1515527b3db834ca630a66f74c2db33b2f7029d11f9405c2601bb10f32865010

Sharing

Copy URL

Twitter E-mail

General

Target

1515527b3db834ca630a66f74c2db33b2f7029d11f9405c2601bb10f32865010
Size

1.1MB
MD5

93f0c1ce3a3388cacda2ba4a593cf852
SHA1

e0b793c909acde9d4fbd4fb4db6ecc1a91db6338
SHA256

1515527b3db834ca630a66f74c2db33b2f7029d11f9405c2601bb10f32865010
SHA512

21aa18331b98c78a9a875f01c4284215f66251f074c62dc2d8f86050b5adbcd6cb250efa1409664aad0a41a1a4668981b4bff6a02e9187e05372c50000d1cfe4
SSDEEP

24576:U/lDSkt+SoebgoWAl4TGHMEB/IUTuy8QAQp/dPCOjGoDBFFTkDsqqGUJXsmBiF:G5+zeMdTGH7BwU65QpR1GoDBFasPG6/B

Score

N/A

Malware Config

Signatures

Files

1515527b3db834ca630a66f74c2db33b2f7029d11f9405c2601bb10f32865010
.exe windows x86

a05c7cf481a9eb4e9b91abc6700ab2a4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr90

__p__commode
memset
exit
atoi
longjmp
_mbschr
atol
isalpha
isalnum
_mbsrchr
isdigit
floor
strcpy_s
toupper
_memicmp
_localtime64_s
_time64
_splitpath_s
_mbspbrk
iscntrl
_mbsnbcmp
_mbsstr
_makepath_s
remove
_getcwd
_mbsnbicmp
strchr
strrchr
wcspbrk
??_V@YAXPAX@Z
??_U@YAPAXI@Z
wcschr
memchr
strcspn
atof
printf
memmove
_controlfp_s
_invoke_watson
_except_handler4_common
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_crt_debugger_hook
__set_app_type
_encode_pointer
__p__fmode
_setjmp3
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
vswprintf_s
tolower
isspace

kernel32

GetCurrentThread
GlobalUnlock
GlobalFree
GlobalLock
GlobalAlloc
GlobalReAlloc
GlobalSize
FreeResource
SizeofResource
LockResource
LoadResource
FindResourceA
CreateFileA
lstrcmpA
GetFileAttributesA
GetModuleFileNameA
GetTempPathA
DeleteFileA
CloseHandle
GetCurrentDirectoryA
FindClose
FindNextFileA
FindFirstFileA
EnumResourceLanguagesA
WideCharToMultiByte
ReadFile
WriteFile
SetFilePointer
GlobalHandle
LocalAlloc
LocalFree
IsDBCSLeadByte
TerminateProcess
GetCurrentProcess
VirtualProtect
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetProcessHeap
GetModuleHandleW
HeapFree
HeapAlloc
LoadLibraryW
GetModuleFileNameW
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetLastError
lstrlenA
MulDiv
GetACP
MultiByteToWideChar
GetCurrentThreadId
FreeLibrary
GetProcAddress
GetTickCount
GetLocaleInfoA
GetCPInfo
SetErrorMode
GetSystemDefaultLangID
GetVersion
lstrcmpiA
GetModuleHandleA
RaiseException
LoadLibraryA
FormatMessageA
GetSystemDirectoryW
LoadLibraryExW

