d78451e1fdc806aa71d39b3fde135cd7447d586dcdc322e2e617086a691cc66c

Sharing

Copy URL Twitter E-mail

General

Target

d78451e1fdc806aa71d39b3fde135cd7447d586dcdc322e2e617086a691cc66c
Size

344KB
MD5

1fdb4be497173eec3065ea6eb2baacbe
SHA1

0e39507907e2822cdf131279d6776caec7ea1145
SHA256

d78451e1fdc806aa71d39b3fde135cd7447d586dcdc322e2e617086a691cc66c
SHA512

88ff9cd9918ce7aea9646a5d192a02ec65470ed0ab1b3193e9d53506ae9c2c77007f7f6d7ae1b74fb74ed356e1b8ac441992c198a73060c7739dfca6f99eb76a
SSDEEP

3072:zeg/Fg8X2gIo/LsuoOE3VSEWA9dietrspyA5PsicnSRfQUv8NDTJbCWBg2Zq09P3:zRg8GgIasebEWA3iCYUW98NBVhN

Score

N/A

Malware Config

Signatures

Files

d78451e1fdc806aa71d39b3fde135cd7447d586dcdc322e2e617086a691cc66c
.exe windows x86

fdeed375aa91fcf103bcc200098d621e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ConvertDefaultLocale
GetLocalTime
lstrcpyA
CompareStringA
GetProcessHeap
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetTimeZoneInformation
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
HeapReAlloc
VirtualAlloc
VirtualFree
FindFirstFileW
InitializeCriticalSectionAndSpinCount
IsValidCodePage
GetOEMCP
GetThreadLocale
GetCPInfo
ExitProcess
SetFilePointer
SetHandleCount
DeleteCriticalSection
Sleep
InterlockedDecrement
GetCurrentThreadId
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
GetStartupInfoA
GetCommandLineA
HeapFree
GetFileType
SetStdHandle
LeaveCriticalSection
EnterCriticalSection
GetFullPathNameA
GetDriveTypeA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
FindFirstFileA
RtlUnwind
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
MulDiv
GlobalAlloc
CreateFileA
IsValidLocale
SetLastError
GetConsoleTitleA
GetProcAddress
HeapAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTimeFormatA
GetDateFormatA
lstrlenW
GetConsoleWindow
GetFileSizeEx
GetSystemInfo
CloseHandle
ReadFile
WriteFile
EnumSystemLanguageGroupsA
AllocConsole
GetStdHandle
GetConsoleScreenBufferInfo
SetConsoleScreenBufferSize
GlobalLock
GlobalFree
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetLastError
GetACP
GetModuleFileNameW
GetThreadContext
GetModuleHandleA
CompareStringW
HeapCreate
LoadLibraryA

user32

CheckMenuItem
CreateAcceleratorTableA
DefWindowProcA
SetTimer
InvalidateRect
SendMessageA
PostQuitMessage
IsDlgButtonChecked
EnumChildWindows
GetDlgCtrlID
PeekMessageA
RegisterWindowMessageW
DrawMenuBar
wsprintfA
RegisterClassExW
TranslateMessage
DispatchMessageA
SendDlgItemMessageW
IsWindowEnabled
GetPropW
SetFocus
GetWindowTextW
SetCapture
SendDlgItemMessageA
GetMenu
EnableMenuItem
GetAsyncKeyState
SetWindowTextA
GetSystemMetrics
GetWindow
FindWindowW
LoadImageA
GetDC
DestroyWindow
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
UpdateWindow
ShowWindow
CreateWindowExA
MessageBoxA
RegisterClassA
LoadCursorA
LoadIconA
GetClientRect
DispatchMessageW
GetMessageW
FillRect
OffsetRect
GetWindowRect
CreatePopupMenu
SetRect
EndPaint
BeginPaint
GetCursorPos
CopyImage
InsertMenuItemW
GetWindowTextLengthA
GetDlgItem
EnableWindow
GetPropA
EndDialog
SetPropA
SetForegroundWindow
RemovePropA
GetFocus
DrawFocusRect
SetScrollPos
GetScrollInfo
SetScrollInfo
SetCaretPos
LoadBitmapA
ReleaseDC
CreateWindowExW
MoveWindow
TrackPopupMenuEx
DestroyMenu
GetMenuItemCount
InsertMenuItemA
MapWindowPoints

gdi32

LineTo
BitBlt
CreateDIBSection
GetPixel
CreatePen
CreateSolidBrush
FillRgn
DeleteObject
GetCurrentPositionEx
MoveToEx
GetBitmapDimensionEx
Ellipse
SelectClipRgn
GetStockObject
GetObjectA
CreateCompatibleDC
SelectObject
GetDeviceCaps
GetDIBits
CreateCompatibleBitmap

comdlg32

FindTextW

advapi32

RegOpenKeyExA
RegEnumKeyA

shell32

SHAddToRecentDocs
SHGetMalloc

ole32

CoInitialize
CoCreateInstance

wininet

InternetFindNextFileA
FtpFindFirstFileA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetOpenA
InternetCloseHandle
HttpOpenRequestA
HttpSendRequestA
FtpOpenFileA
GopherOpenFileA
InternetReadFile
InternetSetStatusCallback
InternetConnectA
FtpSetCurrentDirectoryA

ws2_32

WSASocketA
inet_ntoa
ntohs

netapi32

NetServerEnum
NetApiBufferFree

msi

ord281
ord278

msvfw32

ord2
DrawDibOpen
DrawDibDraw
MCIWndCreateA

crypt32

CertGetValidUsages
CertOIDToAlgId
CertIsRDNAttrsInCertificateName

iphlpapi

GetAdaptersInfo
GetTcpTable

shlwapi

UrlUnescapeA
UrlUnescapeW
PathFindExtensionW

comctl32

ImageList_Add
ImageList_Create

gdiplus

GdipCloneBrush
GdipCreateFont
GdipGraphicsClear
GdipCreateFromHDC
GdipAddPathRectangleI
GdipCreateSolidFill
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipDisposeImage
GdipCloneImage
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteGraphics
GdipDeletePath
GdipCreatePath
GdipDeletePen
GdipCreatePen1
GdipDeleteBrush
GdipAlloc
GdipFree
GdiplusStartup
GdiplusShutdown
GdipDeleteFont

dbghelp

MiniDumpWriteDump

powrprof

EnumPwrSchemes

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdeed375aa91fcf103bcc200098d621e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

wininet

ws2_32

netapi32

msi

msvfw32

crypt32

iphlpapi

shlwapi

comctl32

gdiplus

dbghelp

powrprof

Sections

.text Size: 132KB - Virtual size: 132KB

.rdata Size: 33KB - Virtual size: 33KB

.data Size: 6KB - Virtual size: 13KB

.rsrc Size: 156KB - Virtual size: 155KB

.reloc Size: 11KB - Virtual size: 10KB

.text
Size: 132KB - Virtual size: 132KB

.rdata
Size: 33KB - Virtual size: 33KB

.data
Size: 6KB - Virtual size: 13KB

.rsrc
Size: 156KB - Virtual size: 155KB

.reloc
Size: 11KB - Virtual size: 10KB