2284c8955ac5149bb305ee1d57116c88500c3700b12bdc0605908f166649f7e1

Sharing

Copy URL Twitter E-mail

General

Target

2284c8955ac5149bb305ee1d57116c88500c3700b12bdc0605908f166649f7e1
Size

285KB
MD5

a364c42af41060437b5ae3293e410420
SHA1

754873f7b7e609878bc1bbe35055ac413f94fd38
SHA256

2284c8955ac5149bb305ee1d57116c88500c3700b12bdc0605908f166649f7e1
SHA512

d973e6ab7946acd544be5a53d25f7b273e9a172d3b8bed1d72d2b0046c94ee5c79107d20a2db1b0c003e2f4402cf130cb2de86276b149ef32d2b20c09e6239ef
SSDEEP

3072:Z8DUVBWLrai5L5IKMryxPvyBduauPscvtxiCksnGuCv5R00oXUDvKUA7PIsqkLQ+:Z8DU/gIuUdupEDfoOve7PIsqord

Score

N/A

Malware Config

Signatures

Files

2284c8955ac5149bb305ee1d57116c88500c3700b12bdc0605908f166649f7e1
.exe windows x86

98b659ce28ee81d92de89f421c27c9ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgW
GetFileTitleW

advapi32

RegEnumKeyW
RegQueryValueW
ConvertStringSDToSDRootDomainW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegOpenKeyW
RegQueryValueExW

wininet

HttpOpenRequestW
InternetReadFile
InternetOpenW
InternetGetLastResponseInfoW
InternetConnectW
InternetCloseHandle

ole32

CoTaskMemAlloc
CoRevokeClassObject
CoTaskMemFree
CoInitializeEx
CoGetClassObject
CoFreeUnusedLibraries
CLSIDFromString
CLSIDFromProgID
CreateILockBytesOnHGlobal
OleFlushClipboard
OleInitialize
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoRegisterChannelHook

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW

user32

SetPropW
SetMenuItemBitmaps
SetForegroundWindow
SetFocus
SetCursor
SetCapture
SetActiveWindow
SendMessageW
SendDlgItemMessageW
SendDlgItemMessageA
ScreenToClient
RemovePropW
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterClipboardFormatW
RegisterClassW
RedrawWindow
PtInRect
PostThreadMessageW
PostQuitMessage
PostMessageW
PeekMessageW
OffsetRect
MoveWindow
ModifyMenuW
MessageBoxW
MessageBeep
MapWindowPoints
MapDialogRect
LoadImageW
LoadIconW
LoadCursorW
LoadBitmapW
IsWindowVisible
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
IsDialogMessageW
IsChild
InvalidateRgn
InvalidateRect
IntersectRect
GrayStringW
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
SetRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
GetWindow
GetTopWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetPropW
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessageTime
GetMessagePos
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetMenu
GetLastActivePopup
GetKeyState
GetForegroundWindow
GetFocus
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetClassInfoExW
GetCapture
GetActiveWindow
EqualRect
EndPaint
EndDialog
EnableWindow
EnableMenuItem
DrawTextW
DrawTextExW
DispatchMessageW
DestroyWindow
DestroyMenu
DefWindowProcW
CreateWindowExW
CreateDialogIndirectParamW
CopyRect
CopyAcceleratorTableW
SetWindowContextHelpId
SetWindowLongW
SetWindowPos
SetWindowTextW
SetWindowsHookExW
SystemParametersInfoA
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
WinHelpW
ClientToScreen
CheckMenuItem
mouse_event
GetWindowRect
BeginPaint
CharUpperW
CharNextW
CallWindowProcW
CallNextHookEx

oledlg

OleUIBusyW

shell32

ShellExecuteW
SHGetFolderPathW

kernel32

lstrlenA
lstrcmpW
lstrcmpA
WritePrivateProfileStringW
WriteFile
WriteConsoleA
WideCharToMultiByte
VirtualQuery
VirtualFree
VirtualAlloc
UnlockFile
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetStdHandle
SetLastError
SetHandleCount
SetFilePointer
SetErrorMode
SetEnvironmentVariableA
SetEndOfFile
RtlUnwind
ReadFile
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
MulDiv
LockResource
LockFile
LocalReAlloc
LocalFree
LocalAlloc
LoadResource
LoadLibraryW
LoadLibraryA
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidLocale
IsDebuggerPresent
IsDBCSLeadByteEx
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalFree
GlobalFlags
GlobalFindAtomW
GlobalAlloc
GlobalAddAtomW
GetVolumeInformationW
GetVersionExA
GetVersion
GetUserDefaultLCID
GetTimeZoneInformation
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetProcessHeap
GetProcAddress
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameW
GetFileType
GetFileTime
GetFileSize
GetFileAttributesW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetCommandLineA
GetCPInfo
GetACP
FreeResource
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageW
FlushFileBuffers
FindResourceW
FindFirstFileW
FindClose
FileTimeToSystemTime
ExitProcess
EnumResourceLanguagesW
EnterCriticalSection
CreateFileW
CreateFileA
CreateDirectoryW
ConvertDefaultLocale
CompareStringW
CloseHandle
CompareStringA

oleaut32

VariantCopy
SafeArrayDestroy
SysAllocString
SysAllocStringLen
SysFreeString
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantInit
OleCreateFontIndirect
VariantClear
VariantChangeType

comctl32

InitCommonControlsEx

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

gdi32

StretchBlt
SetWindowExtEx
SetViewportOrgEx
SetTextColor
SetMapMode
SetBkMode
SetBkColor
SelectObject
ScaleWindowExtEx
ScaleViewportExtEx
SaveDC
TextOutW
RectVisible
PtVisible
OffsetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
GetTextColor
GetStockObject
GetRgnBox
GetObjectW
GetMapMode
GetDeviceCaps
GetClipBox
GetCharABCWidthsFloatW
GetBkColor
ExtTextOutW
ExtSelectClipRgn
Escape
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgnIndirect
CreateCompatibleDC
RestoreDC

Exports

Exports

DeleteConfigFiles

Sections

.text
Size: 100KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 138KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98b659ce28ee81d92de89f421c27c9ad

Headers

File Characteristics

Imports

comdlg32

advapi32

wininet

ole32

shlwapi

user32

oledlg

shell32

kernel32

oleaut32

comctl32

winspool.drv

gdi32

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 104KB

.rdata Size: 138KB - Virtual size: 140KB

.data Size: 13KB - Virtual size: 112KB

.idata Size: 9KB - Virtual size: 12KB

.rsrc Size: 23KB - Virtual size: 24KB

.text
Size: 100KB - Virtual size: 104KB

.rdata
Size: 138KB - Virtual size: 140KB

.data
Size: 13KB - Virtual size: 112KB

.idata
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 23KB - Virtual size: 24KB