetFullPathNameA
CreateFileA
SetFilePointer
WriteFile
GetCurrentDirectoryA
GetWindowsDirectoryA
SetCurrentDirectoryA
GetDriveTypeA
CreateMutexA
WaitForSingleObject
ReleaseMutex
CloseHandle
GetFileInformationByHandle
GetLocalTime
GetComputerNameA
HeapFree
GetStartupInfoA
GetCommandLineA
GetModuleHandleA
HeapDestroy
HeapCreate
ExitProcess
VirtualAlloc
VirtualFree
GetCurrentProcess
WideCharToMultiByte
TerminateProcess
LCMapStringA
LCMapStringW
MultiByteToWideChar
GetModuleFileNameA
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
GetVersion
HeapAlloc
HeapReAlloc

user32

EndDialog
SetDlgItemTextA
DispatchMessageA
TranslateMessage
GetMessageA
DefWindowProcA
CreateDialogParamA
DialogBoxParamA
GetWindowLongA
TranslateAcceleratorA
GetDlgItem
GetParent
IsWindow
UpdateWindow
GetDlgItemTextA
BringWindowToTop
SystemParametersInfoA
AttachThreadInput
GetWindowThreadProcessId
IsWindowEnabled
DeferWindowPos
RegisterHotKey
DestroyWindow
CreateWindowExA
PeekMessageA
CallWindowProcA
LoadMenuA
GetSubMenu
GetMenuItemCount
GetMenuStringA
SetWindowLongA
CreatePopupMenu
ModifyMenuA
BeginDeferWindowPos
AppendMenuA
DestroyMenu
GetAsyncKeyState
KillTimer
SetTimer
RegisterWindowMessageA
LoadAcceleratorsA
GetSystemMetrics
SendMessageA
PostQuitMessage
LoadIconA
LoadCursorA
GetWindowRect
GetClientRect
SetCapture
SendDlgItemMessageA
GetWindow
InvalidateRgn
ReleaseCapture
MoveWindow
EndDeferWindowPos
IsWindowVisible
IsDlgButtonChecked
SetActiveWindow
GetForegroundWindow
GetWindowTextA
FindWindowA
RegisterClassA
SetForegroundWindow
MessageBoxA
wsprintfA
PostMessageA
UnregisterHotKey
SetCursor
GetWindowPlacement
EnableWindow
ShowWindow
SetClassLongA
SetWindowPlacement
SetFocus
GetMessagePos
FlashWindow
SetWindowTextA
CreateMenu
TrackPopupMenu
MessageBeep
GetSystemMenu
InsertMenuA
GetMenuItemID
SetWindowWord
DeleteMenu
GetWindowWord
ScreenToClient
GetCursorPos
IsDialogMessageA

gdi32

CreateFontIndirectA
DeleteObject
GetObjectA

comdlg32

GetSaveFileNameA
ChooseFontA
GetOpenFileNameA

advapi32

RegDeleteKeyA
GetUserNameA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegQueryValueA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegEnumKeyExA
RegEnumValueA

shell32

DragFinish
SHGetMalloc
DragQueryFileA
SHGetPathFromIDListA
ExtractIconA
SHBrowseForFolderA
ShellExecuteA
Shell_NotifyIconA

ole32

CoInitialize
CoUninitialize

winmm

PlaySoundA

comctl32

ord17
ImageList_ReplaceIcon
ImageList_Create
ImageList_Destroy

wsock32

accept
recvfrom
connect
ntohl
sendto
WSACleanup
WSAStartup
socket
bind
WSAAsyncSelect
inet_ntoa
listen
gethostbyname
WSAGetLastError
ioctlsocket
send
select
recv
closesocket
htons
setsockopt
inet_addr

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee1d6ee87e33dc9f16cc13b4abd888bb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

winmm

comctl32

wsock32

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 16KB - Virtual size: 13KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 16KB - Virtual size: 13KB

.rsrc
Size: 16KB - Virtual size: 15KB