3fdd38629f0d7abd8af16ed928d3a4b89165ed0b5d3499456a961e46078ba6e7

Sharing

Copy URL

Twitter E-mail

General

Target

3fdd38629f0d7abd8af16ed928d3a4b89165ed0b5d3499456a961e46078ba6e7
Size

1.5MB
MD5

81de148109237ee7b1954d15adf86391
SHA1

0a77b3591a32796af17979be25dbea21e5964b34
SHA256

3fdd38629f0d7abd8af16ed928d3a4b89165ed0b5d3499456a961e46078ba6e7
SHA512

269b8a08b98f3210d48a6b7ce129ef7cab18a828cffa3be13b78b8d5df4a1e8034b04ec9b191d8a57033d3111bb088222a72ecbde9a4abcf3fd6f277ae213d69
SSDEEP

24576:CosoctdB2LwI9gsMK4uAPCEXzueDQfVVA079NCQo4:Oh2L/hu3FDglxv/

Score

N/A

Malware Config

Signatures

Files

3fdd38629f0d7abd8af16ed928d3a4b89165ed0b5d3499456a961e46078ba6e7
.exe windows x86

2e32a8f971471f45d8cb8dbd1398d638

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathRemoveFileSpecA
PathStripToRootA
PathSkipRootA
PathIsDirectoryA
PathFindFileNameA
PathRemoveExtensionA

rpcrt4

RpcStringFreeA
UuidToStringA

comctl32

DestroyPropertySheetPage
PropertySheetA
ord17
CreateToolbarEx
InitCommonControlsEx
CreatePropertySheetPageA

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

GetFileType
GetFileTime
SetErrorMode
FindResourceExA
RtlUnwind
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapReAlloc
GetSystemTime
GetLocalTime
SetEnvironmentVariableA
GetDriveTypeA
GetCurrentDirectoryA
GetACP
HeapSize
GetCPInfo
GetOEMCP
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetUnhandledExceptionFilter
Sleep
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
SetLastError
GlobalDeleteAtom
GetCurrentThreadId
GlobalFlags
IsBadCodePtr
CompareStringA
CompareStringW
GetProcessVersion
IsBadReadPtr
IsBadWritePtr
VirtualProtect
MulDiv
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
MoveFileA
UnlockFile
LockFile
GetCurrentProcess
DuplicateHandle
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GetCurrentThread
LCMapStringW
LCMapStringA
LoadResource
LockResource
_hwrite
SystemTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTimeZoneInformation
GetWindowsDirectoryA
_lopen
_lcreat
_lread
_lwrite
GetFileAttributesA
LoadLibraryA
GetModuleFileNameA
_lclose
FreeLibrary
MultiByteToWideChar
lstrlenW
lstrcpyA
lstrcatA
lstrcmpiA
GetProfileStringA
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
GetCurrentProcessId
GetEnvironmentStringsW
SetHandleCount
GlobalFindAtomA
lstrlenA
GetTempPathA
GetTempFileNameA
WinExec
GlobalAddAtomA
GetModuleHandleA
GlobalGetAtomNameA
SetEndOfFile
GetVersion
InterlockedIncrement
FlushFileBuffers
SetFilePointer
SetFileAttributesA
lstrcmpA
WriteFile
CreateProcessA
WideCharToMultiByte
LocalFileTimeToFileTime
SetFileTime
LocalAlloc
RaiseException
InterlockedExchange
ResetEvent
WaitForSingleObject
SetEvent
OpenFile
CreateEventA
LocalFree
GetTickCount
FormatMessageA
GlobalMemoryStatus
InterlockedDecrement
GetVersionExA
GlobalReAlloc
ReadFile
CreateFileA
GetFileSize
_hread
CloseHandle
_llseek
WritePrivateProfileStringA
GlobalHandle
lstrcpynA
GlobalSize
GetPrivateProfileIntA
GetPrivateProfileStringA
GlobalLock
GlobalAlloc
GetProcAddress
RemoveDirectoryA
GlobalUnlock
GlobalFree
FindNextFileA
CopyFileA
FindFirstFileA
CreateDirectoryA
FindClose
DeleteFileA
FindResourceA
GetLastError
GetShortPathNameA
GetStdHandle
SizeofResource
GetStringTypeA
SetStdHandle
GetStringTypeW

