1b5684b35764bf25f60a85154203560d9eb5e9ec1ea855111c148a515c4b2e52

Sharing

Copy URL Twitter E-mail

General

Target

1b5684b35764bf25f60a85154203560d9eb5e9ec1ea855111c148a515c4b2e52
Size

362KB
MD5

a22fe6c9c8c7510d9047d8394cfae330
SHA1

77eeaeae65ad5e2013a63445a7857a7e91e1e35b
SHA256

1b5684b35764bf25f60a85154203560d9eb5e9ec1ea855111c148a515c4b2e52
SHA512

3a5f5d083175a1428ae027bf892d93b38e347c56113bf458e80b65421f3308cccd96d7c7cd1c0bc51c0cda39ec25cfdee03f2e1c957e4950e2e6eac89451f072
SSDEEP

6144:8BnwSAu0/71j1cHg785DZ1PilwC9x1c6p43zUuedfR4+IiThh1ojLsrcm:85wBh5cHgQ5DczqQ43IuQfyJi/1IC

Score

N/A

Malware Config

Signatures

Files

1b5684b35764bf25f60a85154203560d9eb5e9ec1ea855111c148a515c4b2e52
.exe windows x86

1bdbe590b288c3ec12a93908c476e80b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

olecli32

PbCreateLinkFromFile
GenCopy
ErrUpdate
ObjQuerySize
OleSavedClientDoc
ObjQueryName
LeQueryProtocol
LeSetHostNames
LeClose
LeSetData
DibChangeData
BmQueryBounds
LeObjectConvert
OleSaveToStream
OleUpdate
DibQueryBounds
BmSaveToStream
ErrActivate
LeDraw
GetTaskVisibleWindow
ErrQueryOutOfDate
LeCreateInvisible
ErrSetData
OleQueryOutOfDate
OleQueryCreateFromClip
ErrShow
OleUnlockServer
LeQueryOpen
OleQueryOpen
LeGetData
OleEnumObjects
GenChangeData
OleQueryType
PbCreateLinkFromClip
BmRelease
OleRename
OleQuerySize
DibDraw
OleDelete
OleSetBounds

user32

SetCursorPos
ValidateRect
SetMenuItemInfoA
GetAltTabInfoW
CharNextA
ShowCursor
SendMessageA
FindWindowA
SetSystemMenu
RegisterClipboardFormatA
TileWindows
SystemParametersInfoW
GetMenuStringW
OpenWindowStationA
SetWindowsHookExW
SetProcessWindowStation
GetClassInfoA
MessageBoxTimeoutW
ScrollChildren
LoadStringW
RemovePropW
CalcMenuBar
GetMenuItemCount
DdeGetData
GetMenu
LoadKeyboardLayoutEx
LoadMenuA
GetClipboardFormatNameW
GetWindowInfo
RemoveMenu
UnionRect
CharPrevW
UnregisterClassW
DragDetect
PaintMenuBar
GetQueueStatus
CharPrevA
DdeFreeDataHandle
OemToCharBuffW
ChangeClipboardChain
RegisterDeviceNotificationW
CreateWindowExA
DrawFocusRect

msvcirt

?pbase@streambuf@@IBEPADXZ
??_7exception@@6B@
??1ios@@UAE@XZ
??4iostream@@IAEAAV0@PAVstreambuf@@@Z
??_Gstrstreambuf@@UAEPAXI@Z
??6ostream@@QAEAAV0@C@Z
??_Efstream@@UAEPAXI@Z
??0istream_withassign@@QAE@PAVstreambuf@@@Z
??_Distream@@QAEXXZ
??1stdiostream@@UAE@XZ
?flags@ios@@QAEJJ@Z
?setf@ios@@QAEJJJ@Z
??_Gfstream@@UAEPAXI@Z
?hex@@YAAAVios@@AAV1@@Z
?pcount@ostrstream@@QBEHXZ
?setbuf@streambuf@@UAEPAV1@PADH@Z
?eback@streambuf@@IBEPADXZ
?isfx@istream@@QAEXXZ
??0ostream_withassign@@QAE@ABV0@@Z
?adjustfield@ios@@2JB
??6ostream@@QAEAAV0@PBC@Z
??1ostream@@UAE@XZ
?tie@ios@@QAEPAVostream@@PAV2@@Z
??_Difstream@@QAEXXZ
?setbuf@filebuf@@UAEPAVstreambuf@@PADH@Z
??0fstream@@QAE@H@Z
??_7ofstream@@6B@
?text@filebuf@@2HB
??6ostream@@QAEAAV0@I@Z