user32

ClientToScreen
InvalidateRect
FillRect
IsCharAlphaNumericA
IsCharAlphaA
CharLowerA
IsWindowVisible
SetDlgItemTextA
SendDlgItemMessageA
CheckDlgButton
IsDlgButtonChecked
GetDlgItemTextA
GetDlgItemInt
IsChild
GetDialogBaseUnits
GetDoubleClickTime
CreateDialogParamA
RegisterWindowMessageA
CheckRadioButton
ShowScrollBar
SetScrollInfo
GetScrollInfo
GetDlgCtrlID
GetWindowTextLengthA
GetLastActivePopup
WaitMessage
GetUpdateRect
GetMessageTime
ExcludeUpdateRgn
GetUpdateRgn
ValidateRect
IsRectEmpty
InvertRect
FrameRect
SetParent
RegisterClipboardFormatA
IsClipboardFormatAvailable
GetPriorityClipboardFormat
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardFormatNameA
SetClipboardData
GetClipboardData
GetCaretPos
SetCaretPos
CreateCaret
DestroyCaret
BeginPaint
EndPaint
GetWindowDC
VkKeyScanA
SetClassLongA
DestroyCursor
EnumChildWindows
DeferWindowPos
EndDeferWindowPos
BeginDeferWindowPos
DdeEnableCallback
DdeUninitialize
DdeInitializeA
DdeNameService
DdeClientTransaction
DdeDisconnect
DdeFreeStringHandle
DdeCreateStringHandleA
DdeConnect
DdeGetLastError
DdeQueryStringA
DrawTextA
LoadCursorA
DialogBoxIndirectParamA
GetDC
DdePostAdvise
EnumThreadWindows
GetPropA
RemovePropA
SetPropA
TrackPopupMenu
InflateRect
ShowCaret
HideCaret
SetActiveWindow
InvalidateRgn
GetClassInfoExA
RegisterClassExA
GetClassInfoA
UnregisterClassA
CreateWindowExA
GetMenuItemID
EnableMenuItem
DrawMenuBar
GetSystemMenu
RemoveMenu
GetMenuStringA
GetSubMenu
LoadMenuA
ModifyMenuA
CheckMenuItem
DefMDIChildProcA
GetWindowPlacement
SetWindowPos
GetWindow
GetTopWindow
DeleteMenu
GetDlgItem
EndDialog
GetWindowTextA
SetWindowTextA
PostMessageA
IsWindow
LoadIconA
CreateMenu
AppendMenuA
SetMenu
DefFrameProcA
PostQuitMessage
SetWindowsHookExA
UnhookWindowsHookEx
GetMessagePos
GetMenu
GetMenuItemCount
ReplyMessage
IsDialogMessageA
TranslateMDISysAccel
IsZoomed
KillTimer
FlashWindow
EqualRect
DestroyMenu
GetSystemMetrics
LoadBitmapA
SetMessageQueue
MessageBoxA
CallNextHookEx
IsIconic
EnableWindow
GetActiveWindow
IsWindowEnabled
GetAsyncKeyState
SetFocus
InSendMessage
SetTimer
GetMessageA
TranslateMessage
DispatchMessageA
ShowWindow
SetCapture
DdeAccessData
DdeUnaccessData
SetForegroundWindow
InsertMenuA
DdeFreeDataHandle
DdeAddData
DdeCreateDataHandle
DdeGetData
DdeCmpStringHandles
DdeKeepStringHandle
ReleaseDC
GetForegroundWindow
SetRect
PeekMessageA
GetKeyState
ReleaseCapture
PtInRect
CallWindowProcA
CharUpperA
GetFocus
GetSysColor
DrawFocusRect
GetWindowRect
ScreenToClient
MoveWindow
GetClassLongA
DefWindowProcA
DestroyWindow
GetScrollPos
SetScrollRange
GetParent
BringWindowToTop
GetScrollRange
UpdateWindow
ScrollWindow
SetScrollPos
GetClientRect
IntersectRect
OffsetRect
SetWindowLongA
GetWindowLongA
ShowCursor
MessageBeep
GetCapture
GetCursorPos
WindowFromPoint
SetCursor
SendMessageA
RegisterClassA