user32

PostThreadMessageA
GetNextDlgGroupItem
IsDialogMessageA
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
IsChild
SetWindowsHookExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
IntersectRect
SystemParametersInfoA
BringWindowToTop
EqualRect
GetKeyState
GetDlgCtrlID
GetMenuItemID
UnpackDDElParam
ReuseDDElParam
GetClassInfoA
LoadMenuA
DestroyMenu
LoadAcceleratorsA
RegisterWindowMessageA
GetLastActivePopup
CreateDialogIndirectParamA
GetMenuCheckMarkDimensions
CopyAcceleratorTableA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
GetNextDlgTabItem
WaitForInputIdle
SetMenu
DrawMenuBar
SetTimer
KillTimer
GetScrollRange
CharUpperBuffA
GetScrollInfo
PtInRect
GetCapture
InvertRect
EnableScrollBar
ReleaseCapture
SetCapture
ClientToScreen
GetDesktopWindow
SetActiveWindow
CreateDialogParamA
IsWindowEnabled
DestroyCursor
GetWindowTextA
GetScrollPos
ScrollWindow
SetScrollRange
SetScrollPos
InflateRect
IsWindow
DrawTextExA
ValidateRect
SetClipboardData
CloseClipboard
IsCharAlphaA
CharUpperA
CharToOemA
CharNextA
IsCharUpperA
GetWindowPlacement
SetWindowPlacement
PeekMessageA
DispatchMessageA
TranslateMessage
GetDC
ReleaseDC
CopyRect
GetSysColor
CallWindowProcA
GetWindowTextLengthA
wsprintfA
IsRectEmpty
GetCursorPos
ScreenToClient
GetCursor
FillRect
TranslateAcceleratorA
GetActiveWindow
PostMessageA
CallNextHookEx
CheckMenuItem
GetMenuItemCount
GetMenuItemInfoA
PostQuitMessage
IsIconic
DefWindowProcA
GetFocus
SetRectEmpty
InvalidateRect
LoadIconA
RegisterClassA
SetWindowsHookA
OffsetRect
GetSystemMetrics
UnhookWindowsHook
DestroyWindow
LoadStringA
ShowWindow
GetWindowRect
MapWindowPoints
MoveWindow
SendDlgItemMessageA
SetWindowTextA
GetWindow
GetDlgItemTextA
CharLowerA
SetDlgItemTextA
GetDlgItemInt
LoadCursorA
DestroyIcon
GetClassNameA
GetSysColorBrush
GetAsyncKeyState
GrayStringA
TabbedTextOutA
GetWindowDC
wvsprintfA
RegisterClipboardFormatA
MapDialogRect
SetCursor
MessageBeep
SetFocus
CheckDlgButton
SetDlgItemInt
CheckRadioButton
IsDlgButtonChecked
GetDlgItem
EndDialog
LoadBitmapA
SetWindowPos
CreateWindowExA
SetWindowLongA
GetParent
GetWindowLongA
SetRect
DrawTextA
BeginPaint
EndPaint
GetSubMenu
GetMenu
EnableMenuItem
EnableWindow
UpdateWindow
MessageBoxA
SendMessageA
GetClientRect
IsWindowVisible
WinHelpA
DialogBoxParamA
SetWindowContextHelpId
ShowOwnedPopups
GetMessageA
IsCharAlphaNumericA
IsCharLowerA
OpenClipboard
EmptyClipboard
CopyImage
OemToCharA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode

