051909a7f0cccd7f29eda3016ff57f4d6a5712bcc90ca57924e7088f34279212

Sharing

Copy URL

Twitter E-mail

General

Target

051909a7f0cccd7f29eda3016ff57f4d6a5712bcc90ca57924e7088f34279212
Size

799KB
MD5

a09a7c0379a25e9bcb7b944b27ad0b70
SHA1

12f80b37ddbc0f28b82dc9d9790ace6b4e8fbb08
SHA256

051909a7f0cccd7f29eda3016ff57f4d6a5712bcc90ca57924e7088f34279212
SHA512

d62254bade07645435e78e04c44057072424d1791b0bc275f2ad7577b14a44bfa22861b3e809f5253b053f1d57d0b1c378b9a4385e9d0cf631b2f150b1c591ec
SSDEEP

12288:FPUoWI1b6C56v5E6l/7O/MevdXTuXIpnMsj:tWDry8/C/rvtaXl

Score

N/A

Malware Config

Signatures

Files

051909a7f0cccd7f29eda3016ff57f4d6a5712bcc90ca57924e7088f34279212
.exe windows x86

736355545b8bcc93d587404fddeb3086

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
RaiseException
ReadFile
SearchPathW
SetEvent
SetFilePointer
SetLastError
SetUnhandledExceptionFilter
SizeofResource
SystemTimeToFileTime
TerminateProcess
OutputDebugStringA
TlsFree
UnhandledExceptionFilter
UnmapViewOfFile
VerSetConditionMask
VerifyVersionInfoW
WaitForSingleObject
WideCharToMultiByte
WriteFile
lstrcmpW
lstrcmpiW
lstrlenW
MultiByteToWideChar
MapViewOfFile
LockResource
LocalFree
LocalAlloc
LoadResource
LoadLibraryExW
LeaveCriticalSection
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapSetInformation
HeapFree
HeapAlloc
GetVersionExW
GetVersionExA
GetUserDefaultUILanguage
GetTimeFormatW
GetTickCount
GetTempPathW
GetSystemTimeAsFileTime
GetSystemTime
GetSystemDirectoryW
GetSystemDefaultUILanguage
GetStartupInfoA
GetProcAddress
GetModuleFileNameW
GetLocaleInfoW
GetLocalTime
GetLastError
GetFullPathNameW
GetFileSize
GetFileAttributesW
GetFileAttributesExW
GetDateFormatW
GetCurrentThreadId
GetCurrentProcess
GetCurrentDirectoryW
GetCommandLineW
GetACP
FreeLibrary
FormatMessageW
FindResourceW
FindResourceExW
FindNextFileW
FindFirstFileW
FindClose
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
EnterCriticalSection
DeviceIoControl
DeleteFileW
DeleteCriticalSection
DebugBreak
CreateThread
CreateProcessW
CreateFileW
CreateFileMappingW
CreateEventW
CreateDirectoryW
CompareStringW
CloseHandle
GetModuleHandleA
GetFileAttributesA
VirtualAllocEx
GetProcessHeap
GetModuleHandleW
LoadLibraryA
LoadLibraryW
GlobalAlloc
GetCurrentProcessId
GetDriveTypeW
GetVersion
TlsAlloc
Sleep

user32

SetCursor
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetRect
SetTimer
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowTextW
ShowWindow
ShowWindowAsync
SystemParametersInfoA
SystemParametersInfoW
TranslateAcceleratorW
TranslateMessage
UnregisterClassA
UnregisterClassW
SendMessageW
SendDlgItemMessageW
ScreenToClient
ReleaseDC
RegisterClassW
RegisterClassExW
RedrawWindow
PtInRect
PostThreadMessageW
PostQuitMessage
PostMessageW
OffsetRect
MoveWindow
MonitorFromWindow
ModifyMenuW
MessageBoxW
MapWindowPoints
MapDialogRect
LockWindowUpdate
LoadStringW
LoadImageW
LoadCursorW
LoadAcceleratorsW
KillTimer
IsZoomed
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
IsDlgButtonChecked
IsDialogMessageW
IsChild
InvalidateRect
IntersectRect
InsertMenuW
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
GetWindow
GetMonitorInfoW
GetMessageW
GetMenu
GetFocus
GetDlgItemTextW
GetDlgItem
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassInfoW
GetClassInfoExW
FillRect
EqualRect
EnumDisplayMonitors
EndPaint
EndDialog
EnableWindow
DrawTextW
DrawIconEx
DrawIcon
DispatchMessageW
DialogBoxParamW
DestroyWindow
DestroyIcon
DefWindowProcW
DefDlgProcW
CreateWindowExW
CreateMenu
CreateDialogParamW
CreateDialogIndirectParamW
CopyRect
CheckRadioButton
CheckDlgButton
CharUpperW
CharNextW
CharLowerW
BeginPaint
AppendMenuW
AllowSetForegroundWindow
AdjustWindowRectEx
AdjustWindowRect
EnableMenuItem
IsWindowVisible
GetSysColor
GetSystemMetrics
SendMessageA
LoadIconW
UpdateWindow
LoadBitmapW
LoadIconA
GetSystemMenu

