cdb4b4136ee951ead072a7f295dcb15ba10bee0ac4733b02fb0272b93f719528

Sharing

Copy URL Twitter E-mail

General

Target

cdb4b4136ee951ead072a7f295dcb15ba10bee0ac4733b02fb0272b93f719528
Size

167KB
MD5

845807dbc5910a752fd272684d8a9270
SHA1

3356afba8cc26e83c33cf62e93c9104caeb7932a
SHA256

cdb4b4136ee951ead072a7f295dcb15ba10bee0ac4733b02fb0272b93f719528
SHA512

fae50a9be87e91d4c5ccb90ef449b918cae6ff86cde2bc84592f1cc4e2c27ba5ab599583320b0eced498ff0ff195a96eec8edbeb0c35e1f2cc44fd915acd0e0f
SSDEEP

3072:dil2+dC3iuKw6xTZes9w+cfLf4Plwp1sgwDGdO6hqT0ohqtYbiAG4Q:4l2+AfMTDBiLYlwYg661owtYe

Score

N/A

Malware Config

Signatures

Files

cdb4b4136ee951ead072a7f295dcb15ba10bee0ac4733b02fb0272b93f719528
.exe windows x86

f4562b263e9ec374367d052c0477b554

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameW
GetTickCount
SetFilePointer
GlobalAlloc
GlobalFree
CreateFileW
ReadFile
GetProcessAffinityMask
MapViewOfFile
UnmapViewOfFile
EnumResourceTypesW
WideCharToMultiByte
LocalAlloc
Sleep
GetFileAttributesA
GlobalSize
GetFileSize
DisableThreadLibraryCalls
LocalFree
CreateFileMappingA
WriteFile
CreateFileA
CloseHandle

wininet

InternetOpenUrlA
InternetReadFile
InternetOpenA
InternetCloseHandle

version

VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoW
GetFileVersionInfoA
GetFileVersionInfoSizeW
VerQueryValueA

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

winmm

timeGetTime
timeSetEvent

advapi32

CryptEncrypt
RegQueryInfoKeyA
RegEnumKeyExA
CryptCreateHash
RegDeleteValueA
CryptAcquireContextA
RegOpenKeyExA
RegCreateKeyExA
CryptDestroyKey
CryptDestroyHash
CryptHashData
RegQueryValueExA
CryptReleaseContext
CryptImportKey
RegEnumValueA
CryptGetHashParam
RegCloseKey
RegSetValueExA
RegDeleteKeyA

gdiplus

GdipDisposeImage
GdipCreateBitmapFromFileICM
GdipFree
GdipAlloc
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipCloneImage

user32

CharNextA
GetActiveWindow
GetDlgItem
GetClassNameA
GetWindowTextA
PostMessageA
DestroyAcceleratorTable
GetWindowTextLengthA
SendMessageA
CreateAcceleratorTableA
GetWindowLongA
PeekMessageA
CallWindowProcA
wvsprintfA
FindWindowA
SetTimer
LoadCursorA
EqualRect
IsChild
DefWindowProcA
RegisterClassExA
MoveWindow
CreateDialogParamA
IsWindow
RegisterWindowMessageA
EndPaint
ReleaseDC
PostThreadMessageA
GetWindow
SetFocus
SetRect
DrawTextA
KillTimer
GetSysColor
wsprintfA
FillRect
GetWindowRect
ReleaseCapture
SendNotifyMessageA
UnregisterClassA
GetFocus
GetDesktopWindow
CreateWindowExA
DispatchMessageA
ShowWindow
GetDC
SetWindowTextA
SetParent
GetQueueStatus
BeginPaint
GetParent
GetClientRect
SetWindowLongA
RedrawWindow
SendMessageTimeoutA
MsgWaitForMultipleObjects
InvalidateRgn
InvalidateRect
GetClassInfoExA
EnumDisplayDevicesA
SetCapture
DestroyWindow
CopyRect
SetWindowPos

gdi32

CreateCompatibleDC
GetDeviceCaps
ExtEscape
GetDIBits
CreateDIBSection
DeleteObject
SelectObject
GetStockObject
CreateDIBitmap
DeleteDC
StretchDIBits
BitBlt
SelectPalette
RealizePalette
GetObjectA
CreateSolidBrush
CreateCompatibleBitmap
CreateFontA
SetStretchBltMode
SetBkMode

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

ole32

CLSIDFromProgID
StgCreateDocfile
CreateItemMoniker
CoInitialize
CoGetClassObject
GetRunningObjectTable
BindMoniker
CoTaskMemFree
StringFromGUID2
StgOpenStorage
CoCreateInstance
CreateBindCtx
CoUninitialize
CreateStreamOnHGlobal
StgIsStorageFile
CoTaskMemAlloc
CoSetProxyBlanket
OleLockRunning
OleUninitialize
CoTaskMemRealloc
CoInitializeSecurity
OleInitialize
CLSIDFromString

shlwapi

PathFileExistsW
PathCombineW

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4562b263e9ec374367d052c0477b554

Headers

File Characteristics

Imports

kernel32

wininet

version

setupapi

winmm

advapi32

gdiplus

user32

gdi32

shell32

ole32

shlwapi

Sections

.text Size: 99KB - Virtual size: 98KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 61KB - Virtual size: 61KB

.tls Size: 1024B - Virtual size: 96KB

.text
Size: 99KB - Virtual size: 98KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 61KB - Virtual size: 61KB

.tls
Size: 1024B - Virtual size: 96KB