5ba323f4cc0290c6866fda045ac149daa9c058dd2e7222d86bf0eadf2016bc32

Sharing

Copy URL Twitter E-mail

General

Target

5ba323f4cc0290c6866fda045ac149daa9c058dd2e7222d86bf0eadf2016bc32
Size

1.1MB
MD5

072df48fb778fa731f299fd8b1a08e0e
SHA1

3ef21e80ea3cf57185678dd289785e8339aad04c
SHA256

5ba323f4cc0290c6866fda045ac149daa9c058dd2e7222d86bf0eadf2016bc32
SHA512

b32af906fedec01e44dd00bb1fd1d260f83bd24ab46e65a476f8ab72b8376e0fa7b2a91e9ebeb5391acd12998087ab86ef9da1880fc0e3d15f388fa4d576e1d2
SSDEEP

24576:UD3ExLksZZf5QigkzD1zbDc2+52DtIoOFdT:UDUtFQigkzD1zbDcd52Dt

Score

N/A

Malware Config

Signatures

Files

5ba323f4cc0290c6866fda045ac149daa9c058dd2e7222d86bf0eadf2016bc32
.exe windows x86

5cb5229f3296eb03dd5fd7b77af92535

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mmioRead
midiOutUnprepareHeader
midiStreamOpen
midiStreamStop
mmioAscend
midiStreamPause
midiOutShortMsg
midiStreamOut
midiOutPrepareHeader
midiStreamProperty
mmioOpenA
midiStreamClose
mmioDescend
midiStreamRestart
midiOutReset

dsound

ord1

kernel32

GetLocalTime
GetCommandLineA
GetSystemTime
RaiseException
GetTimeZoneInformation
GetStartupInfoA
ExitProcess
TerminateProcess
HeapAlloc
GetACP
HeapReAlloc
HeapSize
UnhandledExceptionFilter
HeapFree
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
FreeEnvironmentStringsW
RtlUnwind
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadCodePtr
GetProcessVersion
GetCPInfo
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetTickCount
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetCurrentDirectoryA
GetOEMCP
VirtualFree
HeapCreate
TlsGetValue
GetProcAddress
GlobalHandle
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
SetEvent
WaitForSingleObject
GetModuleHandleA
FindResourceA
LoadResource
LockResource
SizeofResource
CloseHandle
CreateEventA
lstrcatA
lstrlenA
WinExec
lstrcpyA
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
GetVolumeInformationA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetProfileStringA
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
FormatMessageA
LocalFree
GetLastError
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
lstrcpynA
GetFileAttributesA
GetPrivateProfileIntA
GetModuleFileNameA
lstrcmpA
GetCurrentThread
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
MulDiv
SetLastError
GetVersion
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FreeEnvironmentStringsA
IsBadReadPtr

user32

IsRectEmpty
UnionRect
SetRect
SetParent
AppendMenuA
DeleteMenu
IsZoomed
GetSystemMenu
CharUpperA
GetClassNameA
GetSysColorBrush
LoadStringA
InsertMenuA
GetMenuStringA
DestroyIcon
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
GetDCEx
LockWindowUpdate
InvertRect
RegisterClipboardFormatA
PostThreadMessageA
GetDesktopWindow
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
WaitMessage
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
ShowOwnedPopups
PostQuitMessage
GrayStringA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
BringWindowToTop
WindowFromPoint
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
DestroyMenu
GetTopWindow
MessageBoxA
IsChild
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetFocus
DrawTextA
SystemParametersInfoA
PostMessageA
LoadImageA
GetCapture
MessageBeep
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
AdjustWindowRectEx
SetFocus
CopyIcon
InflateRect
IsWindow
GetSysColor
SetCursor
PtInRect
ReleaseCapture
SetCapture
GetClientRect
FillRect
GetParent
GetSystemMetrics
LoadCursorA
LoadBitmapA
LoadIconA
SendMessageA
SetTimer
KillTimer
EnableWindow
GetDC
InvalidateRect
UpdateWindow
GetWindowRect
ReleaseDC
wsprintfA
WinHelpA
TabbedTextOutA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode

gdi32

CreateCompatibleBitmap
StretchBlt
GetObjectA
Rectangle
CreateSolidBrush
GetStockObject
RealizePalette
GetDeviceCaps
CreatePalette
CreateFontIndirectA
BitBlt
GetTextExtentPoint32A
CreateCompatibleDC
GetTextExtentPointA
CreateDIBitmap
ScaleWindowExtEx
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
DeleteObject
CreateRectRgn
SetWindowExtEx
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
DPtoLP
StretchDIBits
GetCharWidthA
CreateFontA
GetTextMetricsA
GetTextColor
GetBkColor
LPtoDP
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
SelectPalette
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CreatePen
SelectClipRgn

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegEnumKeyA
RegOpenKeyA
SetFileSecurityA
RegCloseKey
RegSetValueA
RegCreateKeyA
GetFileSecurityA
RegQueryValueA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyExA

shell32

ExtractIconA
SHGetFileInfoA
DragQueryFileA
DragFinish
ShellExecuteA

comctl32

ImageList_Create
ImageList_Destroy
ord17
ImageList_Add

oledlg

ord8

ole32

OleFlushClipboard
OleIsCurrentClipboard
CoFreeUnusedLibraries
CoRegisterMessageFilter
OleUninitialize
OleInitialize
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
CoTaskMemFree
CreateILockBytesOnHGlobal
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
StgOpenStorageOnILockBytes
CoRevokeClassObject

olepro32

ord253

oleaut32

VariantChangeType
SysFreeString
SysAllocStringByteLen
SysAllocString
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysStringLen

wsock32

sendto
recvfrom
connect
inet_ntoa
WSAAsyncSelect
socket
recv
closesocket
send
htons
bind
htonl
WSASetLastError
listen
ioctlsocket
accept
WSAGetLastError
WSAStartup
WSACleanup
inet_addr
gethostname
gethostbyname

Sections

.text
Size: 292KB - Virtual size: 289KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 520KB - Virtual size: 518KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5cb5229f3296eb03dd5fd7b77af92535

Headers

File Characteristics

Imports

winmm

dsound

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

Sections

.text Size: 292KB - Virtual size: 289KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 16KB - Virtual size: 30KB

.rsrc Size: 520KB - Virtual size: 518KB

.tc Size: 244KB - Virtual size: 244KB

.text
Size: 292KB - Virtual size: 289KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 16KB - Virtual size: 30KB

.rsrc
Size: 520KB - Virtual size: 518KB

.tc
Size: 244KB - Virtual size: 244KB