302548d42b85359996372316fb7f4327f11e7f1e4ad6f808d7b6bf7e5f2b5f29

Sharing

Copy URL Twitter E-mail

General

Target

302548d42b85359996372316fb7f4327f11e7f1e4ad6f808d7b6bf7e5f2b5f29
Size

395KB
MD5

5c2ed2b6c41d823fbf6f798846c318c0
SHA1

dce7a652b2d6f8e858c88277d6998cb0bae8fd96
SHA256

302548d42b85359996372316fb7f4327f11e7f1e4ad6f808d7b6bf7e5f2b5f29
SHA512

8fa828ab31a6545a433d6f2c541495bf03d9bcbf6b59ac2f316729786485f8bb6ca1924c6aa7c929ae8eeeb5debcce3083a00ab23fdf1239d63568e326b561d5
SSDEEP

12288:5NWXqHmqCnkVUqlfh8wiIUByPPPPPPb3QIpUqW:4k1h8wiIUFIKqW

Score

N/A

Malware Config

Signatures

Files

302548d42b85359996372316fb7f4327f11e7f1e4ad6f808d7b6bf7e5f2b5f29
.exe windows x86

6b6a7f3c4c0095cf1200eb09f3c96994

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerClose
mixerOpen
mixerGetLineInfoA
mixerGetNumDevs
mixerSetControlDetails
mixerGetControlDetailsA
mixerGetLineControlsA

ws2_32

accept
select
closesocket
send
recv
listen
htons
gethostbyname
htonl
inet_ntoa
WSAStartup
WSACleanup
WSACloseEvent
WSAAccept
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
WSAEventSelect
WSACreateEvent
WSASocketA
WSASend
WSARecv
bind
socket
WSAGetLastError
gethostname

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiEnumDeviceInterfaces
SetupDiOpenDeviceInterfaceRegKey

kernel32

LoadResource
FindResourceA
FreeLibrary
GlobalFree
SetLastError
LocalFree
FormatMessageA
LocalAlloc
TlsAlloc
GlobalUnlock
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
MulDiv
GlobalFlags
WritePrivateProfileStringA
GetProcessVersion
GetCPInfo
GetOEMCP
GetThreadLocale
DuplicateHandle
GetCurrentProcess
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetFileAttributesA
GetFileSize
GetFileTime
LockResource
FileTimeToSystemTime
FileTimeToLocalFileTime
SizeofResource
RtlUnwind
RaiseException
HeapFree
HeapAlloc
ExitThread
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
HeapReAlloc
HeapSize
SetUnhandledExceptionFilter
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetVersion
lstrcatA
GetProfileStringA
GetProcAddress
LoadLibraryA
CloseHandle
WaitForSingleObject
InterlockedExchange
InterlockedIncrement
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
lstrlenA
GetLastError
GetTickCount
GetCurrentThread
GetACP
WideCharToMultiByte
MultiByteToWideChar
GetModuleHandleA
CreateThread
GetVersionExA
DeviceIoControl
CreateFileA
WriteFile
InterlockedDecrement
DeleteFileA
GetCurrentDirectoryA
lstrcpynA
GetCurrentThreadId
SetEvent
WaitForMultipleObjects
Sleep
DeleteCriticalSection
InitializeCriticalSection
CreateEventA
ResetEvent
TerminateThread
EnterCriticalSection
LeaveCriticalSection
SetErrorMode

user32

IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
LoadStringA
LoadCursorA
GetDesktopWindow
ClientToScreen
GetClassNameA
PtInRect
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
GetSysColorBrush
DestroyMenu
CharNextA
CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
MessageBeep
CharUpperA
InvalidateRect
InflateRect
RegisterClipboardFormatA
CreateDialogIndirectParamA
EndDialog
GetClientRect
CopyRect
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
MapDialogRect
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
SetCursor
SendMessageA
PostQuitMessage
DispatchMessageA
RegisterWindowMessageA
PostThreadMessageA
PeekMessageA
EnableWindow
GetDC
ReleaseDC
SetForegroundWindow
PostMessageA
wsprintfA
SetWindowContextHelpId
LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
IsWindowUnicode
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
RegisterClassA
HideCaret
UnregisterClassA
ModifyMenuA

gdi32

SetBkColor
GetObjectA
DeleteObject
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetTextColor
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
CreateBitmap
SetMapMode
GetClipBox
GetTextExtentPointA
BitBlt
CreateCompatibleDC
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
PatBlt
CreateDIBitmap
ExtEscape

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA

comctl32

ord17

oledlg

ord8

ole32

CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleFlushClipboard
OleIsCurrentClipboard
CoCreateInstance
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoCreateGuid
CoUninitialize
CoInitialize

olepro32

ord253

oleaut32

VariantCopy
VariantTimeToSystemTime
SysAllocStringLen
SysFreeString
SysAllocString
VariantInit
VariantClear
VariantChangeType
SysAllocStringByteLen
SysStringLen

Sections

.text
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.srdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6b6a7f3c4c0095cf1200eb09f3c96994

Headers

File Characteristics

Imports

winmm

ws2_32

setupapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 196KB - Virtual size: 195KB

.rdata Size: 40KB - Virtual size: 39KB

.data Size: 20KB - Virtual size: 36KB

.rsrc Size: 64KB - Virtual size: 63KB

.srdata Size: 68KB - Virtual size: 68KB

.text
Size: 196KB - Virtual size: 195KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 20KB - Virtual size: 36KB

.rsrc
Size: 64KB - Virtual size: 63KB

.srdata
Size: 68KB - Virtual size: 68KB