0940ffc4ca7fe86fdd6459875928b5d6057c4e0851dd46f4e7328b4a6137f30b

Sharing

Copy URL Twitter E-mail

General

Target

0940ffc4ca7fe86fdd6459875928b5d6057c4e0851dd46f4e7328b4a6137f30b
Size

312KB
MD5

481aff902f81dd0a310c7147ef23eff0
SHA1

888e0af673ed9a0a57a9e9cb97ff54e61f3edc75
SHA256

0940ffc4ca7fe86fdd6459875928b5d6057c4e0851dd46f4e7328b4a6137f30b
SHA512

80c89a17faf0feaa9d13f9f8e37780af8cdbb21939e80e43eb8b269816960d4505f9ca774f1c4453faf73d2dbe84f48452d398e0ccfc04a0502821db8d93d895
SSDEEP

6144:+97cijebYM76ALubusFSb45NmEFq2SsQLH5AdQ:OciibYM76AL6BF+45NbSsPdQ

Score

N/A

Malware Config

Signatures

Files

0940ffc4ca7fe86fdd6459875928b5d6057c4e0851dd46f4e7328b4a6137f30b
.exe windows x86

76e35fa3cd8deae42d5924e8e6022bc3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

setsockopt
closesocket
select
connect
ioctlsocket
inet_addr
WSAGetLastError
socket
send
recv
gethostbyname
htons
WSAStartup
WSACleanup

kernel32

UnlockFile
SetEndOfFile
GetVolumeInformationA
GetFullPathNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileSize
GetFileTime
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
HeapFree
RaiseException
HeapReAlloc
HeapSize
GetACP
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
LockFile
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetModuleFileNameA
CloseHandle
Process32Next
Process32First
CreateToolhelp32Snapshot
FindClose
FindFirstFileA
WaitForSingleObject
CreateProcessA
GetLastError
DeleteFileA
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
SetErrorMode
GetOEMCP
GetCPInfo
GetThreadLocale
SizeofResource
GetProcessVersion
WritePrivateProfileStringA
GlobalFlags
lstrcpynA
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
GetFileAttributesA
Sleep
ResumeThread
SetThreadPriority
CreateThread
CreateDirectoryA
InitializeCriticalSection
TlsAlloc
LocalAlloc
FormatMessageA
LocalFree
MulDiv
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
lstrlenA
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
GetModuleHandleA
GetProcAddress
GlobalUnlock
DeleteCriticalSection
GlobalFree
LockResource
FindResourceA
LoadResource
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
HeapAlloc
GetTickCount
EnterCriticalSection
LeaveCriticalSection
VirtualFree

user32

GetDesktopWindow
GetClassNameA
PtInRect
GetSysColorBrush
CharNextA
CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
MessageBeep
InflateRect
CharUpperA
RegisterClipboardFormatA
PostThreadMessageA
ClientToScreen
DestroyMenu
LoadStringA
GetDC
ReleaseDC
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
GetClassLongA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongA
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
LoadCursorA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SetCursor
EnableWindow
KillTimer
PostMessageA
SetTimer
PostQuitMessage
GetWindowRect
InvalidateRect
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
MessageBoxA
LoadIconA
LoadImageA
IsWindowUnicode
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
SetPropA

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
SetBkMode
SelectObject
RestoreDC
SaveDC
DeleteDC
PatBlt
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetObjectA
GetStockObject
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateDIBitmap
DeleteObject

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey

shell32

SHFileOperationA
ShellExecuteA

comctl32

ord17

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CLSIDFromString
CLSIDFromProgID
CreateILockBytesOnHGlobal
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoTaskMemFree
CoTaskMemAlloc
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
CoGetClassObject

olepro32

ord253

oleaut32

SysAllocStringByteLen
SysAllocString
SysStringLen
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

Sections

.text
Size: 196KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

76e35fa3cd8deae42d5924e8e6022bc3

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 196KB - Virtual size: 192KB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 12KB - Virtual size: 26KB

.rsrc Size: 56KB - Virtual size: 53KB

.text
Size: 196KB - Virtual size: 192KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 12KB - Virtual size: 26KB

.rsrc
Size: 56KB - Virtual size: 53KB