gdi32

UpdateColors
TranslateCharsetInfo
AbortDoc
StretchBlt
SetRectRgn
SetMapMode
SelectPalette
SelectObject
RealizePalette
GetStockObject
GetObjectW
GetDeviceCaps
GetDIBColorTable
GetDCOrgEx
GetClipBox
EqualRgn
DeleteObject
CreateRectRgnIndirect
CreateRectRgn
CreatePalette
CreateFontIndirectW
CreateCompatibleBitmap
CombineRgn
BitBlt
DeleteColorSpace
SetTextAlign
AbortPath
SetBkMode
GdiGetBatchLimit
FlattenPath
CloseFigure
GetDCBrushColor
GetGraphicsMode
CreateSolidBrush
CreateCompatibleDC
GdiFlush
GetEnhMetaFileW
CloseMetaFile
DeleteDC
EndDoc
BeginPath
SetTextColor

comdlg32

GetFileTitleW
GetSaveFileNameW
GetOpenFileNameW

advapi32

UnregisterTraceGuids
TraceMessage
RegisterTraceGuidsW
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegOpenKeyExA
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyExW
RegCreateKeyExA
RegCloseKey
GetUserNameA
GetTraceLoggerHandle
GetTraceEnableLevel
GetTraceEnableFlags
CredWriteW
CredWriteDomainCredentialsW
CredUnmarshalCredentialW
CredReadW
CredReadDomainCredentialsW
CredGetSessionTypes
CredFree
CredDeleteW
RegOpenKeyA
RegQueryValueExA

shell32

ShellExecuteExW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
SHGetDesktopFolder
SHAddToRecentDocs
ExtractIconW

ole32

CoCreateInstance
CoInitialize
CoRegisterClassObject
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
StringFromGUID2
CoUninitialize

shlwapi

SHStrDupW
PathStripPathW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
PathAppendW

winmm

timeGetTime

msvcrt

wcstombs
wcstok
wcsstr
wctomb
wcspbrk
wcsncmp
wcschr
ungetc
wcsrchr
_vsnwprintf
_CIpow
_XcptFilter
__badioinfo
__dllonexit
__getmainargs
__mb_cur_max
__p__commode
__p__fmode
__pioinfo
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_controlfp
_errno
_exit
_fileno
_initterm
_ismbblead
_lock
_onexit
_purecall
_read
_unlock
_vsnprintf
_wcsicmp
_wcslwr
_wcsnicmp
_wtoi
_wtol
bsearch
calloc
exit
free
isdigit
isleadbyte
iswctype
iswdigit
iswspace
isxdigit
localeconv
malloc
mbtowc
memcpy
memmove
memset
realloc
srand
time
toupper
towlower
towupper

Sections

.text
Size: 640KB - Virtual size: 639KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zzz0
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

736355545b8bcc93d587404fddeb3086

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

winmm

msvcrt

Sections

.text Size: 640KB - Virtual size: 639KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 19KB - Virtual size: 19KB

.zzz0 Size: 19KB - Virtual size: 18KB

.rsrc Size: 98KB - Virtual size: 98KB

.text
Size: 640KB - Virtual size: 639KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 19KB - Virtual size: 19KB

.zzz0
Size: 19KB - Virtual size: 18KB

.rsrc
Size: 98KB - Virtual size: 98KB