11b70b27cddd9f61dd468fdd46fd4f36ad8aab870f1be11d9cdc0bdffcad1d86

Sharing

Copy URL Twitter E-mail

General

Target

11b70b27cddd9f61dd468fdd46fd4f36ad8aab870f1be11d9cdc0bdffcad1d86
Size

1.1MB
MD5

80b1aeb53a010149dacc8d403d8d42c1
SHA1

ed7a614399f42a35c4d11f891bfb064b2f456cb9
SHA256

11b70b27cddd9f61dd468fdd46fd4f36ad8aab870f1be11d9cdc0bdffcad1d86
SHA512

64b1e3d07859deb39173f626debd5531b6c8f26b07c942c15bb6cb568ab0f5f9dcaa7e76106eb4603a6c8f93854a0c6f9c9484ce827da1c5e44ac63be6cb7478
SSDEEP

12288:VQyq7qttNoBRjAWpVPS3VS4NyNBlpdWnXOy4tuJ4X6y4tuJ4X:VQyq4KlAWK3Pq/onXJ4tgi4tg

Score

N/A

Malware Config

Signatures

Files

11b70b27cddd9f61dd468fdd46fd4f36ad8aab870f1be11d9cdc0bdffcad1d86
.exe windows x86

e0e2a694e8c7684b207665ecaeb5a43f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileSectionNamesA
GetPrivateProfileIntA
GetDriveTypeA
GetLogicalDriveStringsA
DeviceIoControl
CancelIo
WinExec
VirtualFreeEx
GetPrivateProfileStringA
VirtualAllocEx
WriteProcessMemory
lstrcpyW
CreatePipe
GetStdHandle
DuplicateHandle
SetEndOfFile
CreateThread
GetComputerNameA
WaitForMultipleObjects
ReleaseMutex
CreateMutexA
HeapFree
CreateToolhelp32Snapshot
ProcessIdToSessionId
Process32Next
lstrcpyA
GetProcessHeap
GetTempFileNameA
FindResourceA
HeapAlloc
GetEnvironmentVariableA
LockResource
LoadResource
OpenProcess
SizeofResource
Process32First
FindClose
GetLastError
FreeLibrary
FindFirstFileA
GetModuleHandleA
FindNextFileA
GetCurrentThreadId
SetUnhandledExceptionFilter
VirtualQuery
ExitProcess
GetModuleFileNameA
GetLocaleInfoA
GetTickCount
LocalFree
LocalAlloc
GetCurrentProcess
GetStartupInfoA
CreateDirectoryA
GetCurrentDirectoryA
CopyFileA
RemoveDirectoryA
GetCurrentThread
InterlockedIncrement
InterlockedDecrement
GetCommandLineA
TerminateProcess
InitializeCriticalSection
DeleteCriticalSection
GetThreadPriority
GetLocalTime
SetThreadPriority
SetFilePointer
MulDiv
GetVersionExA
GetFileSize
GlobalAlloc
GlobalUnlock
WaitForSingleObject
GlobalLock
GlobalFree
MultiByteToWideChar
ResetEvent
SetEvent
WideCharToMultiByte
SetEnvironmentVariableA
CreateProcessA
CreateEventA
WriteFile
EnterCriticalSection
CloseHandle
DeleteFileA
Sleep
CreateFileA
GetFileAttributesA
LeaveCriticalSection
GetProcAddress
LoadLibraryA
ReadFile
GetTempPathA
ReadProcessMemory
UnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
RaiseException
HeapSize
GetCPInfo
GetACP
GetOEMCP
CompareStringW
CompareStringA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
RtlUnwind
IsValidCodePage
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
VirtualAlloc
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
HeapReAlloc
GetStringTypeW
GetStringTypeA
GetSystemTimeAsFileTime

advapi32

RegQueryValueA
RegDeleteKeyA
RegOpenKeyExA
SetSecurityDescriptorDacl
GetSidLengthRequired
OpenProcessToken
GetSidSubAuthority
InitializeSid
RegCreateKeyExA
GetAce
InitializeAcl
RegQueryValueExA
InitializeSecurityDescriptor
AddAccessAllowedAce
SetFileSecurityA
RegEnumValueA
RegOpenKeyA
RegSetValueExA
DuplicateTokenEx
RegEnumKeyA
RegDeleteValueA
GetUserNameW
RegEnumKeyExA
RegCloseKey

comctl32

CreateToolbarEx
_TrackMouseEvent
ImageList_DragEnter
ImageList_BeginDrag
ImageList_Merge
ImageList_GetImageInfo
ImageList_DragLeave
ImageList_AddMasked
ImageList_EndDrag
ImageList_DragMove
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_DrawEx
ImageList_Destroy
PropertySheetA
ord17
ImageList_Create
ImageList_DragShowNolock

comdlg32

GetOpenFileNameA
ChooseColorA
GetSaveFileNameA

gdi32

DeleteObject
SetBkMode
SetTextColor
GetDeviceCaps
CreateFontA
SelectObject
GetStockObject
CreateCompatibleDC
StretchBlt
GetObjectA
CreatePen
TextOutA
DeleteDC
MoveToEx
CreateSolidBrush
LineTo
CreateBitmap
BitBlt
SetBkColor
CreateRectRgn
CreateDIBitmap
CreateFontIndirectA
CreatePatternBrush
CreateCompatibleBitmap
GetTextExtentPoint32A
SetTextAlign
ExtTextOutA
SetStretchBltMode

