5b7dc92cb5871249f1ecb8c8d2016d9fb2d73ad39e5ba6dc8ffaeab194d57876

Sharing

Copy URL Twitter E-mail

General

Target

5b7dc92cb5871249f1ecb8c8d2016d9fb2d73ad39e5ba6dc8ffaeab194d57876
Size

740KB
MD5

938dc0cbf76dafa7ef459654c2fa2020
SHA1

735f1daec07098573fe9ec672c07138d997c8235
SHA256

5b7dc92cb5871249f1ecb8c8d2016d9fb2d73ad39e5ba6dc8ffaeab194d57876
SHA512

852d2d0e76c55abeeb8fe62adadd5a9f881e38e6ab2338a09dd5f1beafb8004a6fe2c169557c6bb88146789ea439973fbdc2dd4349584ac87c5a26e16e46b458
SSDEEP

12288:QpD2ELr1JsbHBvhlNQ75BoADl+lbuk492hEm2UvL:QpD2EH7sb3lUvDlZ97tUz

Score

N/A

Malware Config

Signatures

Files

5b7dc92cb5871249f1ecb8c8d2016d9fb2d73ad39e5ba6dc8ffaeab194d57876
.exe windows x86

7672de42c7d35c333431c27896bb0b8e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

kernel32

lstrlenW
MulDiv
GlobalUnlock
GlobalLock
WideCharToMultiByte
GetModuleFileNameA
GlobalFree
GlobalHandle
LockResource
LoadResource
CreateThread
lstrcmpiA
GetSystemDefaultLangID
FreeLibrary
GetProcAddress
LoadLibraryA
CreateDirectoryA
DeleteFileA
MoveFileA
InterlockedIncrement
InterlockedDecrement
GetModuleHandleA
SizeofResource
LoadLibraryExA
IsDBCSLeadByte
GetCommandLineA
ReadFile
CreateProcessA
GetSystemInfo
GetEnvironmentVariableA
LocalFree
GetTickCount
GetCurrentProcessId
GetSystemDirectoryA
GetDiskFreeSpaceA
GetDiskFreeSpaceExA
GetExitCodeProcess
GetUserDefaultLangID
FindClose
FindFirstFileA
GetShortPathNameA
GetWindowsDirectoryA
CompareStringW
CreateEventA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
GetTimeZoneInformation
GetCPInfo
GetOEMCP
TlsGetValue
TlsSetValue
TlsFree
TlsAlloc
SetUnhandledExceptionFilter
HeapSize
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
TerminateProcess
ExitProcess
HeapReAlloc
VirtualQuery
VirtualAlloc
VirtualProtect
GetSystemTimeAsFileTime
RtlUnwind
SetLastError
GetCurrentThreadId
GetTempPathA
lstrcpynA
SetEvent
lstrcpyA
lstrlenA
lstrcatA
CreateFileA
GetFileSize
GetFileTime
FileTimeToSystemTime
GetLastError
lstrcmpA
Sleep
SetEnvironmentVariableA
SystemTimeToFileTime
CompareFileTime
SetFilePointer
SetEndOfFile
WriteFile
CloseHandle
FindResourceA
GlobalAlloc
WaitForSingleObject
HeapAlloc
GetProcessHeap
HeapFree
GetCurrentProcess
FlushInstructionCache
LeaveCriticalSection
EnterCriticalSection
MultiByteToWideChar
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
CompareStringA

user32

CreateAcceleratorTableA
CharNextA
CreateWindowExA
GetClassNameA
SetWindowPos
GetClassInfoExA
RegisterClassExA
GetWindowTextA
GetParent
GetWindowTextLengthA
RegisterWindowMessageA
PeekMessageA
DispatchMessageA
DispatchMessageW
TranslateMessage
GetMessageA
GetMessageW
IsWindowUnicode
MsgWaitForMultipleObjects
SetWindowLongA
GetWindowLongA
SetTimer
KillTimer
EnableWindow
GetDlgItem
MessageBoxA
SetWindowTextA
DialogBoxIndirectParamA
GetActiveWindow
SetWindowContextHelpId
MapDialogRect
IsDlgButtonChecked
ShowWindow
MapWindowPoints
SystemParametersInfoA
SendDlgItemMessageA
DialogBoxParamA
UnregisterClassA
LoadStringA
PostMessageA
wsprintfA
SetCursor
LoadCursorA
PtInRect
GetWindowRect
GetCursorPos
SetForegroundWindow
EndDialog
GetClientRect
LoadBitmapA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
GetSysColor
ReleaseCapture
SetCapture
FillRect
GetDC
ReleaseDC
RedrawWindow
IsWindow
SendMessageA
DestroyAcceleratorTable
GetFocus
IsChild
GetWindow
SetFocus
BeginPaint
EndPaint
CallWindowProcA
GetDesktopWindow
InvalidateRgn
InvalidateRect

gdi32

BitBlt
RestoreDC
CreateFontIndirectA
DPtoLP
GetDeviceCaps
SetWindowOrgEx
SetViewportOrgEx
ModifyWorldTransform
SetGraphicsMode
SaveDC
DeleteDC
DeleteObject
GetStockObject
StretchBlt
CreateCompatibleDC
GetObjectA
SetTextColor
SetBkMode
SelectObject
CreateSolidBrush
CreateCompatibleBitmap

advapi32

RegSetValueExA
RegEnumKeyA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
CryptAcquireContextA
CryptCreateHash
CryptReleaseContext
CryptHashData
CryptGetHashParam
CryptDestroyHash
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

shell32

ShellExecuteA

ole32

CoTaskMemAlloc
StringFromGUID2
CoInitializeSecurity
StringFromCLSID
CoInitialize
CoUninitialize
CoTaskMemRealloc
CoTaskMemFree
OleUninitialize
OleInitialize
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
CreateStreamOnHGlobal
OleLockRunning

oleaut32

LoadTypeLi
LoadRegTypeLi
VariantInit
VariantClear
OleCreateFontIndirect
SysStringByteLen
SysStringLen
SysAllocString
SysAllocStringLen
SysFreeString
VarUI4FromStr

urlmon

URLDownloadToFileA
IsValidURL

wintrust

WinVerifyTrust

wininet

InternetOpenA
InternetCrackUrlA
InternetConnectA
HttpOpenRequestA
InternetTimeFromSystemTime
HttpAddRequestHeadersA
HttpSendRequestA
InternetErrorDlg
InternetTimeToSystemTime
InternetReadFile
InternetCloseHandle
HttpQueryInfoA

version

GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 124KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 576KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7672de42c7d35c333431c27896bb0b8e

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

urlmon

wintrust

wininet

version

Sections

.text Size: 124KB - Virtual size: 121KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 8KB - Virtual size: 15KB

.rsrc Size: 576KB - Virtual size: 576KB

.text
Size: 124KB - Virtual size: 121KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 8KB - Virtual size: 15KB

.rsrc
Size: 576KB - Virtual size: 576KB