d697f1997dbfb6b2700c6443ee3d04b40d79b5c1e3bffdf530eb44e3fe15b7af

Sharing

Copy URL

Twitter E-mail

General

Target

d697f1997dbfb6b2700c6443ee3d04b40d79b5c1e3bffdf530eb44e3fe15b7af
Size

1.0MB
MD5

80f2b7a3e40c5da6bdef38c387823cec
SHA1

8b5a512a711b6f324e4c7b2ed6b9e5ccc44ff555
SHA256

d697f1997dbfb6b2700c6443ee3d04b40d79b5c1e3bffdf530eb44e3fe15b7af
SHA512

6dd81d00ed8ac0ca5e809b7b13352afe6cfaacc2f9e37bbef4e87fe98833125b4dfc8e692e45f6d424cd1ba0caf0325a380fac526404716b3e3db90a1d1ad912
SSDEEP

24576:MT/MWXyidamMJPjbkXwNY6AtOykZj3cQ4:cztdgPqtOc

Score

N/A

Malware Config

Signatures

Files

d697f1997dbfb6b2700c6443ee3d04b40d79b5c1e3bffdf530eb44e3fe15b7af
.exe windows x86

fd379c7e9fcdf9ed5d915255640ef08a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetCancelConnection2A

kernel32

MultiByteToWideChar
GetFileTime
FileTimeToLocalFileTime
CompareFileTime
WaitForSingleObject
GetCommandLineA
GetSystemInfo
GetPrivateProfileSectionNamesA
GetPrivateProfileSectionA
lstrcatA
InterlockedDecrement
InterlockedIncrement
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
GetCurrentDirectoryA
WideCharToMultiByte
FileTimeToSystemTime
LocalFree
FormatMessageA
SetCurrentDirectoryA
LockResource
LoadResource
FindResourceA
VirtualProtect
GlobalUnlock
GlobalLock
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetVersion
lstrcpynA
GetCurrentThread
lstrcmpA
GlobalAlloc
ResumeThread
SetThreadPriority
SuspendThread
CreateEventA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
MulDiv
SizeofResource
GetProcessVersion
GlobalFlags
LocalAlloc
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetCPInfo
GetOEMCP
DuplicateHandle
ReadFile
LockFile
UnlockFile
SetEndOfFile
GetVolumeInformationA
GetStringTypeExA
GetThreadLocale
GetFileAttributesA
GetFileSize
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetErrorMode
RtlUnwind
HeapFree
HeapAlloc
GetTimeZoneInformation
GetSystemTime
HeapReAlloc
ExitProcess
IsBadReadPtr
GetStartupInfoA
GetACP
RaiseException
SetStdHandle
GetFileType
CreateThread
ExitThread
HeapSize
FatalAppExitA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadCodePtr
CompareStringA
GetModuleHandleA
SetEnvironmentVariableA
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
GetLocaleInfoW
lstrcpyA
lstrlenA
WritePrivateProfileStringA
GetTickCount
MoveFileExA
SetLastError
FindFirstFileA
FindNextFileA
FindClose
GetTempPathA
CreateDirectoryA
MoveFileA
CopyFileA
SetFileAttributesA
DeleteFileA
GetSystemDirectoryA
GetWindowsDirectoryA
GetVersionExA
GetFullPathNameA
GetPrivateProfileIntA
GetPrivateProfileStringA
OpenProcess
GetLastError
CreateProcessA
GetShortPathNameA
OpenEventA
SetEvent
ResetEvent
Sleep
LoadLibraryA
GetProcAddress
CloseHandle
CreateFileA
SetFilePointer
GetStdHandle
GetModuleFileNameA
GetLocalTime
GetCurrentThreadId
WriteFile
FlushFileBuffers
FreeLibrary
GlobalFree
CompareStringW

user32

GetSubMenu
GetMenuItemCount
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
IsChild
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
GetScrollInfo
ScrollWindow
IsWindowVisible
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
GetClientRect
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
LoadIconA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
ReleaseDC
GetDC
wvsprintfA
ShowOwnedPopups
SetCursor
GetCursorPos
ValidateRect
GetMessageA
GetDialogBaseUnits
LoadCursorA
GetSysColorBrush
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GetMenuItemID
GetClassNameA
PtInRect
GetDesktopWindow
DestroyMenu
InflateRect
CharUpperA
SetCapture
ReleaseCapture
WaitMessage
WindowFromPoint
InsertMenuA
DeleteMenu
GetMenuStringA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetWindowRect
MapDialogRect
SetWindowPos
ShowWindow
GetCapture
GetActiveWindow
SetActiveWindow
GetAsyncKeyState
GetFocus
SetFocus
GetDlgItem
LoadStringA
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
OemToCharA
CharToOemA
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GrayStringA
GetDlgCtrlID
SendMessageA
RegisterWindowMessageA
PostMessageA
EnumWindows
GetWindowTextA
GetWindowThreadProcessId
EnableWindow
GetParent
TranslateMessage
DispatchMessageA
MessageBoxA
wsprintfA
PeekMessageA
PostQuitMessage
InvalidateRect
UnregisterClassA

gdi32

ArcTo
SetArcDirection
SetTextColor
SetBkColor
GetCurrentPositionEx
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
MoveToEx
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
DPtoLP
CombineRgn
SetRectRgn
GetMapMode
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateDIBPatternBrushPt
CreatePatternBrush
CreateHatchBrush
CreateSolidBrush
ExtCreatePen
CreatePen
GetWindowExtEx
GetStockObject
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
RestoreDC
SaveDC
StartDocA
DeleteDC
GetDeviceCaps
CreateFontIndirectA
SelectObject
GetTextMetricsA
GetTextExtentPoint32A
DeleteObject
CreateRectRgnIndirect
PatBlt
CreateBitmap
GetObjectA
GetClipBox
GetDCOrgEx
GetViewportExtEx
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
CreateRectRgn

advapi32

CreateServiceA
ChangeServiceConfigA
RegEnumValueA
RegOpenKeyA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumKeyA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegConnectRegistryA
LookupPrivilegeValueA
AdjustTokenPrivileges
StartServiceA
OpenSCManagerA
OpenServiceA
ControlService
CloseServiceHandle
QueryServiceStatus
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
OpenProcessToken
ImpersonateLoggedOnUser
CreateProcessAsUserA
RevertToSelf

ole32

CoInitialize
CoCreateInstance
CoUninitialize

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
SHGetFileInfoA

comctl32

PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ord17
ord13
ord14
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_Merge
ImageList_Read
ImageList_Write

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comdlg32

GetFileTitleA

Sections

.text
Size: 368KB - Virtual size: 365KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.vmp0
Size: 500KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fd379c7e9fcdf9ed5d915255640ef08a

Headers

File Characteristics

Imports

mpr

kernel32

user32

gdi32

advapi32

ole32

version

shell32

comctl32

winspool.drv

comdlg32

Sections

.text Size: 368KB - Virtual size: 365KB

.rdata Size: 52KB - Virtual size: 51KB

.data Size: 52KB - Virtual size: 68KB

.idata Size: 16KB - Virtual size: 13KB

.rsrc Size: 24KB - Virtual size: 21KB

.reloc Size: 28KB - Virtual size: 26KB

.vmp0 Size: 500KB - Virtual size: 1.6MB

.text
Size: 368KB - Virtual size: 365KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 52KB - Virtual size: 68KB

.idata
Size: 16KB - Virtual size: 13KB

.rsrc
Size: 24KB - Virtual size: 21KB

.reloc
Size: 28KB - Virtual size: 26KB

.vmp0
Size: 500KB - Virtual size: 1.6MB