kernel32

LocalAlloc
lstrcmpA
SetFileShortNameW
_hwrite
lstrcatA
LoadLibraryA
GetConsoleTitleA
GetCommMask
PeekNamedPipe
GlobalHandle
HeapCreate
GetSystemTimeAsFileTime
SetClientTimeZoneInformation
GetEnvironmentVariableA
WriteProfileSectionW
GetStringTypeW
CreateConsoleScreenBuffer
WriteConsoleOutputA
FindActCtxSectionGuid
OutputDebugStringW
GetCurrencyFormatW
IsSystemResumeAutomatic
OpenWaitableTimerA
GetFileSize
FindFirstChangeNotificationW
VirtualAlloc
ReadConsoleInputExA
EnumSystemCodePagesA
ClearCommError
SwitchToFiber

comctl32

FlatSB_GetScrollProp
ImageList_AddIcon
ImageList_GetBkColor
ImageList_SetImageCount
ImageList_SetFlags
ImageList_Copy
FlatSB_GetScrollPos
InitializeFlatSB
InitMUILanguage
ImageList_Read
DrawInsert
ImageList_Duplicate
DrawStatusTextA
PropertySheet
MakeDragList
ImageList_AddMasked
ImageList_GetFlags
CreatePropertySheetPageA
FlatSB_SetScrollProp
ImageList_Write
CreatePropertySheetPageW
UninitializeFlatSB
ImageList_SetDragCursorImage
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_SetFilter
ImageList_GetImageCount
ImageList_Destroy
_TrackMouseEvent
ImageList_DragEnter
GetMUILanguage
MenuHelp
CreateStatusWindowW
InitCommonControls
ImageList_LoadImageA
ImageList_GetDragImage
FlatSB_GetScrollInfo
CreatePropertySheetPage
FlatSB_SetScrollPos
ImageList_SetIconSize
ImageList_Create
ImageList_GetImageRect
ImageList_GetIcon
ImageList_Add
ImageList_Replace

gdi32

EngCreateClip
DdEntry35
DdEntry24
EngCreateSemaphore
GetMiterLimit
CloseMetaFile
PolyBezier
GetPixelFormat
DdEntry48
GetAspectRatioFilterEx
DdEntry50
GetTextFaceAliasW
CreateICA
GetObjectType
PlayMetaFileRecord
GetPixel
SetLayoutWidth
GdiDllInitialize
EnumFontsW
GdiPlayPrivatePageEMF
HT_Get8BPPMaskPalette
GdiIsPlayMetafileDC
GetCurrentPositionEx
PATHOBJ_vEnumStart
EndDoc
GetTextExtentPoint32A
SetTextJustification
SetViewportOrgEx
CopyEnhMetaFileA

Sections

.text
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 483KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1bdbe590b288c3ec12a93908c476e80b

Headers

File Characteristics

Imports

olecli32

user32

msvcirt

kernel32

comctl32

gdi32

Sections

.text Size: 125KB - Virtual size: 125KB

.rdata Size: 107KB - Virtual size: 107KB

.data Size: 1024B - Virtual size: 483KB

.rsrc Size: 127KB - Virtual size: 127KB

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 125KB - Virtual size: 125KB

.rdata
Size: 107KB - Virtual size: 107KB

.data
Size: 1024B - Virtual size: 483KB

.rsrc
Size: 127KB - Virtual size: 127KB

.reloc
Size: 1024B - Virtual size: 1024B