gdi32

GetTextExtentPointA
GetTextMetricsA
GetTextColor
TextOutA
SelectObject
CreateFontIndirectA
GetCurrentObject
SetTextColor
RectVisible
InvertRgn
GetClipBox
GetNearestColor
StretchBlt
CreateCompatibleBitmap
Ellipse
GetBitmapBits
Polygon
CreatePolygonRgn
PtInRegion
RectInRegion
UnrealizeObject
CreateSolidBrush
StretchDIBits
GetDIBits
CreateDIBitmap
GetStockObject
FillRgn
SetROP2
GetROP2
GetBkColor
ExcludeClipRect
OffsetRgn
GetCharWidthA
GetTextFaceA
SetBkMode
CreateCompatibleDC
DeleteDC
RestoreDC
SaveDC
SetMapMode
SetMapperFlags
GetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
GetWindowOrgEx
CreateBitmap
CreatePen
MoveToEx
SetBrushOrgEx
SetStretchBltMode
SelectPalette
RealizePalette
LineTo
PatBlt
BitBlt
GetDeviceCaps
DeleteObject
CreatePatternBrush
SetBkColor
ExtTextOutA
Rectangle
GetObjectA
CombineRgn
SetRectRgn
CreateRectRgn
GetTextExtentPoint32A

comctl32

PropertySheetA

comdlg32

GetOpenFileNameA
ChooseFontA
GetSaveFileNameA
CommDlgExtendedError

advapi32

RegCloseKey
RegEnumValueA
RegSetValueExA
DeregisterEventSource
ReportEventW
RegisterEventSourceW
RegQueryValueExW
RegOpenKeyExW

ole32

CoCreateInstance
BindMoniker
CoGetMalloc
OleInitialize
OleUninitialize
StringFromGUID2

oleaut32

SysFreeString
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysStringLen

shlwapi

wnsprintfA

odbc32

ord71
ord52
ord15
ord2
ord1
ord10
ord51
ord8
ord6
ord50
ord23
ord42
ord22
ord58
ord72
ord12
ord54
ord5
ord63
ord57
ord41
ord13
ord4
ord40
ord16
ord18
ord11
ord45
ord67
ord66
ord47
ord44
ord20
ord19
ord14
ord9
ord3

Sections

.text
Size: 570KB - Virtual size: 569KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

QUIT_TEX
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

MAIN_TEX
Size: 512B - Virtual size: 395B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT_TEX
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ERROR_TE
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DDEQT_TE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DISPATCH
Size: 512B - Virtual size: 66B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

GRINIT_T
Size: 512B - Virtual size: 329B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.vmp0
Size: 500KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a05c7cf481a9eb4e9b91abc6700ab2a4

Headers

DLL Characteristics

File Characteristics

Imports

msvcr90

kernel32

user32

gdi32

comctl32

comdlg32

advapi32

ole32

oleaut32

shlwapi

odbc32

Sections

.text Size: 570KB - Virtual size: 569KB

QUIT_TEX Size: 1KB - Virtual size: 1KB

MAIN_TEX Size: 512B - Virtual size: 395B

INIT_TEX Size: 3KB - Virtual size: 3KB

ERROR_TE Size: 512B - Virtual size: 57B

DDEQT_TE Size: 4KB - Virtual size: 4KB

DISPATCH Size: 512B - Virtual size: 66B

GRINIT_T Size: 512B - Virtual size: 329B

.data Size: 17KB - Virtual size: 23KB

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 33KB - Virtual size: 32KB

.vmp0 Size: 500KB - Virtual size: 1.6MB

.text
Size: 570KB - Virtual size: 569KB

QUIT_TEX
Size: 1KB - Virtual size: 1KB

MAIN_TEX
Size: 512B - Virtual size: 395B

INIT_TEX
Size: 3KB - Virtual size: 3KB

ERROR_TE
Size: 512B - Virtual size: 57B

DDEQT_TE
Size: 4KB - Virtual size: 4KB

DISPATCH
Size: 512B - Virtual size: 66B

GRINIT_T
Size: 512B - Virtual size: 329B

.data
Size: 17KB - Virtual size: 23KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 33KB - Virtual size: 32KB

.vmp0
Size: 500KB - Virtual size: 1.6MB