94d7e48a450e9e0016c0a8a854ce3e22f779cef23906b6849342ac1688854d56

Sharing

Copy URL Twitter E-mail

General

Target

94d7e48a450e9e0016c0a8a854ce3e22f779cef23906b6849342ac1688854d56
Size

392KB
MD5

0dbb96ff72d7cd59366fb703a14daef0
SHA1

74c2772afc9c6cd9c754e676d848385b72ee4be8
SHA256

94d7e48a450e9e0016c0a8a854ce3e22f779cef23906b6849342ac1688854d56
SHA512

2f42f983ade48d83464ed527bfcc75bc967554891b543f9e932eaf7d459b509dbef45eaa303d274c549ae62a822dcb7a297d127800236fde5e9c81fe54f67829
SSDEEP

12288:iiKz/8/LxFBIRVVY0drcQsa8aaUGnw/4:iizIRVvdrJsaWUGn84

Score

N/A

Malware Config

Signatures

Files

94d7e48a450e9e0016c0a8a854ce3e22f779cef23906b6849342ac1688854d56
.exe windows x86

05fbf0ffb255b84df6364f2144079fae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCloseHandle
InternetReadFile
InternetOpenUrlA
InternetOpenA

kernel32

GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleHandleA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
InterlockedIncrement
InterlockedDecrement
lstrlenW
MultiByteToWideChar
lstrlenA
GetModuleFileNameA
WideCharToMultiByte
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
HeapFree
CompareStringA
lstrcpyA
WriteFile
ReadFile
SetFilePointer
GetFileAttributesA
CreateFileA
VerifyVersionInfoA
VerSetConditionMask
lstrcmpA
GetProcAddress
LoadLibraryA
GetFileSize
FlushFileBuffers
SetStdHandle
IsBadCodePtr
LeaveCriticalSection
LCMapStringW
GetCurrentThreadId
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCPInfo
GetOEMCP
GetFileType
GetStdHandle
SetHandleCount
HeapSize
TerminateProcess
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetCommandLineA
GetStartupInfoA
HeapReAlloc
VirtualQuery
GetStringTypeA
GetSystemInfo
VirtualAlloc
VirtualProtect
RtlUnwind
ExitProcess
CreateProcessA
WaitForSingleObject
CloseHandle
GetStringTypeW
EnterCriticalSection
RaiseException
GetLastError
GetProcessHeap
HeapAlloc
GetCurrentProcess
FlushInstructionCache
GetVersionExA
DeleteCriticalSection
LCMapStringA
InitializeCriticalSection
SetEndOfFile
IsBadReadPtr

user32

GetSysColor
IsWindowEnabled
DrawFocusRect
FillRect
EndPaint
BeginPaint
GetDlgCtrlID
GetSystemMetrics
LoadImageA
CharUpperA
GetFocus
GetCursorPos
ScreenToClient
SetCursor
InvalidateRect
PtInRect
SetFocus
SetCapture
GetCapture
UpdateWindow
CallWindowProcA
GetClassNameA
CreateCursor
SetRectEmpty
OffsetRect
DestroyCursor
ReleaseDC
GetDC
DrawTextA
GetWindow
GetWindowRect
SystemParametersInfoA
MapWindowPoints
SetWindowPos
IsWindow
IsDialogMessageA
GetDlgItem
GetParent
EnableWindow
GetClientRect
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
SendMessageA
GetWindowLongA
CreateWindowExA
EndDialog
DefWindowProcA
CharNextA
DestroyWindow
GetActiveWindow
LoadStringA
DialogBoxParamA
wsprintfA
UnregisterClassA
SetWindowLongA
ReleaseCapture

gdi32

SelectObject
GetStockObject
DeleteObject
CreateFontIndirectA
SetTextColor
GetObjectA
DeleteDC
SetBkMode

comdlg32

CommDlgExtendedError

advapi32

RegOpenKeyExA
RegDeleteKeyA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegQueryInfoKeyA
RegEnumKeyExA
RegOpenKeyA
RegDeleteValueA

shell32

SHGetFolderPathA
ShellExecuteA

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoUninitialize
CoInitialize

oleaut32

VarUI4FromStr

comctl32

InitCommonControlsEx
_TrackMouseEvent

Exports

Exports

FFTBCompatibilityCheck
GDSCompatibilityCheck

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 276KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

05fbf0ffb255b84df6364f2144079fae

Headers

File Characteristics

Imports

wininet

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 84KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 276KB - Virtual size: 276KB

.text
Size: 84KB - Virtual size: 84KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 276KB - Virtual size: 276KB