msacm32

acmFormatDetailsA
acmFormatTagEnumA
acmDriverDetailsA
acmFormatEnumA
acmDriverEnum
acmDriverOpen
acmStreamOpen
acmStreamConvert
acmStreamClose
acmStreamSize
acmStreamUnprepareHeader
acmStreamPrepareHeader
acmDriverClose

ole32

CLSIDFromString
CoUninitialize
CoInitialize
CoTaskMemAlloc
CreateStreamOnHGlobal
CoInitializeSecurity
CoTaskMemFree
CoCreateInstance

oleaut32

OleLoadPicture
OleLoadPicturePath
VariantClear
VariantInit
SysAllocString

shell32

SHGetPathFromIDListA
DragAcceptFiles
Shell_NotifyIconA
SHChangeNotify
SHBrowseForFolderA
DragFinish
SHGetMalloc
DragQueryFileA
ShellExecuteExA
DragQueryPoint
ShellExecuteA

shlwapi

SHDeleteKeyA
SHDeleteEmptyKeyA

user32

ReleaseCapture
DeferWindowPos
IsChild
LoadImageA
FrameRect
FillRect
DrawTextA
EndDeferWindowPos
IsWindowEnabled
ScreenToClient
KillTimer
GetAsyncKeyState
GetCapture
ClientToScreen
SetWindowRgn
IsDlgButtonChecked
CheckDlgButton
SetDlgItemInt
FindWindowA
EnumWindows
GetCursor
GetSysColor
GetSysColorBrush
SendMessageTimeoutA
PeekMessageA
DispatchMessageA
MsgWaitForMultipleObjects
SetPropA
GetPropA
GetWindowDC
CallWindowProcA
SetWindowTextA
CloseClipboard
RemovePropA
GetClipboardData
OpenClipboard
IsClipboardFormatAvailable
DialogBoxIndirectParamA
GetMessageA
IsWindow
CreateDialogParamA
MapDialogRect
DestroyIcon
TranslateMessage
SetMenuDefaultItem
EnableMenuItem
PtInRect
CallNextHookEx
SetCapture
SetWindowsHookExA
DrawEdge
GetWindowTextA
DrawStateA
InflateRect
DrawFocusRect
GetIconInfo
GetWindowWord
EndPaint
SetWindowWord
BeginPaint
EnableWindow
EndDialog
IsDialogMessageA
GetKeyNameTextA
GetKeyState
MapVirtualKeyA
GetWindowPlacement
InsertMenuItemA
GetWindowThreadProcessId
GetSubMenu
wsprintfW
FlashWindowEx
FindWindowExA
IsZoomed
SetMenuItemInfoA
SetWindowPlacement
PostQuitMessage
SetForegroundWindow
LoadIconA
DrawIconEx
SetActiveWindow
UpdateWindow
SetWindowPos
IsWindowVisible
GetSystemMetrics
CheckMenuItem
IsIconic
BeginDeferWindowPos
GetActiveWindow
GetDC
ReleaseDC
GetDlgCtrlID
DialogBoxParamA
GetMenu
SetTimer
GetScrollInfo
ScrollWindowEx
GetDlgItem
SetCursor
InvalidateRect
DeleteMenu
UnhookWindowsHookEx
GetFocus
GetDlgItemTextA
DestroyWindow
SetDlgItemTextA
SendDlgItemMessageA
GetDlgItemInt
ShowWindow
InsertMenuA
SetWindowLongA
GetCursorPos
GetDesktopWindow
MoveWindow
LoadCursorA
DefWindowProcA
GetWindowRect
GetWindow
RegisterClassA
PostMessageA
GetClientRect
GetWindowLongA
SetParent
TrackPopupMenu
MessageBoxA
CreateWindowExA
SendMessageA
WaitForInputIdle
GetClassNameA
SetFocus
GetParent
AppendMenuA
DestroyMenu
SetScrollInfo
CreatePopupMenu

winmm

waveOutClose
waveOutRestart
waveOutUnprepareHeader
waveOutSetVolume
waveOutPrepareHeader
waveOutReset
waveOutPause
waveOutGetVolume
waveOutOpen
waveOutWrite
waveInReset
waveInAddBuffer
waveInStart
mixerGetID
mixerGetLineInfoA
waveOutGetNumDevs
waveInGetNumDevs
waveInMessage
waveInStop
waveInOpen
waveInClose
waveInPrepareHeader
waveInUnprepareHeader
waveInGetDevCapsA
waveOutGetDevCapsA

ws2_32

recv
closesocket
inet_addr
WSAStartup
gethostbyname
htons
__WSAFDIsSet
connect
socket
ioctlsocket
WSAGetLastError
send
select

Sections

.rdata
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 448KB - Virtual size: 586KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 356KB - Virtual size: 355KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�RI
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e0e2a694e8c7684b207665ecaeb5a43f

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

comdlg32

gdi32

msacm32

ole32

oleaut32

shell32

shlwapi

user32

winmm

ws2_32

Sections

.rdata Size: 104KB - Virtual size: 103KB

.data Size: 448KB - Virtual size: 586KB

.rsrc Size: 356KB - Virtual size: 355KB

�RI Size: 88KB - Virtual size: 88KB

.rdata
Size: 104KB - Virtual size: 103KB

.data
Size: 448KB - Virtual size: 586KB

.rsrc
Size: 356KB - Virtual size: 355KB

�RI
Size: 88KB - Virtual size: 88KB