cd3338187d620b6f85608024269c6f236ec6100f82e36e96680ae2754754bf20

Sharing

Copy URL Twitter E-mail

General

Target

cd3338187d620b6f85608024269c6f236ec6100f82e36e96680ae2754754bf20
Size

480KB
MD5

908dbb2522db44e955a75ad03577bb90
SHA1

21cada532bb074826963702d647b7af4353f5a59
SHA256

cd3338187d620b6f85608024269c6f236ec6100f82e36e96680ae2754754bf20
SHA512

274846072015a10eac219c2c307e7b07ede1307240c13ac0f236841b211c2150804034943fa74b38593d2e48edf8cbdfee06a1d0798cedee63b61cf351f4d48d
SSDEEP

6144:Np6b6Lp2MUCiw33imk7mkdX2oPXSo1faxKjgehaj9JT2yW9APp53YO0wq58KZXg9:N83X2KXCxKjg7uyW9APjoOtqh93ymy

Score

N/A

Malware Config

Signatures

Files

cd3338187d620b6f85608024269c6f236ec6100f82e36e96680ae2754754bf20
.exe windows x86

fe0f01c2e92f96d3f0e98876dd54eb06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegEnumKeyA
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegSetValueA
RegQueryValueA

gdi32

DeleteDC
DeleteObject
BitBlt
SelectObject
CreateCompatibleDC
StretchBlt
SetPixel
Rectangle
GetNearestColor
TextOutA
SetTextColor
GetTextExtentPoint32A
SetBkMode
CreateFontA
GdiFlush
GetStockObject
CreateCompatibleBitmap
GetTextMetricsA
CreateFontIndirectA
GetTextExtentExPointW
GetTextExtentPointW
GetDeviceCaps
CombineRgn
CreateRectRgnIndirect
RealizePalette
SelectPalette
SetRectRgn
CreateRectRgn
DeleteMetaFile
CloseMetaFile
StretchDIBits
SetWindowExtEx
SetWindowOrgEx
SetMapMode
GetDIBits
GetObjectA
CreateMetaFileA
CloseEnhMetaFile
CreateEnhMetaFileA
GetEnhMetaFileHeader
SetWinMetaFileBits
GetMetaFileBitsEx
ExtTextOutA
SetBkColor
CopyEnhMetaFileA
RestoreDC
PlayMetaFile
SetViewportOrgEx
SelectClipRgn
SaveDC
SetMetaFileBitsEx
CreateSolidBrush
LineTo
MoveToEx
CreatePen
SetTextAlign
PatBlt
CreateHatchBrush
EnumFontFamiliesA
EnumMetaFile
PlayMetaFileRecord
CreatePatternBrush
CreateBitmap

kernel32

ExitProcess
LockResource
GetLastError
LoadResource
FindResourceA
Sleep
GetTickCount
GetModuleFileNameA
MulDiv
GetLocaleInfoA
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
lstrcpynA
GlobalFree
WideCharToMultiByte
MultiByteToWideChar
GetProcAddress
LoadLibraryA
GetCPInfo
GetUserDefaultLCID
lstrlenA
SetLastError
CreateFileW
lstrcpyA
FreeLibrary
FreeResource
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
GetSystemDefaultLCID
VirtualAlloc
HeapAlloc
HeapFree
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RaiseException
GetVersion

ole32

CoRegisterClassObject
OleInitialize
OleBuildVersion
OleUninitialize
CoRevokeClassObject
CreateOleAdviseHolder
OleRegEnumVerbs
CreateDataAdviseHolder
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleRegGetMiscStatus
CoRegisterMessageFilter
CoCreateInstance
OleRegGetUserType
OleCreateMenuDescriptor
SetConvertStg
WriteClassStg
GetConvertStg
WriteFmtUserTypeStg
CoTaskMemFree
CreateBindCtx
GetRunningObjectTable
CoLockObjectExternal
CoDisconnectObject
RegisterDragDrop
RevokeDragDrop
OleFlushClipboard
GetClassFile
ProgIDFromCLSID
CLSIDFromProgID
CLSIDFromString
CreateItemMoniker
OleSave
CreateGenericComposite
OleRun
OleCreateFromFile
OleCreateFromData
OleLoad
OleCreate
CoGetMalloc
StgCreateDocfile
StgOpenStorage
OleIsCurrentClipboard
OleSetClipboard
OleGetClipboard
ReleaseStgMedium

