1fd8a8674521d9a8c749d18d6ed2d5a2933c75fbcda11117e7bea91ee81ab565

Sharing

Copy URL Twitter E-mail

General

Target

1fd8a8674521d9a8c749d18d6ed2d5a2933c75fbcda11117e7bea91ee81ab565
Size

832KB
MD5

8032b80627a16cece449b26a67344f30
SHA1

a3da651c171fd571db94b7c78e51da7cf4135ff1
SHA256

1fd8a8674521d9a8c749d18d6ed2d5a2933c75fbcda11117e7bea91ee81ab565
SHA512

ec039d6e989848d735d231e0b9ef0e5db0b9c9b56ae64aa6288d843da682617b2f73985fc61d35812cc40ed96317cb24e13e6a53b09485c3db0b95751696cccb
SSDEEP

24576:W1ftCunbdcPE9MoteNxv344FTTiRdCUTGBtr6:UVBmGM6AxvltEL6/6

Score

N/A

Malware Config

Signatures

Files

1fd8a8674521d9a8c749d18d6ed2d5a2933c75fbcda11117e7bea91ee81ab565
.exe windows x86

a99aa9e87dc429db65a47a10d6bacd03

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
ResetEvent
GetConsoleCursorInfo
VirtualProtect
GetModuleHandleA
SetStdHandle
GetStdHandle
GetConsoleCP
ExitProcess
GetVersion
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
SizeofResource
GlobalLock
GetTickCount
SetUnhandledExceptionFilter
GetLastError
Process32NextW
MulDiv
HeapFree
GetLogicalDriveStringsW
InterlockedCompareExchange
SetErrorMode
InterlockedExchange
WaitForSingleObject
OpenEventW
HeapSize
GetExitCodeProcess
GetFileSize
IsDebuggerPresent
GetFullPathNameW
LoadLibraryW
GetProcessHeap
OpenProcess
LockResource
SetFilePointer
LeaveCriticalSection
GetFileAttributesExW
CloseHandle
DeviceIoControl
FindResourceW
GlobalFree
SetCurrentDirectoryW
Sleep
WaitForMultipleObjects
Thread32Next
HeapSetInformation
FindResourceExW
IsProcessorFeaturePresent
OutputDebugStringW
CreateEventW
InterlockedDecrement
GetFileAttributesW
UnhandledExceptionFilter
FormatMessageW
MultiByteToWideChar
GetModuleFileNameW
GetSystemTimeAsFileTime
VerSetConditionMask
CreateProcessW
SetEndOfFile
HeapAlloc
GetStartupInfoW
SetEvent
GlobalAlloc
WriteFile
LoadResource
GetPrivateProfileIntW
QueryPerformanceCounter
RaiseException
GetCurrentProcess
GetProcAddress
InterlockedIncrement
DuplicateHandle
HeapReAlloc
GetModuleHandleW
EnterCriticalSection
TerminateProcess
GetSystemDirectoryW
CreateToolhelp32Snapshot
ReadFile
GlobalUnlock
SetLastError
FreeLibrary
LoadLibraryExW
QueryDosDeviceW
HeapDestroy
Process32FirstW
LocalAlloc
VerifyVersionInfoW
LoadLibraryA
CreateFileW
WideCharToMultiByte
Thread32First
LocalFree

user32

EndDeferWindowPos
ChangeDisplaySettingsW
GetMessagePos
DestroyWindow
ExitWindowsEx
GetMessageW
OffsetRect
DdeCreateStringHandleW
keybd_event
GetWindowTextLengthW
GetWindowTextW
MsgWaitForMultipleObjects
UpdateWindow
SetForegroundWindow
IsWindowVisible
DdeNameService
FlashWindow
GetWindow
CopyRect
GetKeyState
GetMessageTime
ShowCursor
SetWindowRgn
DdeCreateDataHandle
SetMenuItemInfoW
MoveWindow
UnionRect
AdjustWindowRectEx
SetScrollInfo
SetWindowLongW
DestroyIcon
BringWindowToTop
GetUpdateRgn
MapWindowPoints
GetMenuItemCount
GetFocus
CreatePopupMenu
RedrawWindow
ModifyMenuW
GetClassInfoW
SetTimer
SetParent
PeekMessageW
SetCursor
MessageBoxW
RegisterClipboardFormatW
DestroyCursor
CreateWindowExW
DdeGetLastError
SetWindowPos
PtInRect
GetClassNameW
SendMessageW
GetUpdateRect
CreateDialogIndirectParamW
SetFocus
DrawFocusRect
InsertMenuItemW
EnumDisplaySettingsW
DdeClientTransaction
DrawIconEx
DdeUninitialize
WaitForInputIdle
LoadIconW
LoadBitmapW
DdeDisconnect
GetKeyboardState
ValidateRect
GetAsyncKeyState
ScrollWindow
GetWindowDC
HideCaret
UnhookWindowsHookEx
KillTimer
CheckMenuItem
SystemParametersInfoW
EnableMenuItem
DdeFreeStringHandle
GetActiveWindow
CallNextHookEx
EnumThreadWindows
EmptyClipboard
GetMenu
DrawIcon
GetCursorPos
CreateMenu
DrawFrameControl
ShowCaret
GetScrollInfo
SetCursorPos
DdeConnect
GetClientRect
IsZoomed
WindowFromPoint
ReleaseCapture
GetWindowThreadProcessId
DdeQueryStringW
LoadImageW
DdeGetData
DeferWindowPos
GetCapture
TranslateAcceleratorW
RemoveMenu
RegisterWindowMessageW
DefWindowProcW
TranslateMessage
GetForegroundWindow
UnregisterClassW
GetDC
AppendMenuW
InvalidateRect
VkKeyScanW
DrawTextW
GetIconInfo
CreateDialogParamW
CreateAcceleratorTableW
CallWindowProcW
GetClipboardData
BeginPaint
DdeFreeDataHandle
CloseClipboard
GetDesktopWindow
PostQuitMessage
MessageBeep
DrawMenuBar
CheckMenuRadioItem
EnumWindows
CreateIconIndirect
DdeInitializeW
TrackPopupMenu
BeginDeferWindowPos
GetSystemMenu
DestroyMenu
SetWindowTextW
GetWindowLongW
ToUnicode
ChildWindowFromPoint
DispatchMessageW
ClientToScreen
IsIconic
DrawStateW
EnableWindow
PostThreadMessageW
GetSysColor
ScreenToClient
FillRect
PostMessageW
DestroyAcceleratorTable
SetClipboardData
FindWindowExW
ReleaseDC
IsClipboardFormatAvailable
InsertMenuW
OpenClipboard
DdePostAdvise
GetParent
LoadCursorFromFileW
GetMenuState
GetSystemMetrics
IsDialogMessageW
GetMenuItemInfoW
EndPaint
IsWindow
SetCapture
ShowWindow
EnumClipboardFormats
GetSubMenu
GetWindowRect
SetWindowsHookExW
GetClipboardFormatNameW
InflateRect
IsWindowEnabled
GetDoubleClickTime
EndDialog
SetMenu
DrawEdge

