5ce2bb30f32524b4714a967c914a52309ef3c0926e33b45ba3ee5982c845c997

Sharing

Copy URL Twitter E-mail

General

Target

5ce2bb30f32524b4714a967c914a52309ef3c0926e33b45ba3ee5982c845c997
Size

580KB
MD5

0aad293cf539e63e135c92e7b71163d0
SHA1

b38cb55286ea23701af900f12a57f5d08cb5ca1e
SHA256

5ce2bb30f32524b4714a967c914a52309ef3c0926e33b45ba3ee5982c845c997
SHA512

69893f5951445b06574bf7e22ba92981b07cf993d6eb0f888c4aa1cc203ee558291d412e6130b53da42b430557620242c57777a4eea8a8a165698e01a5bcf316
SSDEEP

12288:R5frWo7tAqH5n5sjsax0YNs9ttgkmtq1TIkKmXk40VL7:R5frWW5e67tgkmtq1MxmX50VL7

Score

N/A

Malware Config

Signatures

Files

5ce2bb30f32524b4714a967c914a52309ef3c0926e33b45ba3ee5982c845c997
.exe windows x86

6c18e4946b02127acf1097d07e0da9a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
VirtualProtect
GetSystemInfo
VirtualQuery
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetTimeFormatA
GetDateFormatA
GetACP
GetOEMCP
GetCPInfo
HeapReAlloc
IsBadCodePtr
SetStdHandle
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetProcessHeap
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapSize
CreateThread
ExitThread
HeapAlloc
FindResourceA
GlobalAddAtomA
GetProfileStringA
GetLocalTime
CreatePipe
OpenProcess
GetExitCodeProcess
TerminateProcess
TerminateThread
PeekNamedPipe
CreateProcessW
DebugBreak
InterlockedExchange
ExitProcess
HeapFree
RaiseException
RtlUnwind
GetVersionExA
GetStartupInfoW
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
SizeofResource
WritePrivateProfileStringW
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetFileTime
GetFileSize
lstrcmpiW
GetThreadLocale
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
DuplicateHandle
FormatMessageW
LocalFree
GlobalFree
lstrcmpW
GlobalAlloc
lstrcmpA
lstrcmpiA
GetCurrentThread
lstrlenW
InterlockedDecrement
InterlockedIncrement
CreateEventW
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
CloseHandle
lstrcpynW
GlobalLock
GlobalUnlock
MulDiv
SetLastError
GetModuleHandleA
LoadLibraryA
lstrlenA
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
GetVersion
lstrcatW
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
lstrcpyW
GetModuleHandleW
LoadLibraryW
GetProcAddress
WideCharToMultiByte
SetCurrentDirectoryW
DeleteFileW
CopyFileW
GetFileAttributesW
FreeLibrary
GetLastError
GetCommandLineW
GetModuleFileNameW
CreateDirectoryW
Sleep
CreateFileA
IsBadReadPtr
WaitForSingleObject

user32

EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
PostMessageW
UpdateWindow
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
PeekMessageW
DispatchMessageW
GetFocus
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
GetTopWindow
MessageBoxW
IsChild
GetParent
GetCapture
WinHelpW
wsprintfW
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
TabbedTextOutW
GetDlgItem
EnableWindow
GetSysColor
GetClientRect
IsRectEmpty
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
GetKeyState
DefWindowProcW
DestroyWindow
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
DrawTextW
GrayStringW
GetCursorPos
ValidateRect
GetActiveWindow
TranslateMessage
GetMessageW
PostQuitMessage
SetCursor
RemovePropW
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowLongW
SetWindowLongW
SetWindowPos
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
EnumChildWindows
InflateRect
InvalidateRect
LoadIconW
SendMessageW
DrawIcon
GetSystemMetrics
IsIconic
GetWindowRect
GetWindowPlacement
SystemParametersInfoW
IntersectRect
OffsetRect
RegisterWindowMessageW
CreateDialogIndirectParamW
EndDialog
MapDialogRect
PostThreadMessageW
RegisterClipboardFormatW
MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableW
CharNextW
GetMenuStringW
LoadStringW
DestroyMenu
GetSysColorBrush
LoadCursorW
GetDesktopWindow
PtInRect
GetClassNameW
GetMenuItemID
CharUpperW
SetWindowContextHelpId

gdi32

SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
SetMapMode
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetMapMode
PatBlt
CreateFontIndirectW
DPtoLP
GetTextColor
GetBkColor
LPtoDP
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox
Rectangle
CreatePen
CreateSolidBrush
CreateCompatibleDC
BitBlt
CreateICW
ExtTextOutA
GetTextExtentPointA
CreateDIBitmap
CreateCompatibleBitmap

comdlg32

GetOpenFileNameW
GetSaveFileNameW
GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW

shell32

SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHFileOperationW

comctl32

ord17
ImageList_Destroy

oledlg

OleUIBusyW

ole32

CoFreeUnusedLibraries
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize

olepro32

ord253

oleaut32

SysStringLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

shlwapi

PathIsRelativeW
PathFileExistsW

Sections

.text
Size: 348KB - Virtual size: 347KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6c18e4946b02127acf1097d07e0da9a4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

shlwapi

Sections

.text Size: 348KB - Virtual size: 347KB

.rdata Size: 72KB - Virtual size: 71KB

.data Size: 24KB - Virtual size: 42KB

.rsrc Size: 72KB - Virtual size: 69KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 348KB - Virtual size: 347KB

.rdata
Size: 72KB - Virtual size: 71KB

.data
Size: 24KB - Virtual size: 42KB

.rsrc
Size: 72KB - Virtual size: 69KB

.rmnet
Size: 60KB - Virtual size: 60KB