user32

CopyRect
GetMessageA
TranslateAcceleratorA
TranslateMessage
WaitMessage
RegisterClipboardFormatA
IsWindowVisible
IsZoomed
EnumChildWindows
LoadIconA
SetTimer
SetCapture
ReleaseCapture
KillTimer
IsIconic
GetWindowPlacement
RegisterClassA
BeginPaint
EndPaint
UnregisterClassA
SetWindowTextA
GetFocus
SetCursorPos
UnionRect
CreateMenu
DestroyMenu
ScrollWindowEx
ScreenToClient
SetScrollRange
SetScrollPos
BringWindowToTop
SetForegroundWindow
ShowWindow
DestroyCursor
SetMenu
GetSystemMetrics
EnableWindow
SendDlgItemMessageA
wsprintfA
GetDlgItem
SetFocus
PostMessageA
SetWindowLongA
GetWindowThreadProcessId
ScrollWindow
GetTopWindow
GetWindow
BeginDeferWindowPos
DeferWindowPos
SetWindowPos
EndDeferWindowPos
GetSysColor
IsRectEmpty
PtInRect
UpdateWindow
SendMessageA
InvalidateRgn
EqualRect
OffsetRect
MoveWindow
IntersectRect
FillRect
ClientToScreen
ReleaseDC
GetClientRect
GetCursorPos
GetActiveWindow
SetRect
DrawTextA
MessageBoxA
PostQuitMessage
GetKeyboardLayout
WinHelpA
LoadCursorA
SetCursor
GetDC
PeekMessageA
DefWindowProcA
GetKeyState
GetDesktopWindow
GetWindowRect
CreateWindowExA
DestroyWindow
LoadBitmapA
OpenClipboard
EnumClipboardFormats
CloseClipboard
InflateRect
InvalidateRect
MapVirtualKeyA
GetKeyNameTextA
CreateAcceleratorTableA
DestroyAcceleratorTable
MessageBeep
GetWindowLongA
SetRectEmpty
SetParent

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

mso9

ord921
ord20
ord690
ord688
ord17
ord65
ord13
ord10
ord144
ord145
ord61
ord497
ord672
ord919
ord800
ord490
ord326
ord844
ord610
ord1286
ord394
ord1909
ord321
ord779
ord775
ord630
ord560
ord629
ord865
ord537
ord408
ord383
ord981
ord578
ord581
ord499
ord589
ord406
ord465
ord587
ord508
ord894
ord876
ord797
ord216
ord46
ord639
ord924
ord62
ord49
ord57
ord54
ord27
ord28
ord460
ord296
ord322
ord396
ord88
ord566
ord130
ord34
ord59
ord567
ord878
ord977
ord978
ord456
ord390
ord1643
ord846
ord505
ord738
ord933
ord263
ord642
ord731
ord544
ord634
ord545
ord726
ord957
ord740
ord552
ord221
ord744
ord887
ord389
ord741
ord388
ord742
ord747
ord787
ord387
ord746
ord501
ord748
ord504
ord382
ord1865
ord934
ord598
ord956
ord582
ord43
ord42
ord905
ord906
ord903
ord737
ord907
ord904
ord106
ord114
ord47
ord200
ord111
ord164
ord161
ord549
ord815
ord36
ord652
ord254
ord979
ord294
ord826
ord889
ord540
ord925
ord653
ord21
ord16
ord958
ord577
ord735
ord348
ord778
ord548
ord886
ord535
ord12
ord295
ord538
ord911
ord590
ord474
ord960
ord915
ord307
ord932
ord492

comdlg32

PrintDlgA
ChooseFontA
CommDlgExtendedError

oleaut32

SysAllocString
RegisterActiveObject
SysFreeString
VariantInit
SysAllocStringByteLen
LoadTypeLi
GetActiveObject
RevokeActiveObject
RegisterTypeLi

Sections

.text
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 192KB - Virtual size: 1.3MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fe0f01c2e92f96d3f0e98876dd54eb06

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

ole32

user32

version

mso9

comdlg32

oleaut32

Sections

.text Size: 244KB - Virtual size: 240KB

.data Size: 16KB - Virtual size: 19KB

.rsrc Size: 24KB - Virtual size: 21KB

.vmp0 Size: 192KB - Virtual size: 1.3MB

.text
Size: 244KB - Virtual size: 240KB

.data
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 24KB - Virtual size: 21KB

.vmp0
Size: 192KB - Virtual size: 1.3MB