gdi32

GetStockObject
CreatePen
GetObjectA
DeleteObject
LineTo
CreateCompatibleDC
SelectObject
BitBlt
SetBkMode
CreateFontA
CreateDIBitmap
StretchDIBits
GetTextExtentPoint32A
CreateICA
GetDIBits
StartPage
StartDocA
EndPage
AbortDoc
CreateDCA
EndDoc
GetBkMode
FillRgn
GetTextAlign
RestoreDC
SaveDC
CreateDIBSection
GetClipBox
GetMapMode
DPtoLP
OffsetViewportOrgEx
ScaleViewportExtEx
SetWindowExtEx
SelectPalette
IntersectClipRect
ScaleWindowExtEx
GetViewportExtEx
RectVisible
Escape
PtVisible
GetBkColor
GetTextColor
EnumFontFamiliesExA
SetMapMode
GetWindowExtEx
RealizePalette
SetViewportExtEx
LPtoDP
GetWindowOrgEx
SetViewportOrgEx
CreateBitmap
CreatePatternBrush
PatBlt
ExcludeClipRect
GetTextMetricsA
ExtTextOutA
SetRectRgn
SetStretchBltMode
StretchBlt
EnumFontFamiliesA
CreateFontIndirectA
CreatePalette
CreateRectRgn
SelectClipRgn
SetWindowOrgEx
GetTextExtentPointA
GetDeviceCaps
CreateCompatibleBitmap
SetTextAlign
SetBkColor
CreateSolidBrush
SetROP2
Rectangle
TextOutA
SetTextColor
MoveToEx
GetCharWidthA
DeleteDC

comdlg32

GetOpenFileNameA
PrintDlgA
GetFileTitleA
CommDlgExtendedError
GetSaveFileNameA

winspool.drv

OpenPrinterA
ClosePrinter
GetPrinterA
ord201
DocumentPropertiesA
DeviceCapabilitiesA

advapi32

RegDeleteKeyA
RegSetValueA
RegOpenKeyA
RegEnumValueA
RegEnumKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
GetUserNameA
RegCloseKey

shell32

ExtractIconA
ShellExecuteA
DragQueryFileA
DragFinish
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHChangeNotify

oledlg

ord8

ole32

CLSIDFromProgID
StringFromGUID2
CoRevokeClassObject
CLSIDFromString
CoRegisterClassObject
OleUninitialize
OleInitialize
StgCreateDocfileOnILockBytes
CoFreeUnusedLibraries
CoUninitialize
CoInitialize
CoDisconnectObject
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
StringFromCLSID
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoCreateGuid
CoGetClassObject
StgCreateDocfile
OleSetMenuDescriptor

olepro32

ord253

oleaut32

GetErrorInfo
VariantTimeToSystemTime
SysAllocStringByteLen
SysStringByteLen
LoadRegTypeLi
LoadTypeLi
RegisterTypeLi
VariantInit
VariantChangeType
SysAllocString
VarDateFromStr
VariantCopy
VariantClear
SysStringLen
SysAllocStringLen
SysFreeString

Exports

Exports

?StaticWndProc@CTranscriptUI@@KGJPAUHWND__@@IIJ@Z

Sections

.text
Size: 876KB - Virtual size: 874KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 220KB - Virtual size: 217KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 272KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e32a8f971471f45d8cb8dbd1398d638

Headers

File Characteristics

Imports

shlwapi

rpcrt4

comctl32

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

oledlg

ole32

olepro32

oleaut32

Exports

Exports

Sections

.text Size: 876KB - Virtual size: 874KB

.rdata Size: 220KB - Virtual size: 217KB

.data Size: 116KB - Virtual size: 138KB

.rsrc Size: 272KB - Virtual size: 270KB

.text
Size: 876KB - Virtual size: 874KB

.rdata
Size: 220KB - Virtual size: 217KB

.data
Size: 116KB - Virtual size: 138KB

.rsrc
Size: 272KB - Virtual size: 270KB