a95e60afd162e57d1774f75083f366666705b35346ed9c587b25c53e6f65a46f

Sharing

Copy URL Twitter E-mail

General

Target

a95e60afd162e57d1774f75083f366666705b35346ed9c587b25c53e6f65a46f
Size

432KB
MD5

e5aa868f3a1155896ea55922c4f274d5
SHA1

f0cee1ade81236749e5a568c6a494763392fd0f7
SHA256

a95e60afd162e57d1774f75083f366666705b35346ed9c587b25c53e6f65a46f
SHA512

8b0725e4f1bb93ddd5fb780a10fde71b766571ed423393e03ef508e3ba22554fc51cdb35d75daa6d73a943db370dbf061ac7717da14c0e7b3bb6d0c88c69857f
SSDEEP

6144:4x+TIGdAZk4gsnNb+g+EZpJW7bvlU2CNLWEFlZJDKHcU4Z:4YkguNb+pETyblUNNLrsFy

Score

N/A

Malware Config

Signatures

Files

a95e60afd162e57d1774f75083f366666705b35346ed9c587b25c53e6f65a46f
.exe windows x86

5176d4a8ad3e473c590dcab1089b8c2c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
GetStartupInfoW
GetSystemTimeAsFileTime
GetDriveTypeW
GetConsoleCP
GetConsoleMode
RaiseException
HeapReAlloc
RtlUnwind
ExitProcess
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapSize
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
TerminateProcess
HeapFree
IsDebuggerPresent
Sleep
GetTimeZoneInformation
SetStdHandle
CreateFileA
GetCurrentDirectoryA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
GetDriveTypeA
SetEnvironmentVariableA
GetTickCount
SetErrorMode
GetFileTime
GetFileAttributesW
FileTimeToLocalFileTime
CreateFileW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GlobalFlags
FormatMessageW
LocalFree
InterlockedDecrement
GlobalFindAtomW
CompareStringW
LoadLibraryA
GetVersionExA
GlobalAddAtomW
MulDiv
GetModuleHandleA
FileTimeToSystemTime
GlobalUnlock
WritePrivateProfileStringW
FreeResource
GlobalFree
GetCurrentProcessId
SetLastError
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
WideCharToMultiByte
CompareStringA
InterlockedExchange
GlobalLock
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
GetModuleHandleW
LoadLibraryW
GetProcAddress
FreeLibrary
GetSystemDirectoryW
GetModuleFileNameA
CreateThread
lstrlenA
MultiByteToWideChar
GetLastError
lstrlenW
GetCurrentProcess
GetModuleFileNameW
FindResourceW
LoadResource
LockResource
SizeofResource
SetUnhandledExceptionFilter
CloseHandle

user32

RegisterClipboardFormatW
PostThreadMessageW
UnregisterClassW
GetSysColorBrush
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
InvalidateRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
CharNextW
CharUpperW
ReleaseCapture
LoadCursorW
SetCapture
DestroyMenu
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
UpdateWindow
GetMenu
GetMenuItemID
GetMenuItemCount
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
UnregisterClassA
LoadIconW
GetSystemMenu
AppendMenuW
SetTimer
IsIconic
GetWindowPlacement
GetWindowRect
SetCursor
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
IsWindowVisible
GetKeyState
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
GetSystemMetrics
GetClientRect
DrawIcon
SetForegroundWindow
LoadMenuW
GetSubMenu
GetCursorPos
ExitWindowsEx
SendMessageW
KillTimer
EnableWindow
RegisterWindowMessageW
PostMessageW
PostQuitMessage
MessageBoxW
IsWindowEnabled
GetLastActivePopup
GetWindowLongW
GetParent
GetWindowThreadProcessId
DispatchMessageW
PeekMessageW
SetWindowPos
MapDialogRect
SetWindowContextHelpId
GetWindow
EndDialog
GetNextDlgTabItem
GetDlgItem
IsWindow
DestroyWindow
CreateDialogIndirectParamW
SetActiveWindow
GetActiveWindow
GetDesktopWindow
TabbedTextOutW
IsChild

gdi32

GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetDeviceCaps
GetStockObject
CreateBitmap
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
GetMapMode
CreateFontW
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
GetObjectW
DeleteObject
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
SaveDC

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegCreateKeyExW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
RegDeleteValueW
RegSetValueExW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegCloseKey
RegQueryValueExW

shell32

Shell_NotifyIconW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW

oledlg

OleUIBusyW

ole32

CLSIDFromString
OleIsCurrentClipboard
CoTaskMemFree
CoInitializeEx
OleFlushClipboard
CoTaskMemAlloc
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
CoUninitialize
CoRegisterMessageFilter
CLSIDFromProgID

oleaut32

SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
SystemTimeToVariantTime
VariantClear
VariantChangeType
VariantInit
SysStringLen
OleCreateFontIndirect
SafeArrayDestroy
SysAllocString
VariantCopy

ws2_32

WSAStartup
WSACleanup

Sections

.text
Size: 228KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5176d4a8ad3e473c590dcab1089b8c2c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 228KB - Virtual size: 224KB

.rdata Size: 60KB - Virtual size: 56KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 228KB - Virtual size: 224KB

.rdata
Size: 60KB - Virtual size: 56KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 24KB - Virtual size: 20KB