adcb65c291e9f0e89138b3eebfb3a88e311a282257944749663d1c373d554910

Sharing

Copy URL Twitter E-mail

General

Target

adcb65c291e9f0e89138b3eebfb3a88e311a282257944749663d1c373d554910
Size

716KB
MD5

0b03aa4e7c43bff34677ff2ccfb4fb40
SHA1

513df95852d096d66015980a5c2bd8f3441aad2b
SHA256

adcb65c291e9f0e89138b3eebfb3a88e311a282257944749663d1c373d554910
SHA512

cab3b65041232f59f68d94b891b15bb659eed5cb185d27cba440734953c2c8011d80b5e83dee9667aaf0618d7f2f19319d572a1d8ee2b356cd3ce348347b48d3
SSDEEP

12288:xEwurfWP3oYVSDXOLQVxtItgN4w2oddLhyn5JJ9wSQZ9VPAwLPaGu:x7fVSLOLQVxubeGoVPLPaGu

Score

N/A

Malware Config

Signatures

Files

adcb65c291e9f0e89138b3eebfb3a88e311a282257944749663d1c373d554910
.exe windows x86

9694aa8b79805efa797a10e3ec1e6c67

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
GlobalSize
GetTickCount
RtlUnwind
ExitProcess
RaiseException
CopyFileA
lstrlenW
GetStartupInfoA
ExitThread
GetCommandLineA
GetFileType
HeapReAlloc
HeapSize
HeapAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
UnhandledExceptionFilter
HeapFree
LCMapStringA
LCMapStringW
TerminateProcess
FileTimeToLocalFileTime
SetStdHandle
GetACP
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
FatalAppExitA
MulDiv
LocalAlloc
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
FileTimeToSystemTime
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SetErrorMode
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetFileAttributesA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
SizeofResource
GlobalFlags
FormatMessageA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
SetLastError
LocalFree
SetCommMask
WriteFile
WaitCommEvent
ClearCommError
ReadFile
OutputDebugStringA
GetOverlappedResult
GetCommState
SetCommState
Sleep
DeleteFileA
GetLastError
WaitForSingleObject
GetFileTime
CompareFileTime
ResetEvent
SetEvent
CreateEventA
CreateFileA
CloseHandle
lstrcmpA
lstrcpyA
SuspendThread
SetThreadPriority
ResumeThread
GetCurrentThread
GlobalAlloc
GetProfileStringA
GetStringTypeExA
GetShortPathNameA
GetThreadLocale
GetVolumeInformationA
GetFullPathNameA
lstrcpynA
MoveFileA
FindFirstFileA
FindClose
LockFile
SetEndOfFile
UnlockFile
GetCurrentProcess
FlushFileBuffers
SetFilePointer
WideCharToMultiByte
DuplicateHandle
MultiByteToWideChar
InterlockedIncrement
lstrlenA
InterlockedDecrement
GetVersion
LoadLibraryA
FreeLibrary
lstrcmpiA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalDeleteAtom
GlobalAddAtomA
GlobalFindAtomA
GlobalLock
GetModuleHandleA
GetProcAddress
LockResource
GlobalUnlock
GlobalFree
GetModuleFileNameA
FindResourceA
LoadResource
SetCommTimeouts
SetupComm
PurgeComm
GetStringTypeA
GetStringTypeW
IsBadReadPtr
lstrcatA
GetEnvironmentStrings
GetEnvironmentStringsW
SetConsoleCtrlHandler

