fa0372d417de37c87799b8187598be92be4481d52ac9d28f3a063f73269bf270

Sharing

Copy URL Twitter E-mail

General

Target

fa0372d417de37c87799b8187598be92be4481d52ac9d28f3a063f73269bf270
Size

688KB
MD5

92906ef809b1d06ba329fa4bfaaab3ce
SHA1

daff922928d001a106f8c8a2dcf6804bd189f9f6
SHA256

fa0372d417de37c87799b8187598be92be4481d52ac9d28f3a063f73269bf270
SHA512

6a8e24ef3f3805d60378f5b3ae5b08fa7bdc11458d267811a5ed0dabb27c164e7ea486f033014c03c2ee703c713de7795da3dd1ffc22253f82b55a3abefa2ad3
SSDEEP

12288:vC9YNVoOxqe5IxYlAPmmWSLCHyw68DMPnFgBLevlUF4/4mJcUSPdC:4mVD5Ixo64SLCHU8ofq5FbdVC

Score

N/A

Malware Config

Signatures

Files

fa0372d417de37c87799b8187598be92be4481d52ac9d28f3a063f73269bf270
.exe windows x86

0340ca0c831b59d888bb33cca26a2d08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFindFileNameA
PathFileExistsA
PathStripToRootA
PathCombineA
PathRemoveFileSpecA
PathRenameExtensionA
PathFindExtensionA
PathIsDirectoryA

gdi32

RectVisible
SetBkColor
GetStockObject
GetPixel
SetPixel
EndPage
GetRgnBox
CreatePen
LineTo
MoveToEx
Rectangle
RealizePalette
CreateDCW
GetDeviceCaps
SetROP2
CreateDIBSection
SetBkMode
DeleteObject
CreatePolygonRgn
CreateEllipticRgn
SetWindowOrgEx
CreateBitmap
SetPolyFillMode
SetBrushOrgEx
ExtTextOutW
GetWindowExtEx
GetObjectW
SetMapMode
StartPage
RectInRegion
SelectPalette
PolyBezier
SetWindowExtEx
CreateCompatibleDC
EndDoc
PtVisible
DeleteDC

kernel32

LCMapStringA
TlsGetValue
IsBadWritePtr
InitializeCriticalSection
GetVersion
GetStdHandle
VirtualQuery
UnhandledExceptionFilter
FreeLibrary
GetModuleHandleA
LeaveCriticalSection
InterlockedExchange
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeExW
QueryPerformanceCounter
HeapFree
CloseHandle
GetSystemTime
SetFilePointer
RaiseException
GetModuleHandleW
GetProcAddress
VirtualFree
HeapAlloc
SetThreadPriority
GetStartupInfoW
GetModuleFileNameA
GetCommandLineA
GetSystemInfo
TerminateProcess
LoadLibraryA
GetCurrentThreadId
FreeEnvironmentStringsA
GetCurrentThread
GetTimeFormatA
GetStringTypeW
WriteConsoleA
DeleteCriticalSection
ExitProcess
LCMapStringW
FatalAppExitA
WideCharToMultiByte
GetThreadLocale
Sleep
WriteFile
VirtualAlloc
GlobalFree
GetStartupInfoA
lstrcmpiA
SetStdHandle
InterlockedIncrement
GetTickCount
GetSystemTimeAsFileTime
GetLocalTime
LockResource
GetModuleFileNameW
HeapCreate
GetTimeZoneInformation
GetUserDefaultLCID
GetEnvironmentStrings
FreeEnvironmentStringsW
GetCurrentProcess
LocalFileTimeToFileTime
IsBadCodePtr
TlsAlloc
CompareStringA
ReadFile
SetEnvironmentVariableA
GetCPInfo
FlushFileBuffers
TlsFree
MultiByteToWideChar
TlsSetValue
GetProcessHeap
InterlockedDecrement
RtlUnwind
GetLastError
GetCommandLineW
IsBadReadPtr
GetCurrentProcessId
HeapDestroy
SetConsoleCtrlHandler
EnterCriticalSection
GetFileSize
GlobalUnlock
GetFileTime
SetHandleCount
CompareStringW
SetEndOfFile
GetDateFormatA
HeapReAlloc
CreateMutexW
GetEnvironmentStringsW
GetFileType
SetLastError
CreateFileW

