06b6feac49accb9e729b09dbb394d5584ee58d364ceed2ffe0f79db209647e49

Sharing

Copy URL

Twitter E-mail

General

Target

06b6feac49accb9e729b09dbb394d5584ee58d364ceed2ffe0f79db209647e49
Size

836KB
MD5

0c593771183bd571d872d884b45fc650
SHA1

15479a845b62ee5b667e21949eface5847475523
SHA256

06b6feac49accb9e729b09dbb394d5584ee58d364ceed2ffe0f79db209647e49
SHA512

82abb34e84aa0530be30c6d9b0da8af0d0819c8e503fd74053823b51db8b9cd25d4c74e75e9f4a390614f2dff914c278ae75ad27e5fb4286f06098719d536f40
SSDEEP

6144:6iBB3+uNE66HkHWADZenX+2lgHvnC3/e3QBcHcrz4Hi5:6iBp+PDHkHWAD4ncvCvewxrzA

Score

N/A

Malware Config

Signatures

Files

06b6feac49accb9e729b09dbb394d5584ee58d364ceed2ffe0f79db209647e49
.exe windows x86

e1e9ff4928a3529c193e575999619d6f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupCopyOEMInfA

shlwapi

PathFindExtensionA
PathIsDirectoryA
PathFileExistsA
PathRemoveFileSpecA

kernel32

HeapFree
HeapAlloc
RaiseException
ExitProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapReAlloc
HeapSize
GetTimeZoneInformation
GetACP
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
RtlUnwind
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetDriveTypeA
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetTickCount
WritePrivateProfileStringA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DuplicateHandle
SetErrorMode
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
GetProcessVersion
GlobalAlloc
lstrcmpA
GetCurrentThread
MulDiv
FindNextFileA
SetLastError
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
FindFirstFileA
FindClose
lstrcpynA
GetFileTime
GetFileSize
GetFileAttributesA
MultiByteToWideChar
InterlockedIncrement
GetVersion
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
CreateFileA
lstrlenW
WideCharToMultiByte
Sleep
InterlockedDecrement
GetSystemDefaultLangID
CopyFileA
FormatMessageA
SetCurrentDirectoryA
GetTempPathA
GetModuleFileNameA
GetVersionExA
GetSystemDirectoryA
GetCurrentDirectoryA
lstrcatA
lstrcpyA
LoadLibraryA
GetProcAddress
FreeLibrary
GetWindowsDirectoryA
GetPrivateProfileStringA
DeleteFileA
FindResourceA
LoadResource
SizeofResource
LockResource
lstrlenA
GetCurrentProcess
GetLastError
LocalFree
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
CloseHandle
InterlockedExchange
GetProfileStringA
IsBadWritePtr

user32

MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
CharNextA
CharUpperA
DestroyMenu
GetDesktopWindow
PtInRect
GetSysColorBrush
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
PostQuitMessage
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
ScreenToClient
CopyRect
IsWindowVisible
MessageBoxA
IsChild
WinHelpA
GetClassInfoA
RegisterClassA
PostThreadMessageA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SetWindowLongA
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
RegisterClipboardFormatA
InflateRect
InvalidateRect
EndDialog
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowRect
DefDlgProcA
IsWindowUnicode
AdjustWindowRectEx
PostMessageA
GetParent
EnableWindow
SendMessageA
wsprintfA
LoadStringA
ReleaseDC
GetDC
LoadBitmapA
GetDlgItem
FindWindowA
GetDlgCtrlID
GetNextDlgTabItem
EnumWindows
GetWindowTextA
GetClassNameA
LoadIconA
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
SetWindowPos
ShowWindow
GetTopWindow
GetWindow
SetCursor
LoadCursorA
UpdateWindow
IsWindowEnabled
SetFocus
GetFocus
GetWindowLongA
MapDialogRect
GetCapture
GetActiveWindow
SetActiveWindow
CheckMenuItem

gdi32

GetTextColor
GetBkColor
DPtoLP
LPtoDP
PatBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateSolidBrush
GetWindowExtEx
GetViewportExtEx
SetBkColor
DeleteObject
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateDIBitmap
SetTextColor
GetClipBox
GetObjectA
GetMapMode
GetDeviceCaps
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

CryptDestroyHash
SetEntriesInAclA
BuildExplicitAccessWithNameA
GetNamedSecurityInfoA
RegCreateKeyExA
CryptAcquireContextA
CryptCreateHash
CryptHashData
CryptGetHashParam
SetNamedSecurityInfoA
CryptReleaseContext
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
AllocateAndInitializeSid
OpenProcessToken
FreeSid
LookupPrivilegeValueA
AdjustTokenPrivileges

shell32

ShellExecuteA

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
CoTaskMemAlloc
CoRevokeClassObject

olepro32

ord253

oleaut32

SysFreeString
SysAllocString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocStringByteLen
SysStringLen

Sections

.text
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 364KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

cvxvlk
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

oxxoybn
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

$�
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e1e9ff4928a3529c193e575999619d6f

Headers

File Characteristics

Imports

setupapi

shlwapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 184KB - Virtual size: 184KB

.rdata Size: 48KB - Virtual size: 44KB

.data Size: 24KB - Virtual size: 38KB

.rsrc Size: 364KB - Virtual size: 362KB

cvxvlk Size: 8KB - Virtual size: 4KB

Size: 116KB - Virtual size: 116KB

oxxoybn Size: - Virtual size: 4KB

$� Size: 88KB - Virtual size: 88KB

.text
Size: 184KB - Virtual size: 184KB

.rdata
Size: 48KB - Virtual size: 44KB

.data
Size: 24KB - Virtual size: 38KB

.rsrc
Size: 364KB - Virtual size: 362KB

cvxvlk
Size: 8KB - Virtual size: 4KB

oxxoybn
Size: - Virtual size: 4KB

$�
Size: 88KB - Virtual size: 88KB