4c52d6cc6c5f60c7de43161c2fc35ca3a15c00fd27dcea94138d5b60f8c88039

Sharing

Copy URL Twitter E-mail

General

Target

4c52d6cc6c5f60c7de43161c2fc35ca3a15c00fd27dcea94138d5b60f8c88039
Size

456KB
MD5

1797f011e9fa59178ccb887ab3833bd6
SHA1

148fb13103a4bb9576b7f6ab07ffb5b8956e62ee
SHA256

4c52d6cc6c5f60c7de43161c2fc35ca3a15c00fd27dcea94138d5b60f8c88039
SHA512

e5be959c068833c39cfac99dcdc25f9527ef25029e88b115315a424cc33514f99dd832723dd8eb55debe173d8b9a94f5819c0e329ac3e0e5faed6f9f4c2017ab
SSDEEP

6144:Ao/o1vH3+avuA9zxfotxMAx7oNhqAUoIJ2:t/o15NNxfYp72UW

Score

N/A

Malware Config

Signatures

Files

4c52d6cc6c5f60c7de43161c2fc35ca3a15c00fd27dcea94138d5b60f8c88039
.exe windows x86

0d54afeb9918e312e29a6ba0a17ac9b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
gethostname
gethostbyname
inet_ntoa
WSACleanup

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

wininet

InternetGetLastResponseInfoA
InternetGetConnectedState
InternetCheckConnectionA
FtpOpenFileA
FtpGetFileSize
FtpFindFirstFileA
InternetOpenUrlA
InternetCanonicalizeUrlA
InternetOpenA
HttpQueryInfoA
InternetTimeToSystemTime
InternetReadFile
InternetConnectA
InternetCloseHandle

gdi32

ExtTextOutA
GetStockObject
CreateSolidBrush
CreateCompatibleDC
BitBlt
SelectObject
DeleteDC
GetDeviceCaps
SaveDC
RestoreDC
SetBkMode
SetTextColor
ExcludeClipRect
IntersectClipRect
SetBkColor
GetObjectA
DeleteObject
CreateFontIndirectA
DPtoLP

kernel32

SetFilePointer
GetConsoleCP
GetConsoleMode
RaiseException
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
LoadLibraryA
FreeLibrary
CloseHandle
OpenProcess
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
LocalAlloc
FormatMessageA
FindClose
FindFirstFileA
CompareFileTime
DosDateTimeToFileTime
GetCurrentThreadId
GetLastError
InterlockedIncrement
DebugBreak
OutputDebugStringA
WaitForSingleObject
Sleep
GetFileAttributesA
SetLastError
HeapFree
HeapAlloc
GetTempPathA
CreateThread
TerminateProcess
InitializeCriticalSection
DeleteCriticalSection
lstrlenW
lstrcmpiA
IsDBCSLeadByte
SizeofResource
LoadResource
FindResourceA
GetModuleHandleA
GetModuleFileNameA
ReleaseMutex
GetCurrentProcessId
WriteConsoleA
GetThreadLocale
GetProfileIntA
MulDiv
WaitNamedPipeA
WriteFile
ReadFile
CreateFileA
FlushFileBuffers
DeleteFileA
SetFileTime
GetFileTime
GetFileSize
CreateDirectoryA
MoveFileA
SystemTimeToFileTime
LocalFree
FlushInstructionCache
GetCurrentProcess
AllocConsole
LockResource
GetVersionExA
CompareStringA
LCMapStringA
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetOEMCP
GetCPInfo
HeapCreate
HeapDestroy
GetStartupInfoA
GetCommandLineA
GetSystemTimeAsFileTime
GetFullPathNameA
GetLocalTime
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualProtect
HeapSize
RtlUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
GetProcessHeap
InterlockedCompareExchange
GetLocaleInfoA
GetACP
InterlockedExchange
LocalFileTimeToFileTime
lstrcatA
lstrcpyA
GetCurrentDirectoryA
LoadLibraryExA
SetStdHandle
GetDriveTypeA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetConsoleOutputCP
WriteConsoleW
LCMapStringW
GetStringTypeA
GetStringTypeW
ExitProcess
GetStdHandle
CreateMutexA
SetEndOfFile

user32

DestroyCursor
RegisterClassExA
CreateWindowExA
SetRectEmpty
LoadBitmapA
LoadCursorA
GetClassInfoExA
SystemParametersInfoA
MapWindowPoints
IsWindow
SendDlgItemMessageA
MoveWindow
GetSystemMenu
GetWindowTextLengthA
GetWindowTextA
DrawFocusRect
UpdateWindow
InvalidateRect
IsWindowEnabled
SetCapture
GetDlgCtrlID
GetClassNameA
CreateCursor
GetFocus
GetCapture
MessageBeep
SetFocus
SetDlgItemTextA
IsDlgButtonChecked
CheckDlgButton
DestroyMenu
EnableMenuItem
GetSystemMetrics
LoadImageA
SetWindowPos
EnableWindow
ShowWindow
GetWindow
SetWindowTextA
WaitForInputIdle
FillRect
GetSysColor
GetDlgItem
GetWindowLongA
SetWindowLongA
EndPaint
BeginPaint
GetDC
ReleaseDC
OffsetRect
GetParent
ScreenToClient
GetClientRect
GetWindowRect
DrawTextA
SendMessageA
DefWindowProcA
DestroyWindow
GetActiveWindow
EnumWindows
MessageBoxA
CharNextA
LoadStringA
GetWindowThreadProcessId
PostMessageA
UnregisterClassA
ReleaseCapture
GetCursorPos
PtInRect
SetCursor
CallWindowProcA

advapi32

RegDeleteKeyA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumKeyExA
RegQueryValueExA
GetUserNameA
RegDeleteValueA

shell32

SHFileOperationA
ShellExecuteA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteExA

ole32

OleRun
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoUninitialize
CoInitialize

oleaut32

GetErrorInfo
SysStringLen
SysAllocString
VarUI4FromStr
SysAllocStringLen
VariantClear
VariantInit
VariantCopy
SysFreeString
SysStringByteLen
SysAllocStringByteLen

comctl32

PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
_TrackMouseEvent
InitCommonControlsEx

Sections

.text
Size: 192KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d54afeb9918e312e29a6ba0a17ac9b1

Headers

File Characteristics

Imports

ws2_32

version

wininet

gdi32

kernel32

user32

advapi32

shell32

ole32

oleaut32

comctl32

Sections

.text Size: 192KB - Virtual size: 189KB

.rdata Size: 48KB - Virtual size: 46KB

.data Size: 16KB - Virtual size: 25KB

.rsrc Size: 196KB - Virtual size: 195KB

.text
Size: 192KB - Virtual size: 189KB

.rdata
Size: 48KB - Virtual size: 46KB

.data
Size: 16KB - Virtual size: 25KB

.rsrc
Size: 196KB - Virtual size: 195KB