9168a3f59c539a701906062cfa0287d6d905df30ccd6e82322ff3ff3133c683e

Sharing

Copy URL Twitter E-mail

General

Target

9168a3f59c539a701906062cfa0287d6d905df30ccd6e82322ff3ff3133c683e
Size

504KB
MD5

8ecdd228c26a399d5d74edc0106ab66d
SHA1

cb204f9069da5be45d0fde2cb8a59c29d79cb0fd
SHA256

9168a3f59c539a701906062cfa0287d6d905df30ccd6e82322ff3ff3133c683e
SHA512

7dbde5859c1fe98031c527a6562aca86aede9e8ecaa1f0754f762b3eae22f551ec9cda84ae9c651433796352f4aac9a31a3f8008935955665a64aaf6f52a1769
SSDEEP

12288:ptgI7jaLkq0sxmsYOuq5DKg0PQhhJ6WvklN4cYl:ptgIPaLkjsxUR62g0PQhhJ6vlecYl

Score

N/A

Malware Config

Signatures

Files

9168a3f59c539a701906062cfa0287d6d905df30ccd6e82322ff3ff3133c683e
.exe windows x86

8bad0c3bf0caee04a26acff5114d5104

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
GlobalAlloc
GlobalLock
GlobalFree
GlobalUnlock
SetCurrentDirectoryA
GetCurrentThread
PeekNamedPipe
GetUserDefaultLCID
GetThreadPriority
SetThreadPriority
GetComputerNameA
FlushFileBuffers
WaitForMultipleObjects
CreatePipe
GetStdHandle
DuplicateHandle
ResetEvent
ReleaseMutex
CreateMutexA
GetEnvironmentVariableA
SizeofResource
HeapFree
FindResourceA
LockResource
GetProcessHeap
HeapAlloc
LoadResource
GetModuleHandleA
SetUnhandledExceptionFilter
VirtualQuery
ExitProcess
GetModuleFileNameA
GetLocaleInfoA
LeaveCriticalSection
CreateEventA
DeleteCriticalSection
EnterCriticalSection
SetEvent
InitializeCriticalSection
GetTickCount
WaitForSingleObject
LocalAlloc
LocalFree
WinExec
RemoveDirectoryA
ReadFile
GetStartupInfoA
SetFilePointer
GetProcAddress
GetFileSize
FindClose
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetEnvironmentVariableA
GetTempFileNameA
CopyFileA
GetLastError
DeleteFileA
GetCurrentThreadId
MoveFileA
CreateFileA
CreateProcessA
FindFirstFileA
WideCharToMultiByte
GetCurrentProcess
SetPriorityClass
LoadLibraryA
CloseHandle
FreeLibrary
CreateDirectoryA
GetTempPathA
FindNextFileA
MultiByteToWideChar
GetVersionExA
Sleep
GetFileAttributesA
GetCurrentDirectoryA
WriteFile
SetStdHandle
RtlUnwind
HeapReAlloc
VirtualAlloc
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
GetTimeZoneInformation
HeapSize
RaiseException
IsValidCodePage
GetOEMCP
GetACP
CompareStringW
GetCPInfo
IsDebuggerPresent
TerminateProcess
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
UnhandledExceptionFilter
GetCommandLineA
GetSystemTimeAsFileTime

advapi32

RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
InitializeSecurityDescriptor
GetSidLengthRequired
InitializeSid
SetSecurityDescriptorDacl
RegCreateKeyExA
GetSidSubAuthority
GetAce
InitializeAcl
RegQueryValueExA
AddAccessAllowedAce
SetFileSecurityA
RegSetValueExA
RegDeleteValueA
RegSetValueExW
RegQueryValueExW

comctl32

ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_GetIconSize
PropertySheetA
ord17
ImageList_Destroy
CreateToolbarEx
ImageList_Create

comdlg32

GetOpenFileNameA

gdi32

ExtTextOutA
SelectObject
GetTextExtentPoint32A
DeleteObject
CreateFontA
DeleteDC
CreateDIBitmap
SetBkMode
SetTextColor
CreateSolidBrush
CreatePen
LineTo
MoveToEx
GetObjectA
SetTextAlign
BitBlt
CreateCompatibleDC
CreateFontIndirectW
CreateDIBSection
GetStockObject
CreateFontIndirectA
CreateCompatibleBitmap
StretchBlt

