5a7ef19ef7736ed8f10e0fa1c8683d55ead8e1e2b4b56e8576b331e57687ad17

Sharing

Copy URL Twitter E-mail

General

Target

5a7ef19ef7736ed8f10e0fa1c8683d55ead8e1e2b4b56e8576b331e57687ad17
Size

703KB
MD5

5fccb9a37586182f714a423e71fb8500
SHA1

f1ae276e3afb6e2a50c4fe1276db112548b6f644
SHA256

5a7ef19ef7736ed8f10e0fa1c8683d55ead8e1e2b4b56e8576b331e57687ad17
SHA512

a913df1aa6231c572ffd8b29504bcb1ca3aa8e919862557fdffaff4615c2f13d34cc9b3c6f7eee71e9df9cd2a41099dc5233e71d3218c76bcb264f6a568ab0d9
SSDEEP

12288:YbCArsdrWPHi1FT/uGjteCvbTQIF/oiPaGE:YbCAyrWPHqTVjU0TnPaGE

Score

N/A

Malware Config

Signatures

Files

5a7ef19ef7736ed8f10e0fa1c8683d55ead8e1e2b4b56e8576b331e57687ad17
.exe windows x86

348c3e56cefa37b155de22d1c030fd3d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

DeleteUrlCacheEntry

kernel32

SetErrorMode
GetTickCount
HeapFree
HeapAlloc
ExitProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoA
HeapReAlloc
RtlUnwind
RaiseException
ExitThread
CreateThread
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapSize
SetHandleCount
GetStdHandle
GetFileType
HeapCreate
VirtualFree
GetConsoleCP
GetConsoleMode
GetOEMCP
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetACP
IsValidCodePage
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
LCMapStringA
LCMapStringW
GetProcessHeap
CompareStringW
SetEnvironmentVariableA
GetCPInfo
GetFileSizeEx
GetFileAttributesA
FileTimeToLocalFileTime
GetModuleHandleW
GetVolumeInformationA
FindFirstFileA
FindClose
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
WritePrivateProfileStringA
FileTimeToSystemTime
GetThreadLocale
GlobalFlags
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetVersionExA
InterlockedDecrement
GetModuleFileNameW
FormatMessageA
LocalFree
lstrlenA
MulDiv
GlobalUnlock
CreateEventA
SuspendThread
WaitForSingleObject
SetThreadPriority
GlobalFree
GlobalAddAtomA
GetCurrentProcessId
SetLastError
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
CompareStringA
InterlockedExchange
GlobalLock
lstrcmpA
GlobalAlloc
FreeLibrary
GetProcAddress
MultiByteToWideChar
GetLastError
WriteFile
SetFilePointer
FreeResource
LocalFileTimeToFileTime
DeleteFileA
ResumeThread
CloseHandle
GetFileTime
GetCurrentDirectoryA
GetModuleHandleA
GetModuleFileNameA
LockResource
LoadLibraryA
SetCurrentDirectoryA
ReadFile
TerminateProcess
SizeofResource
Sleep
WideCharToMultiByte
GetCommandLineA
SetFileTime
SetEvent
GetCurrentProcess
LoadResource
FindResourceA
GetFileSize
CreateFileA
DosDateTimeToFileTime
GetFullPathNameA
CreateDirectoryA

user32

DestroyMenu
RegisterClipboardFormatA
PostThreadMessageA
ReleaseCapture
SetCapture
LoadCursorA
GetSysColorBrush
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetMenu
SetForegroundWindow
UpdateWindow
CreateWindowExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
PtInRect
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
IntersectRect
SystemParametersInfoA
IsIconic
GetSystemMetrics
UnhookWindowsHookEx
GetWindowTextLengthA
GetWindowTextA
SetFocus
GetMenuItemID
GetMenuItemCount
GetSubMenu
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
UnregisterClassA
MessageBeep
GetNextDlgGroupItem
GetNextDlgTabItem
EndDialog
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
InvalidateRgn
SetRect
IsRectEmpty
CopyAcceleratorTableA
CharNextA
GetWindow
SetWindowContextHelpId
MapDialogRect
CharUpperA
GetClassInfoExA
SetWindowPos
GetWindowThreadProcessId
GetLastActivePopup
IsWindowEnabled
PostMessageA
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetFocus
GetParent
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
MessageBoxA
ClientToScreen
SetCursor
FillRect
WindowFromPoint
DrawFocusRect
InflateRect
DrawStateA
OffsetRect
DestroyCursor
GetSysColor
LoadImageA
CopyRect
SetTimer
GetWindowRect
LoadBitmapA
LoadIconA
wsprintfA
GetClientRect
SendMessageA
GetDC
SetWindowLongA
InvalidateRect
GetWindowLongA
GetDesktopWindow
SetLayeredWindowAttributes
EnableWindow
GetWindowPlacement

gdi32

GetDeviceCaps
CreateRectRgnIndirect
RectVisible
GetMapMode
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
CreateCompatibleDC
PtVisible
GetWindowExtEx
GetViewportExtEx
GetClipBox
SetMapMode
SetTextColor
SetBkMode
RestoreDC
SaveDC
CreateBitmap
DeleteDC
SetBkColor
DeleteObject
SelectObject
CreateCompatibleBitmap
GetObjectA
GetStockObject
BitBlt
CreateFontIndirectA
TextOutA

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA

comctl32

InitCommonControlsEx
_TrackMouseEvent

oledlg

ord8

ole32

CoTaskMemFree
CoRevokeClassObject
OleInitialize
CoTaskMemAlloc
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleIsCurrentClipboard
CLSIDFromProgID
OleFlushClipboard
CoRegisterMessageFilter
CLSIDFromString

oleaut32

SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysStringLen
SysFreeString
SysAllocStringByteLen
SysAllocStringLen
VariantClear
VariantChangeType
VariantInit

urlmon

URLDownloadToFileA

wsock32

WSAStartup
WSACleanup
WSASetLastError

winmm

PlaySoundA

shlwapi

PathFindFileNameA
PathFindExtensionA
PathStripToRootA
PathIsUNCA

Sections

.text
Size: 283KB - Virtual size: 283KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 332KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

348c3e56cefa37b155de22d1c030fd3d

Headers

DLL Characteristics

File Characteristics

Imports

wininet

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

oleaut32

urlmon

wsock32

winmm

shlwapi

Sections

.text Size: 283KB - Virtual size: 283KB

.rdata Size: 74KB - Virtual size: 74KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 332KB - Virtual size: 331KB

.text
Size: 283KB - Virtual size: 283KB

.rdata
Size: 74KB - Virtual size: 74KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 332KB - Virtual size: 331KB