dfc0e7637bb2aa4cad5471384f741f0168e50318f9fd04664b6983124c8c7d2c

Sharing

Copy URL

Twitter E-mail

General

Target

dfc0e7637bb2aa4cad5471384f741f0168e50318f9fd04664b6983124c8c7d2c
Size

728KB
MD5

0004e33127de210c989692a2da52db30
SHA1

33adb243b608e624e04a00efdbac10b96ad4c090
SHA256

dfc0e7637bb2aa4cad5471384f741f0168e50318f9fd04664b6983124c8c7d2c
SHA512

3a261c78c711f35db6f4aba53cd87d16878a496c48c04cfa890142a652945d81b36bde38b2ed2d93fdf00ea28a503f3a96320512f260880ceab7a19dad9f3e18
SSDEEP

12288:BrZyRzFa+40q4lMLMhd9KvKJfNdziTjcyy1XiZWmB4LFnwfITsJV+3PaGi:BrZwzaX4eLMhdXJVdzOji1XiZWmB4lwZ

Score

N/A

Malware Config

Signatures

Files

dfc0e7637bb2aa4cad5471384f741f0168e50318f9fd04664b6983124c8c7d2c
.exe windows x86

57b0ded451fe11af0f26a982994af50f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
IsBadCodePtr
IsBadReadPtr
GetTimeZoneInformation
LCMapStringW
LCMapStringA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
GetLocaleInfoW
GetStringTypeA
SetUnhandledExceptionFilter
GetCurrentProcessId
QueryPerformanceCounter
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
HeapSize
HeapReAlloc
TerminateProcess
GetCommandLineA
GetStartupInfoA
GetSystemTimeAsFileTime
ExitProcess
RtlUnwind
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapFree
HeapAlloc
SetEnvironmentVariableA
FreeConsole
AllocConsole
WriteConsoleA
SetErrorMode
GetOEMCP
GetCPInfo
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GlobalFlags
GetPrivateProfileStringA
WritePrivateProfileStringA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
RaiseException
InterlockedIncrement
GlobalGetAtomNameA
GlobalFindAtomA
lstrcatA
lstrcmpW
FreeResource
GlobalAddAtomA
InterlockedDecrement
GetCurrentThread
GetCurrentThreadId
GlobalDeleteAtom
lstrcmpA
GetModuleFileNameA
GetModuleHandleA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
SetLastError
GlobalFree
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
GetProcAddress
CloseHandle
LoadLibraryA
FreeLibrary
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FindResourceA
LoadResource
LockResource
SizeofResource
GetTickCount
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
InterlockedExchange
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetStringTypeW
GetLocalTime

user32

GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
IsWindow
IsChild
GetForegroundWindow
SetActiveWindow
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
GetScrollRange
SetScrollPos
UpdateWindow
GetMenu
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
GetClassInfoA
RegisterClassA
UnregisterClassA
DefWindowProcA
CallWindowProcA
EndPaint
GetClassLongA
CharUpperA
GetCursor
RegisterClassExA
LoadIconA
SetWindowPos
GetSystemMetrics
GetWindowRect
SystemParametersInfoA
OffsetRect
IntersectRect
IsIconic
GetWindowPlacement
EndDialog
PtInRect
GetWindow
SetWindowContextHelpId
MapDialogRect
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
CreateWindowExA
GetCapture
WinHelpA
RegisterWindowMessageA
TabbedTextOutA
DrawTextA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
MessageBoxA
GetLastActivePopup
DrawTextExA
GrayStringA
ClientToScreen
GetWindowDC
BeginPaint
PostMessageA
SendMessageA
LoadBitmapA
EnableWindow
FillRect
GetDC
ReleaseDC
InvalidateRect
ShowScrollBar
GetClientRect
SetForegroundWindow
BringWindowToTop
OpenIcon
SetTimer
KillTimer
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
PostQuitMessage
UnhookWindowsHookEx
GetDlgItem
SendDlgItemMessageA
IsDialogMessageA
GetNextDlgTabItem
CreateDialogIndirectParamA
GetDesktopWindow
CharNextA
GetSysColorBrush
LoadCursorA
wsprintfA
IsRectEmpty
SetRect
CopyAcceleratorTableA
InvalidateRgn
SetCapture
ReleaseCapture
GetNextDlgGroupItem
MessageBeep
DestroyMenu
RegisterClipboardFormatA
PostThreadMessageA
UnionRect
WindowFromPoint
CopyRect
GetWindowLongA
SetWindowTextA
GetDlgCtrlID
SetWindowLongA
MoveWindow
ShowWindow
IsWindowEnabled
SetFocus
GetParent
GetFocus
GetWindowTextA
GetWindowTextLengthA
SetCursor

gdi32

DeleteObject
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
CreateRectRgnIndirect
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
GetTextMetricsA
SetMapMode
RestoreDC
SaveDC
GetClipBox
CreateBitmap
GetDeviceCaps
CreateFontA
GetTextExtentPoint32A
CreateFontIndirectA
CreatePatternBrush
CreateSolidBrush
BitBlt
GetGlyphOutlineW
SetDIBitsToDevice
CreateDIBSection
CreateCompatibleDC
SetTextColor
SetBkColor
SetBkMode
ExtSelectClipRgn
GetObjectA
GetStockObject

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

ShellExecuteA

comctl32

FlatSB_EnableScrollBar
InitializeFlatSB
ord17

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoInitialize

oleaut32

VariantCopy
SysAllocString
SafeArrayDestroy
SystemTimeToVariantTime
OleCreateFontIndirect
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
SysFreeString

ws2_32

accept
closesocket
WSACleanup
WSAStartup
connect
sendto
recvfrom
socket
send
recv
ntohs
inet_addr
gethostbyname
htons
WSASetLastError
listen
WSAGetLastError
getpeername
select
htonl
bind
WSAAsyncSelect

Sections

.text
Size: 504KB - Virtual size: 501KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57b0ded451fe11af0f26a982994af50f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 504KB - Virtual size: 501KB

.rdata Size: 116KB - Virtual size: 115KB

.data Size: 16KB - Virtual size: 2.3MB

.rsrc Size: 88KB - Virtual size: 87KB

.text
Size: 504KB - Virtual size: 501KB

.rdata
Size: 116KB - Virtual size: 115KB

.data
Size: 16KB - Virtual size: 2.3MB

.rsrc
Size: 88KB - Virtual size: 87KB