gdi32

SaveDC
Arc
SetMetaFileBitsEx
RoundRect
GetTextColor
TextOutW
GetSystemPaletteEntries
CreateBitmap
MaskBlt
SetBrushOrgEx
CreateFontIndirectW
CombineRgn
CopyEnhMetaFileW
GetRegionData
GetTextMetricsW
CreateICW
SetPixel
GetDIBits
EnumFontFamiliesExW
SelectObject
SetMapMode
SetBkMode
CreateSolidBrush
Ellipse
CreateEnhMetaFileW
DeleteObject
PlayEnhMetaFile
CreateDIBSection
DeleteDC
GetTextExtentPoint32W
GetTextExtentExPointW
SelectPalette
ExtCreateRegion
GetCharABCWidthsW
SetViewportExtEx
RestoreDC
StretchBlt
CreatePen
Pie
SetTextAlign
SetPolyFillMode
GetStockObject
Polygon
RealizePalette
MoveToEx
SetROP2
CreateBitmapIndirect
GetBkColor
DeleteEnhMetaFile
BitBlt
GetPixel
CreatePalette
CreateHatchBrush
CreateCompatibleBitmap
ExcludeClipRect
GetDeviceCaps
SetBkColor
GetMetaFileBitsEx
SetWindowOrgEx
EqualRgn
StretchDIBits
GdiFlush
CreateRectRgn
CreateRectRgnIndirect
LineTo
CreatePatternBrush
GetNearestPaletteIndex
CreateDIBitmap
SetWindowExtEx
ExtFloodFill
GetWinMetaFileBits
PtInRegion
GetPaletteEntries
SetStretchBltMode
SetWinMetaFileBits
GetRgnBox
CloseEnhMetaFile
GetObjectW
PatBlt
CreatePolygonRgn
SetTextColor
GetDIBColorTable
GetClipBox
SetViewportOrgEx
ExtSelectClipRgn
CreateCompatibleDC
OffsetRgn
SelectClipRgn
Rectangle
Polyline
GetEnhMetaFileHeader
RectInRegion
GetEnhMetaFileW
ExtCreatePen

comdlg32

GetSaveFileNameW
GetOpenFileNameW
CommDlgExtendedError
ChooseColorW
ChooseFontW

advapi32

RegCreateKeyW
OpenProcessToken
RegSetValueExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegOpenKeyExA
RegQueryInfoKeyW
GetUserNameW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueExA
RegEnumValueW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegDeleteValueW

shell32

ExtractIconExW
SHFileOperationW
SHGetIconOverlayIndexW
SHBrowseForFolderW
SHGetFolderPathW
ShellExecuteExW
DragQueryPoint
ExtractIconW
DragFinish
SHGetSpecialFolderLocation
SHGetFileInfoW
SHGetMalloc
Shell_NotifyIconW
DragQueryFileW
SHGetPathFromIDListW
DragAcceptFiles

oleaut32

SysStringLen
SysAllocString

wldap32

ord304

Sections

.text
Size: 530KB - Virtual size: 530KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 249KB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 101B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a99aa9e87dc429db65a47a10d6bacd03

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

wldap32

Sections

.text Size: 530KB - Virtual size: 530KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 249KB - Virtual size: 5.5MB

.tls Size: - Virtual size: 101B

.rsrc Size: 17KB - Virtual size: 16KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 530KB - Virtual size: 530KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 249KB - Virtual size: 5.5MB

.tls
Size: - Virtual size: 101B

.rsrc
Size: 17KB - Virtual size: 16KB

.reloc
Size: 10KB - Virtual size: 9KB