msacm32

acmStreamOpen
acmStreamClose
acmStreamUnprepareHeader
acmDriverClose
acmStreamPrepareHeader
acmStreamSize
acmStreamConvert
acmFormatEnumA
acmDriverEnum
acmDriverOpen
acmFormatTagEnumA
acmFormatDetailsA
acmDriverDetailsA

ole32

CoGetMalloc
CreateStreamOnHGlobal
CoCreateInstance
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
CoInitialize

oleaut32

OleLoadPicture
SysAllocString
VariantInit
VariantClear
OleCreatePropertyFrame
SysFreeString
OleLoadPicturePath

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
ShellExecuteA
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteExA
SHBrowseForFolderA

user32

TranslateMessage
SetPropA
GetPropA
ReleaseDC
GetWindowDC
GetSysColor
SetWindowTextA
RegisterClassA
DefWindowProcA
CreateWindowExA
GetWindowLongA
SetWindowsHookExA
GetDC
CallNextHookEx
UnhookWindowsHookEx
SetTimer
DrawEdge
FillRect
InflateRect
DrawFocusRect
EndDialog
DestroyIcon
CreatePopupMenu
InsertMenuA
CreateDialogParamA
IsDialogMessageA
IsWindow
GetMessageA
EnableWindow
GetKeyNameTextA
MapVirtualKeyA
GetKeyState
CallWindowProcA
SetFocus
SetCursor
ClientToScreen
GetDesktopWindow
RemovePropA
ScreenToClient
PostMessageA
LoadCursorA
AppendMenuA
SetMenuItemInfoA
SetWindowPlacement
EndPaint
PostQuitMessage
SetWindowPos
InsertMenuItemA
BeginPaint
GetSysColorBrush
SetActiveWindow
GetMonitorInfoA
MapDialogRect
MonitorFromWindow
MonitorFromRect
DrawTextA
UpdateWindow
GetSystemMetrics
IsIconic
LoadIconA
GetFocus
IsWindowVisible
KillTimer
GetDlgItemInt
CheckRadioButton
SetDlgItemInt
MsgWaitForMultipleObjects
DispatchMessageA
PeekMessageA
LoadImageA
SendMessageTimeoutA
FindWindowA
IsDlgButtonChecked
CheckDlgButton
GetDlgItem
GetWindowTextA
GetMenu
DestroyMenu
MoveWindow
EnableMenuItem
GetWindowRect
GetSubMenu
GetParent
IsWindowEnabled
GetIconInfo
GetClientRect
SetDlgItemTextA
SendDlgItemMessageA
CreateMenu
LoadMenuA
DestroyWindow
SetWindowLongA
GetDlgItemTextA
MessageBoxA
SetForegroundWindow
DrawStateA
SetMenu
SendMessageA
InvalidateRect
TrackPopupMenu
IsZoomed
GetCursorPos
GetWindowPlacement
DialogBoxParamA
ShowWindow
GetDlgCtrlID
WaitForInputIdle

winmm

waveOutUnprepareHeader
waveOutPause
waveOutRestart
waveOutReset
waveOutOpen
waveOutPrepareHeader
waveOutClose
PlaySoundA
waveOutGetPosition
waveOutWrite

ws2_32

htons
WSAGetLastError
recv
send
closesocket
gethostbyname
inet_addr
WSAStartup
socket
ioctlsocket
connect
select
__WSAFDIsSet

Sections

.rdata
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 292KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8bad0c3bf0caee04a26acff5114d5104

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

comdlg32

gdi32

msacm32

ole32

oleaut32

shell32

user32

winmm

ws2_32

Sections

.rdata Size: 80KB - Virtual size: 79KB

.data Size: 292KB - Virtual size: 300KB

.rsrc Size: 128KB - Virtual size: 128KB

.rdata
Size: 80KB - Virtual size: 79KB

.data
Size: 292KB - Virtual size: 300KB

.rsrc
Size: 128KB - Virtual size: 128KB