6052cfd07a5553870d768b1e9ec72d1da535147338fea7f9997b10b8b965161c

Sharing

Copy URL Twitter E-mail

General

Target

6052cfd07a5553870d768b1e9ec72d1da535147338fea7f9997b10b8b965161c
Size

178KB
MD5

1242b24e33f04326f460fa5c7aba04b2
SHA1

c41e63cc3d3f93853173124adf50f727e99891aa
SHA256

6052cfd07a5553870d768b1e9ec72d1da535147338fea7f9997b10b8b965161c
SHA512

9c888af70dda77f612a82ee0d4fae1a92d99c2d254741d3c7a444ffd1157008114a48fe4998eff738780ee5297728aadd2240ca310fafa5c3657b0fb871ff0f9
SSDEEP

3072:/czEpnnRqwmjMY8acDLV05X2LuPsfN3HeJE+1WTim5Pfy:0gpnnVmBcfC1KYsftj5Xy

Score

N/A

Malware Config

Signatures

Files

6052cfd07a5553870d768b1e9ec72d1da535147338fea7f9997b10b8b965161c
.exe windows x86

91061e9c2b3d188c0ef049ad15ae34cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextLengthA
LoadStringA
MessageBoxA
GetKeyboardState
CharNextA
GetScrollRange
CloseWindow
GetWindowRect
IsDialogMessageW
DrawIcon
GetKeyboardType
GetMessageExtraInfo
GetCaretBlinkTime
SetMenu
ChildWindowFromPoint
GetUpdateRect

comdlg32

GetSaveFileNameA
ChooseColorA
ChooseFontA
GetOpenFileNameA

shell32

ShellExecuteExA
SHGetSpecialFolderLocation
DragAcceptFiles
SHGetFileInfoA
ShellExecuteA
SHGetDesktopFolder
SHGetMalloc
SHGetPathFromIDListA

ole32

CoUninitialize
CoGetClassObject
CoCreateInstance
StringFromCLSID
ProgIDFromCLSID
CoTaskMemAlloc
CoTaskMemFree
OleInitialize
OleUninitialize
OleSetMenuDescriptor
OleDraw
IsAccelerator
CreateStreamOnHGlobal
CoInitialize

advapi32

RegOpenKeyExA
RegQueryValueExA
GetUserNameA
RegCreateKeyExA
RegFlushKey
RegCloseKey

gdi32

GetDIBits
GetDIBColorTable
GetDCOrgEx
GetCurrentPositionEx
GetDeviceCaps
GetBrushOrgEx
GetBitmapBits
GdiFlush
FillRgn
GetEnhMetaFileBits
GetEnhMetaFileDescriptionA
GetEnhMetaFileHeader
GetEnhMetaFilePaletteEntries
GetClipBox
GetNearestPaletteIndex
AbortPath
BeginPath
BitBlt
CloseEnhMetaFile
CombineRgn
CopyEnhMetaFileA
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBSection
CreateDIBitmap
CreateEnhMetaFileA
CreateFontIndirectA
CreateHalftonePalette
CreateICA
CreatePalette
CreatePen
CreatePenIndirect
CreatePolygonRgn
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile
DeleteObject
Ellipse
EndDoc
EndPage
EndPath
EnumFontsA
ExcludeClipRect
ExtCreatePen
ExtTextOutA

comctl32

ImageList_SetDragCursorImage
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
ImageList_EndDrag
ImageList_BeginDrag
ImageList_Remove
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Draw
ImageList_GetDragImage
ImageList_Read
ImageList_Write
ImageList_GetIconSize
ImageList_SetIconSize
ImageList_GetBkColor
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
ord17
ImageList_Replace

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

winmm

mciGetErrorStringA
mciSendCommandA
timeGetTime

winspool.drv

DocumentPropertiesA
EnumPrintersA
OpenPrinterA
ClosePrinter

kernel32

TlsFree
SetLastError
GetOEMCP
IsValidCodePage
WideCharToMultiByte
GetTimeZoneInformation
SetHandleCount
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
VirtualFree
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
RtlUnwind
HeapReAlloc
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
RaiseException
HeapSize
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CompareStringW
SetEnvironmentVariableA
SetThreadPriority
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
InterlockedDecrement
InterlockedIncrement
GetTimeFormatA
LocalAlloc
GetProcessAffinityMask
GetCalendarInfoW
TransactNamedPipe
FoldStringW
GetCompressedFileSizeW
CreateDirectoryA
FindFirstVolumeW
ExitThread
ExitProcess
DeleteFileA
CreateThread
WriteFile
WaitForSingleObject
SystemTimeToFileTime
Sleep
SetFileTime
SetFilePointer
SetFileAttributesA
CreateMutexA
SetEvent
SetCurrentDirectoryA
ResetEvent
ReleaseMutex
ReadFile
CreateFileA
QueryDosDeviceA
CreateEventA
MultiByteToWideChar
MoveFileA
LockResource
LocalFileTimeToFileTime
LoadResource
LoadLibraryA
HeapFree
HeapAlloc
GlobalMemoryStatus
GetVolumeInformationA
GetVersionExA
GetTempPathA
GetSystemInfo
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetLogicalDriveStringsA
GetLocalTime
GetLastError
GetFileType
CloseHandle
GetFileAttributesA
GetDriveTypeA
GetDiskFreeSpaceA
GetCurrentThreadId
GetCurrentDirectoryA
GetCommandLineA
FreeLibrary
FindResourceA
FindNextFileA
FindFirstFileA
FindClose
FileTimeToLocalFileTime
ExpandEnvironmentStringsA
BeginUpdateResourceA
CompareStringA
CopyFileA
DeleteCriticalSection
EndUpdateResourceA
EnterCriticalSection
EnumCalendarInfoA
EnumResourceLanguagesA
FileTimeToDosDateTime
FindCloseChangeNotification
FindFirstChangeNotificationA
FindNextChangeNotification
FormatMessageA
FreeResource
GetACP
GetCPInfo
GetComputerNameA
GetCurrentProcessId
GetDateFormatA
GetExitCodeProcess
GetExitCodeThread
GetFileSize
GetFullPathNameA
GetLocaleInfoA
GetModuleFileNameA
GetPrivateProfileStringA
GetProfileStringA
GetStdHandle
GetStringTypeExA
GetSystemDirectoryA
GetThreadLocale
GetTickCount
GetUserDefaultLCID
GetVersion
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalFree
GlobalLock
GlobalHandle
GlobalReAlloc
GlobalSize
GlobalUnlock
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryExA
MulDiv
RemoveDirectoryA
ResumeThread
SetEndOfFile
SetErrorMode
SetThreadLocale
SizeofResource
UpdateResourceA
VirtualAlloc
VirtualQuery
GetSystemTimeAsFileTime

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tick
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91061e9c2b3d188c0ef049ad15ae34cb

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

ole32

advapi32

gdi32

comctl32

version

winmm

winspool.drv

kernel32

Sections

.text Size: 113KB - Virtual size: 112KB

.data Size: 16KB - Virtual size: 39KB

.tick Size: 26KB - Virtual size: 25KB

.rsrc Size: 22KB - Virtual size: 22KB

.text
Size: 113KB - Virtual size: 112KB

.data
Size: 16KB - Virtual size: 39KB

.tick
Size: 26KB - Virtual size: 25KB

.rsrc
Size: 22KB - Virtual size: 22KB