user32

MessageBeep
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
RegisterClipboardFormatA
RemoveMenu
PostThreadMessageA
DestroyIcon
InflateRect
GetMenuStringA
DeleteMenu
InsertMenuA
WindowFromPoint
GetWindowThreadProcessId
WaitMessage
ReleaseCapture
SetCapture
GetSysColorBrush
GetDialogBaseUnits
GetDesktopWindow
PtInRect
GetClassNameA
DestroyMenu
MapDialogRect
SetWindowContextHelpId
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
ShowOwnedPopups
PostQuitMessage
CharUpperA
wvsprintfA
OemToCharA
CharToOemA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
SetRectEmpty
LoadAcceleratorsA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
CharNextA
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
ScrollWindowEx
IsDialogMessageA
CopyRect
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
LoadCursorA
SetCursor
GetWindowLongA
LoadStringA
SetWindowLongA
wsprintfA
PostMessageA
GetParent
InvalidateRect
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
LoadIconA
CharLowerA
EnableWindow
BeginDeferWindowPos
CheckMenuItem
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode

gdi32

PolyDraw
PolyBezierTo
DeleteObject
SetColorAdjustment
CreateRectRgn
SelectClipPath
GetClipRgn
PlayMetaFileRecord
GetObjectType
ExtSelectClipRgn
PlayMetaFile
GetDeviceCaps
EnumMetaFile
GetWindowExtEx
CreatePen
GetViewportExtEx
CreateSolidBrush
CreateHatchBrush
ExtCreatePen
CreateDIBPatternBrushPt
PtVisible
CreatePatternBrush
TextOutA
ExtTextOutA
RectVisible
ArcTo
PatBlt
Escape
BitBlt
CreateCompatibleDC
CreateRectRgnIndirect
GetTextMetricsA
CreateFontIndirectA
GetTextExtentPoint32A
SetRectRgn
CombineRgn
GetMapMode
GetTextColor
GetBkColor
DPtoLP
CopyMetaFileA
CreateDCA
LPtoDP
CreateDIBitmap
GetTextExtentPointA
GetCurrentPositionEx
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
LineTo
MoveToEx
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
GetStockObject
SelectObject
RestoreDC
SaveDC
StartDocA
DeleteDC
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
SetArcDirection
PolylineTo
GetClipBox
GetDCOrgEx
SetTextAlign

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegEnumKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegSetValueA
RegQueryValueA
RegCreateKeyA

shell32

ExtractIconA
DragQueryFileA
DragFinish
SHGetFileInfoA
DragAcceptFiles

comctl32

ImageList_Destroy
ord17
ord13
ord14
ImageList_Create
ImageList_LoadImageA
ImageList_Merge
ImageList_Read
ImageList_Write

oledlg

ord8

ole32

SetConvertStg
OleRegGetUserType
WriteFmtUserTypeStg
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
WriteClassStg
CreateBindCtx
OleDuplicateData
CoRegisterClassObject
CoDisconnectObject
ReadFmtUserTypeStg
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CreateStreamOnHGlobal
ReadClassStg
StringFromCLSID
CoTreatAsClass
ReleaseStgMedium
CoTaskMemFree
CoRevokeClassObject
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
CoCreateInstance
OleRun
CoTaskMemAlloc

olepro32

ord253

oleaut32

VarCyFromStr
LoadTypeLi
SysStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
SafeArrayAccessData
SysStringByteLen
SysAllocStringByteLen
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
VariantCopy
SafeArrayUnaccessData
SysAllocString
SysReAllocStringLen
VariantChangeType
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

Sections

.text
Size: 448KB - Virtual size: 445KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

llnmfbm
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9694aa8b79805efa797a10e3ec1e6c67

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 448KB - Virtual size: 445KB

.rdata Size: 104KB - Virtual size: 101KB

.data Size: 24KB - Virtual size: 39KB

.idata Size: 16KB - Virtual size: 15KB

.rsrc Size: 24KB - Virtual size: 22KB

.reloc Size: 60KB - Virtual size: 60KB

llnmfbm Size: 36KB - Virtual size: 35KB

.text
Size: 448KB - Virtual size: 445KB

.rdata
Size: 104KB - Virtual size: 101KB

.data
Size: 24KB - Virtual size: 39KB

.idata
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 24KB - Virtual size: 22KB

.reloc
Size: 60KB - Virtual size: 60KB

llnmfbm
Size: 36KB - Virtual size: 35KB