0bd8bea2cc81e41450923c31ec3b490f79876b1c857b4b7e22aff3340349d898

Sharing

Copy URL Twitter E-mail

General

Target

0bd8bea2cc81e41450923c31ec3b490f79876b1c857b4b7e22aff3340349d898
Size

177KB
MD5

0d6e8cf1e5a9f5d37dad994d305fb3b9
SHA1

b9b7d9f43ce65d5eabbbb5bf69d3055c38b02260
SHA256

0bd8bea2cc81e41450923c31ec3b490f79876b1c857b4b7e22aff3340349d898
SHA512

baad0f161dc54257043d7608234299810e94e175688fec708233a1ff4f3af73e8db4390c3f4f0ef667c6dc1302323d97103bffb123093ed85eb96a613083e3c7
SSDEEP

3072:My6Es4ugtswD5Isovn7Ve0bxqyV4RAwgHDcGYgr1Mg0EkyfboC0C38a+:MHVI53y7s0t9VOAkGYk1MWkIkC0C3Z

Score

N/A

Malware Config

Signatures

Files

0bd8bea2cc81e41450923c31ec3b490f79876b1c857b4b7e22aff3340349d898
.exe windows x86

3039fc11acd8621735e70999b4d91228

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFileExistsW
PathCombineW

advapi32

RegCloseKey
CryptAcquireContextA
CryptImportKey
CryptDestroyKey
CryptReleaseContext
CryptHashData
CryptGetHashParam
RegDeleteValueA
RegQueryValueExA
RegEnumKeyExA
RegSetValueExA
RegQueryInfoKeyA
CryptEncrypt
RegCreateKeyExA
RegOpenKeyExA
RegEnumValueA
CryptCreateHash
CryptDestroyHash
RegDeleteKeyA

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoW
VerQueryValueA

winmm

timeGetTime
timeSetEvent

user32

CreateAcceleratorTableA
SendMessageA
SetWindowLongA
IsWindow
GetClassNameA
GetDC
ReleaseDC
EqualRect
DefWindowProcA
PostMessageA
GetFocus
GetWindowLongA
GetWindowRect
GetQueueStatus
PeekMessageA
SetCapture
DrawTextA
InvalidateRgn
DestroyAcceleratorTable
UnregisterClassA
KillTimer
DestroyWindow
LoadCursorA
GetWindowTextA
RegisterWindowMessageA
PostThreadMessageA
GetParent
EnumDisplayDevicesA
SendNotifyMessageA
CreateDialogParamA
SetParent
wsprintfA
SetFocus
GetClientRect
RedrawWindow
CharNextA
MoveWindow
CopyRect
wvsprintfA
GetClassInfoExA
RegisterClassExA
MsgWaitForMultipleObjects
DispatchMessageA
InvalidateRect
SetRect
ReleaseCapture
SendMessageTimeoutA
SetWindowTextA
GetDesktopWindow
GetWindow
GetWindowTextLengthA
GetDlgItem
SetTimer
GetActiveWindow
ShowWindow
CreateWindowExA
CallWindowProcA
FillRect
EndPaint
GetSysColor
BeginPaint
FindWindowA
IsChild
SetWindowPos

gdi32

CreateDIBitmap
RealizePalette
DeleteObject
GetDeviceCaps
StretchDIBits
CreateCompatibleBitmap
SetStretchBltMode
CreateDIBSection
SelectObject
SelectPalette
DeleteDC
CreateSolidBrush
GetDIBits
CreateCompatibleDC
GetStockObject
ExtEscape
BitBlt
CreateFontA
GetObjectA
SetBkMode

gdiplus

GdipDisposeImage
GdipCreateBitmapFromFileICM
GdipAlloc
GdipGetImagePixelFormat
GdipFree
GdipCreateBitmapFromFile
GdipCloneImage

wininet

InternetOpenUrlA
InternetOpenA
InternetReadFile
InternetCloseHandle

ole32

CoTaskMemFree
CoInitialize
StgCreateDocfile
GetRunningObjectTable
OleInitialize
CoTaskMemAlloc
CLSIDFromProgID
OleUninitialize
CoCreateInstance
CoTaskMemRealloc
OleLockRunning
StgOpenStorage
CreateStreamOnHGlobal
CoGetClassObject
CreateItemMoniker
StgIsStorageFile
CoInitializeSecurity
BindMoniker
CoSetProxyBlanket
StringFromGUID2
CreateBindCtx
CoUninitialize
CLSIDFromString

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

kernel32

GetTickCount
GetShortPathNameW
UnmapViewOfFile
MapViewOfFile
CreateFileA
GetProcessAffinityMask
Sleep
WideCharToMultiByte
CreateFileMappingA
DisableThreadLibraryCalls
GlobalAlloc
LocalAlloc
EnumResourceTypesA
GetFileSize
CreateFileW
LocalFree
GetFileAttributesA
ReadFile
GlobalSize
WriteFile
SetFilePointer
GlobalFree
CloseHandle

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3039fc11acd8621735e70999b4d91228

Headers

File Characteristics

Imports

shlwapi

advapi32

version

winmm

user32

gdi32

gdiplus

wininet

ole32

shell32

kernel32

setupapi

Sections

.text Size: 102KB - Virtual size: 101KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 68KB - Virtual size: 67KB

.tls Size: 1024B - Virtual size: 92KB

.text
Size: 102KB - Virtual size: 101KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 68KB - Virtual size: 67KB

.tls
Size: 1024B - Virtual size: 92KB