b11e1eb1811d0f40a45f5a613b7b6e28008b5542e8c19f4c4b5fe8a859d24c8e

Sharing

Copy URL Twitter E-mail

General

Target

b11e1eb1811d0f40a45f5a613b7b6e28008b5542e8c19f4c4b5fe8a859d24c8e
Size

767KB
MD5

7db9059a3a9265675792088ee5a50ad8
SHA1

6944aeb692e8ee007862375c965e1f5573b8f1cf
SHA256

b11e1eb1811d0f40a45f5a613b7b6e28008b5542e8c19f4c4b5fe8a859d24c8e
SHA512

6deec6779e29bb451484376cf71180e89f23412f38fefa4d7a82e3232d71ebf9fe3aa1d34e180dcfaf5dcd7068c84c0336ff6641e925adb2645fa709c52643ad
SSDEEP

12288:r6l/A8SYncrAmV97QGyE5PVnv5dvaA60B6gRh/GPFFQVRbyA2uG19j:r6GTYyL7QMPVvOsJRh/GPFqVNcuG1l

Score

N/A

Malware Config

Signatures

Files

b11e1eb1811d0f40a45f5a613b7b6e28008b5542e8c19f4c4b5fe8a859d24c8e
.exe windows x86

884c9b0e91c512e644e13f00be53a82b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

htonl
ntohl
htons

kernel32

lstrcatW
MultiByteToWideChar
CreateProcessW
MoveFileW
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
SetFilePointer
GetFileSize
GetCurrentThreadId
LoadLibraryW
FreeLibrary
GetVersionExW
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GlobalReAlloc
GetLocalTime
GetModuleFileNameA
DeleteCriticalSection
InitializeCriticalSection
InterlockedExchange
VirtualQuery
InterlockedIncrement
GetSystemInfo
InterlockedDecrement
InterlockedCompareExchange
GetSystemDefaultLangID
LoadLibraryA
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
RaiseException
GetVersionExA
GetACP
GetLocaleInfoA
GetThreadLocale
TerminateProcess
UnhandledExceptionFilter
lstrlenW
IsDebuggerPresent
ExitThread
CreateThread
GetFileAttributesW
GetSystemTimeAsFileTime
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
ExitProcess
GetOEMCP
IsValidCodePage
HeapCreate
VirtualFree
VirtualAlloc
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
lstrcpynW
GetEnvironmentVariableW
GetLogicalDrives
GetDiskFreeSpaceExW
GetProcessHeap
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetTempPathW
GetProcAddress
LockResource
FreeResource
CreateFileA
SizeofResource
FindResourceExW
LoadResource
FindResourceW
GetModuleHandleW
WriteFile
GetLongPathNameW
ReadFile
CreateFileW
GetCurrentProcess
Sleep
CreateEventW
GetLastError
GetModuleFileNameW
ReleaseMutex
GetPrivateProfileIntW
WaitForSingleObject
CloseHandle
GetPrivateProfileStringW
CreateMutexW
WritePrivateProfileStringW
DeleteFileW
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
GetStartupInfoW

user32

SetWindowLongW
GetClassInfoW
MapWindowPoints
GetWindow
DefWindowProcW
RegisterClassExW
GetSysColor
FillRect
DrawTextW
GetParent
EqualRect
CopyRect
CreateWindowExW
GetKeyState
FindWindowA
InflateRect
IsIconic
ReleaseCapture
SetCapture
LoadCursorW
SetCursor
CallWindowProcW
RegisterWindowMessageW
SetCaretPos
GetWindowLongW
HideCaret
ShowCaret
UnhookWindowsHookEx
GetWindowTextW
CreateCaret
EndPaint
SetWindowsHookExW
SetWindowPos
GetMenuState
CallNextHookEx
GetWindowRect
DrawIconEx
IsWindowVisible
GetSystemMetrics
FindWindowExW
ReleaseDC
GetClassInfoExW
UpdateLayeredWindow
GetClassNameW
PostMessageW
GetDC
BeginPaint
IsWindow
IsRectEmpty
GetCursorPos
InvalidateRect
EnableWindow
IntersectRect
GetAncestor
UnionRect
GetDesktopWindow
KillTimer
ScreenToClient
SetTimer
GetClientRect
WindowFromPoint
SystemParametersInfoW
ClientToScreen
IsZoomed
SetWindowRgn
OffsetRect
SetFocus
SendMessageTimeoutW
GetActiveWindow
PtInRect
PostQuitMessage
UpdateWindow
ShowWindow
SetRect
DestroyWindow
LoadImageW
GetSystemMenu
UnregisterClassA
SendMessageW
DispatchMessageW
TranslateMessage
GetMessageW
MessageBoxW
GetCapture

gdi32

GetTextMetricsW
CreatePen
SetBkMode
DeleteDC
BitBlt
ExcludeClipRect
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
GetStockObject
DeleteObject
GetObjectW
GetDeviceCaps
ExtCreateRegion
CombineRgn
GetTextExtentPoint32W
CreateSolidBrush
SetTextColor
SetBkColor
ExtTextOutW
Rectangle
CreateRectRgn
CreateFontIndirectW

advapi32

RegQueryValueExW
RegCloseKey
RegOpenKeyExW

shell32

SHBrowseForFolderW
SHGetFolderPathW
SHGetPathFromIDListW
SHGetMalloc

ole32

CoUninitialize
CreateStreamOnHGlobal
CoCreateInstance
CoInitialize

shlwapi

PathGetDriveNumberW
PathFileExistsW

comctl32

_TrackMouseEvent
InitCommonControlsEx

imm32

ImmReleaseContext

gdiplus

GdipGetImageGraphicsContext
GdipCreateFromHDC
GdipGetImagePixelFormat
GdipDisposeImage
GdipCloneImage
GdipDrawImageRectI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCloneBitmapAreaI
GdipSetWorldTransform
GdipCreateHBITMAPFromBitmap
GdipRotateMatrix
GdipCreateBitmapFromScan0
GdipTranslateMatrix
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipDeleteMatrix
GdipGraphicsClear
GdipCreateMatrix
GdipDeleteGraphics
GdipAlloc
GdipFree
GdiplusShutdown
GdiplusStartup
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectRectI

msimg32

AlphaBlend

Sections

.text
Size: 348KB - Virtual size: 346KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 556KB - Virtual size: 553KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

884c9b0e91c512e644e13f00be53a82b

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

comctl32

imm32

gdiplus

msimg32

Sections

.text Size: 348KB - Virtual size: 346KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 12KB - Virtual size: 20KB

.rsrc Size: 556KB - Virtual size: 553KB

.text
Size: 348KB - Virtual size: 346KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 12KB - Virtual size: 20KB

.rsrc
Size: 556KB - Virtual size: 553KB