992dacfc43d1661387a3a384b45d5a9c52aee2e9daa760e80e8f48e2e4c023b7

Sharing

Copy URL

Twitter E-mail

General

Target

992dacfc43d1661387a3a384b45d5a9c52aee2e9daa760e80e8f48e2e4c023b7
Size

694KB
MD5

0db1d03e5f60a7f6cb748b7d3db99d40
SHA1

55b43145c56b950a988a376500881c890ac3b7d4
SHA256

992dacfc43d1661387a3a384b45d5a9c52aee2e9daa760e80e8f48e2e4c023b7
SHA512

1e232bb35a4b25b0979a8d9a014bdb4b378af68a4984855bc87b9584f2a8fb3bd2675e534aa28b9f73e9249755977d6c0abbef7d4e64e2e1db4396816ac11093
SSDEEP

12288:+GkHAO3uMPdIC1iHda7N8MkB+A94qbW6MXPHhd0Fh6N:+DAKDKXHWeBB+oHHM/7x

Score

N/A

Malware Config

Signatures

Files

992dacfc43d1661387a3a384b45d5a9c52aee2e9daa760e80e8f48e2e4c023b7
.exe windows x86

68b87aafbb84b0352a5e2de8fa28ef96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringW
GetFileAttributesExW
CloseHandle
CreateFileW
ReadFile
GetFileSize
MapViewOfFileEx
CreateFileMappingW
UnmapViewOfFile
FileTimeToSystemTime
FileTimeToLocalFileTime
lstrlenA
WideCharToMultiByte
GetTickCount
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
FreeResource
WriteFile
WritePrivateProfileStringW
VirtualQueryEx
GetProcAddress
LoadLibraryW
CopyFileW
OpenProcess
SetEvent
OpenEventW
VirtualQuery
CompareStringW
CreateProcessW
GetPrivateProfileIntW
GetCommandLineW
LoadLibraryA
GetVersionExW
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
FileTimeToDosDateTime
GetFileTime
SetFilePointer
GetFileInformationByHandle
GetFileAttributesW
GetFileType
MapViewOfFile
DuplicateHandle
SystemTimeToFileTime
GetLocalTime
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
SetEnvironmentVariableW
LoadLibraryExW
CompareStringA
GetConsoleMode
GetConsoleCP
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetLocaleInfoW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoA
SetHandleCount
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
GetTimeZoneInformation
IsValidCodePage
GetOEMCP
GetCPInfo
HeapCreate
Sleep
GetModuleFileNameA
GetStdHandle
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStartupInfoW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
ExitProcess
GetModuleHandleA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
GetVersionExA
GetProcessHeap
HeapSize
MultiByteToWideChar
FreeLibrary
SetLastError
lstrcmpiW
InterlockedDecrement
InterlockedIncrement
GetLastError
lstrlenW
GetCurrentThreadId
GetModuleHandleW
GetCurrentProcess
FlushInstructionCache
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
RaiseException
GetModuleFileNameW
SetEnvironmentVariableA

user32

SetWindowPos
MapWindowPoints
GetClientRect
SystemParametersInfoW
GetWindowRect
GetParent
SetWindowLongW
ShowWindow
DispatchMessageW
TranslateMessage
GetMessageW
GetWindowLongW
CharNextW
DestroyWindow
CreateDialogParamW
PostQuitMessage
DefWindowProcW
SendMessageW
GetDlgItem
IsWindow
DialogBoxParamW
GetActiveWindow
SetWindowTextW
GetWindowTextLengthW
GetDesktopWindow
CreateWindowExW
GetWindowTextW
MoveWindow
CheckDlgButton
IsDlgButtonChecked
SetDlgItemTextW
PeekMessageW
EndDialog
IsDialogMessageW
EndPaint
UnregisterClassA
GetWindow
EnableWindow
LoadIconW
GetSysColor
GetFocus
GetCapture
ReleaseCapture
GetCursorPos
SetCursor
DrawFocusRect
FillRect
PtInRect
CallWindowProcW
GetDlgCtrlID
SetFocus
SetCapture
IsWindowEnabled
InvalidateRect
UpdateWindow
ScreenToClient
GetClassNameW
LoadCursorW
SetRectEmpty
OffsetRect
ReleaseDC
GetDC
DrawTextW
BeginPaint

gdi32

CreateFontIndirectW
SetTextColor
SetBkMode
SelectObject
GetObjectW
GetStockObject
CreateFontW
DeleteObject

advapi32

RegQueryInfoKeyW
RegDeleteValueW
RegCloseKey
RegEnumValueW
RegQueryValueExW
RegEnumKeyExW
RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW

shell32

ShellExecuteW

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoTaskMemFree
CoUninitialize
CoCreateGuid
CLSIDFromProgID
OleRun
CreateStreamOnHGlobal
CoInitialize

oleaut32

VariantInit
VarUI4FromStr
VariantClear
SysAllocString
SysFreeString
SysStringLen

shlwapi

PathStripPathW
PathAppendW
PathFileExistsW
PathRemoveBackslashW
PathRemoveFileSpecW
PathCanonicalizeW
PathIsRelativeW
PathAddBackslashW
PathFindExtensionW

comctl32

_TrackMouseEvent
InitCommonControlsEx

dbghelp

MiniDumpReadDumpStream
MiniDumpWriteDump
MakeSureDirectoryPathExists

wininet

InternetConnectW
InternetCloseHandle
InternetErrorDlg
HttpSendRequestExW
HttpEndRequestW
InternetOpenW
HttpOpenRequestW
HttpAddRequestHeadersW
InternetCrackUrlW
InternetWriteFile

gdiplus

GdipDeleteGraphics
GdipLoadImageFromStream
GdipDisposeImage
GdiplusStartup
GdipGetImageWidth
GdipGetImageHeight
GdipCreateFromHDC
GdipDrawImageRectI
GdipCloneImage
GdipFree
GdiplusShutdown
GdipAlloc

psapi

GetModuleFileNameExW

Sections

.text
Size: 308KB - Virtual size: 305KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

68b87aafbb84b0352a5e2de8fa28ef96

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

dbghelp

wininet

gdiplus

psapi

Sections

.text Size: 308KB - Virtual size: 305KB

.rdata Size: 84KB - Virtual size: 82KB

.data Size: 12KB - Virtual size: 18KB

.rsrc Size: 280KB - Virtual size: 280KB

.text
Size: 308KB - Virtual size: 305KB

.rdata
Size: 84KB - Virtual size: 82KB

.data
Size: 12KB - Virtual size: 18KB

.rsrc
Size: 280KB - Virtual size: 280KB