user32

GetCursorPos
ValidateRect
InflateRect
GetSysColorBrush
SetWindowPos
IntersectRect
DestroyIcon
GetClientRect
ScreenToClient
TrackPopupMenu
ReleaseDC
RegisterClassExW
FillRect
CallNextHookEx
SetScrollPos
MapWindowPoints
CopyRect
CreateWindowExW
ChildWindowFromPoint
SetWindowTextW
ReleaseCapture
IsWindowVisible
GetFocus
SetCursor
BringWindowToTop
IsWindowEnabled
GetDlgCtrlID
InvalidateRect
GetUpdateRect
ShowWindow
RegisterClipboardFormatW
GetWindowDC
MessageBoxW
GetWindowPlacement
SetFocus
DestroyCursor
GetWindowRect
GetParent
DrawTextW
DefWindowProcW
GetMessagePos
EndDialog
SetTimer
EnableWindow
GetDlgItem
EqualRect
GetWindowLongA
GetMessageTime
SetMenuDefaultItem
CreatePopupMenu
MoveWindow
DrawEdge
IsClipboardFormatAvailable
ClientToScreen
GetMenu
DestroyMenu
LoadIconW
IsIconic
KillTimer
MessageBeep
DrawIconEx
GetCapture
FlashWindow
CheckMenuItem
PtInRect
GetWindowTextW
GetSystemMetrics
SetMenu
CallWindowProcW
SetMenuItemInfoW
ChildWindowFromPointEx
SetScrollInfo
SetRectEmpty
GetSysColor
CloseClipboard
BeginPaint
PostMessageW
SetActiveWindow
EndPaint
DrawFocusRect
GetWindowThreadProcessId
DrawFrameControl
GetScrollPos
RedrawWindow
UnhookWindowsHookEx
PeekMessageW
GetMenuDefaultItem
DestroyAcceleratorTable
SetForegroundWindow
DestroyWindow
EnableMenuItem
OffsetRect
SetWindowRgn
GetActiveWindow
RegisterClassW
GetMenuItemID
DeleteMenu
GetIconInfo
GetSubMenu
IsRectEmpty
CopyIcon
IsDlgButtonChecked
MessageBoxA
GetNextDlgTabItem
WindowFromPoint

urlmon

URLDownloadToCacheFileA

advapi32

RegOpenKeyA
AccessCheck
RegCloseKey
AllocateAndInitializeSid
IsValidSecurityDescriptor
DuplicateToken
RegCreateKeyExA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

comctl32

ImageList_LoadImageA
ImageList_DragEnter
ImageList_Destroy
ImageList_Create
ImageList_GetImageCount
ImageList_DragShowNolock
ImageList_GetImageInfo
InitCommonControlsEx
_TrackMouseEvent
ImageList_GetIconSize
ImageList_Draw
ord17
ImageList_DrawEx
ImageList_AddMasked

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 448KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0340ca0c831b59d888bb33cca26a2d08

Headers

File Characteristics

Imports

shlwapi

gdi32

kernel32

user32

urlmon

advapi32

comdlg32

comctl32

Sections

.text Size: 76KB - Virtual size: 74KB

.rdata Size: 448KB - Virtual size: 445KB

.data Size: 108KB - Virtual size: 104KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 76KB - Virtual size: 74KB

.rdata
Size: 448KB - Virtual size: 445KB

.data
Size: 108KB - Virtual size: 104KB

.rsrc
Size: 52KB - Virtual size: 51KB