5544937a821653bc1369956b605e402fca13a326b455a03fe28840e0787baa04

Sharing

Copy URL Twitter E-mail

General

Target

5544937a821653bc1369956b605e402fca13a326b455a03fe28840e0787baa04
Size

337KB
MD5

848ae268e9e8fbf31ce74733b9e892b0
SHA1

5c79f1c6fc9281a9bf663f37fcab76bc63194d1e
SHA256

5544937a821653bc1369956b605e402fca13a326b455a03fe28840e0787baa04
SHA512

11ad37c863c0014714446d52c6f080ac141393c6f862d338ea6459abda4bc0ac7d3d664dda87310af983deaf344f93d3c77bac47ef9d1bcbe4b44116703e454b
SSDEEP

6144:8QkfPmtN9BVaHEuE9TmY8LAdu4Nu0dS2whdZaxvUorhU8:p4PmZTaHEuAmY8AaiUorZ

Score

N/A

Malware Config

Signatures

Files

5544937a821653bc1369956b605e402fca13a326b455a03fe28840e0787baa04
.exe windows x86

31e88bfb08dc1efd26690d8b1a73bd8b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mmioAscend
waveOutOpen
waveOutClose
waveOutReset
waveOutUnprepareHeader
waveOutWrite
waveOutPrepareHeader
waveInStart
waveInAddBuffer
waveInPrepareHeader
waveInOpen
waveInClose
waveInReset
waveInStop
waveInUnprepareHeader
mmioWrite
mmioClose
mmioRead
mmioDescend

kernel32

DuplicateHandle
GetCurrentProcess
CreateFileW
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
FindClose
FindFirstFileW
GetVolumeInformationW
GetFullPathNameW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTickCount
GetFileAttributesW
GetFileSize
GetFileTime
FormatMessageW
GetStartupInfoW
ExitProcess
RtlUnwind
CreateThread
ExitThread
HeapFree
TerminateProcess
RaiseException
HeapSize
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineA
SetHandleCount
GetStdHandle
SetErrorMode
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetCPInfo
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
ResetEvent
SetEvent
GetLastError
WaitForMultipleObjects
GetCurrentThreadId
Sleep
WaitForSingleObject
OpenProcess
GetCurrentProcessId
VirtualQuery
GetCommandLineW
LoadLibraryW
WriteFile
VirtualAlloc
HeapAlloc
GetCurrentThread
HeapReAlloc
FindNextFileW
CloseHandle
GetFileType
GetProfileStringA
GetThreadLocale
SizeofResource
WritePrivateProfileStringW
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalFree
GlobalAddAtomA
FindResourceA
LocalAlloc
GlobalFlags
lstrcmpiW
lstrcpynW
GetProcessVersion
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
MulDiv
SetLastError
GetModuleHandleA
LoadLibraryA
FreeLibrary
GetVersion
lstrcatW
GlobalAddAtomW
GlobalFindAtomW
lstrcpyW
GetModuleHandleW
GetProcAddress
GlobalUnlock
GlobalFree
LockResource
FindResourceW
LoadResource
GetModuleFileNameW
GlobalLock
ResumeThread
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
lstrlenW
InterlockedDecrement
InterlockedIncrement
ReleaseSemaphore
CreateSemaphoreW
CreateEventW
SuspendThread
SetThreadPriority

user32

PtInRect
GetDesktopWindow
LoadStringW
CharNextW
CopyAcceleratorTableW
SetRect
GetNextDlgGroupItem
MessageBeep
DestroyMenu
InvalidateRect
CharUpperW
InflateRect
RegisterClipboardFormatW
GetDC
ClientToScreen
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
GetClassNameW
EndPaint
IsChild
GetCapture
WinHelpW
wsprintfW
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgCtrlID
CreateWindowExW
GetWindowDC
UnhookWindowsHookEx
GetPropW
RemovePropW
DefWindowProcW
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongW
RegisterWindowMessageW
OffsetRect
IntersectRect
SystemParametersInfoW
GetWindowPlacement
GetWindowRect
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
GetLastActivePopup
IsWindowEnabled
GetWindowLongW
MessageBoxW
SetCursor
GetWindowLongA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
PostMessageW
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetMenuCheckMarkDimensions
GetSysColorBrush
LoadCursorW
GrayStringW
DrawTextW
TabbedTextOutW
LoadBitmapW
GetMenuState
ModifyMenuW
GetTopWindow
BeginPaint
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
SendDlgItemMessageW
CloseClipboard
SendMessageA
GetWindowTextW
CreateCaret
LoadIconW
EnableWindow
GetClientRect
IsIconic
SendMessageW
DrawIcon
GetSystemMetrics
PostThreadMessageW
PostQuitMessage
SetWindowsHookExA
RemovePropA
CallWindowProcA
CharNextA
DefWindowProcA
DefDlgProcA
GetClassInfoA
DrawFocusRect
DrawTextA
GetWindowTextA
ExcludeUpdateRgn
ShowCaret
SetPropW
ReleaseDC
HideCaret
GetWindowTextLengthA
UnregisterClassW
CallWindowProcW

gdi32

RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
SaveDC
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutW
Escape
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
PatBlt
DeleteDC
GetObjectW
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
RealizePalette
ExtTextOutA
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateDIBitmap
ExtTextOutW

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey

comctl32

ord17

oledlg

OleUIBusyW

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
CLSIDFromProgID
CoTaskMemFree
CoTaskMemAlloc
OleUninitialize
OleInitialize
CLSIDFromString
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoGetClassObject

olepro32

ord253

oleaut32

VariantTimeToSystemTime
SysStringLen
SysAllocString
VariantChangeType
VariantCopy
SysFreeString
SysAllocStringLen
VariantClear

psapi

GetModuleFileNameExW

Sections

.text
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 256B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31e88bfb08dc1efd26690d8b1a73bd8b

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

olepro32

oleaut32

psapi

Sections

.text Size: 152KB - Virtual size: 151KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 20KB - Virtual size: 39KB

.idata Size: 12KB - Virtual size: 9KB

.rsrc Size: 256B - Virtual size: 12KB

.reloc Size: 24KB - Virtual size: 22KB

.text
Size: 152KB - Virtual size: 151KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 20KB - Virtual size: 39KB

.idata
Size: 12KB - Virtual size: 9KB

.rsrc
Size: 256B - Virtual size: 12KB

.reloc
Size: 24KB - Virtual size: 22KB