32177D48F2885A6118E3C0C69D56BF33[.]fil

Sharing

Copy URL Twitter E-mail

General

Target

32177D48F2885A6118E3C0C69D56BF33.fil
Size

5.2MB
MD5

32177d48f2885a6118e3c0c69d56bf33
SHA1

53ca7696ae6005255677bb93134ef9dbfa2fe54f
SHA256

ebced1e15404f985e00e42169d2498775f14d98142b2f4ca46916e88da637549
SHA512

2e1d08043d31b28c5b602f2ec16add077bacf1a7e4f7fc50565275f990c67bded40a808b6e9193b396c416cb84b49f0eac323b6da9d036ecc8ac94b758b2e5f6
SSDEEP

98304:n77oIMeLSlMSkEw6Jc2NYB2dbOFPwllhfa4XPLf/gI+pS:n779eZkKCEYYzz5

Score

N/A

Malware Config

Signatures

Files

32177D48F2885A6118E3C0C69D56BF33.fil
.exe windows x86

8790c523177deb839fb866d609e4bbb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

urlmon

URLDownloadToFileA

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3

comctl32

ImageList_SetIconSize
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_GetImageCount
ord17

kernel32

GetLocalTime
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemDirectoryA
GetSystemInfo
GetSystemTime
GetTempPathA
GetThreadContext
GetThreadLocale
GetThreadPriority
GetVersionExA
GetVersionExW
GetWindowsDirectoryA
GlobalFree
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
GlobalUnlock
InterlockedDecrement
InterlockedIncrement
IsBadReadPtr
LoadLibraryExA
LoadResource
LocalAlloc
LocalFree
GetLocaleInfoA
LockResource
lstrcmpA
MapViewOfFile
MulDiv
MultiByteToWideChar
OpenFileMappingA
OpenProcess
QueryPerformanceFrequency
RaiseException
ReadFile
ReadProcessMemory
ReleaseMutex
RemoveDirectoryA
ResetEvent
ResumeThread
SetEndOfFile
SetEvent
SetFileAttributesA
SetFilePointer
SetLastError
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
TerminateProcess
TerminateThread
TlsGetValue
TlsSetValue
UnmapViewOfFile
VirtualAllocEx
VirtualFreeEx
VirtualProtect
VirtualQuery
WaitForSingleObject
WriteFile
GetLastError
GetFileTime
GetFileSize
GetFileAttributesA
GetDiskFreeSpaceA
GetComputerNameA
FreeResource
FreeLibrary
FormatMessageA
FindResourceA
FindNextFileA
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExpandEnvironmentStringsA
ExitThread
ExitProcess
DuplicateHandle
DeleteFileA
DeleteCriticalSection
CreateThread
CreateRemoteThread
CreateProcessA
CreatePipe
CreateMutexA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
IsValidCodePage
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
GlobalAlloc
GetPriorityClass
GetStartupInfoA
LocalSize

user32

IsZoomed
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxIndirectA
MoveWindow
OffsetRect
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
SendMessageA
SendMessageTimeoutA
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetPropA
SetRect
SetScrollInfo
SetTimer
SetWindowLongA
SetWindowPos
SetWindowRgn
SetWindowsHookExA
SetWindowTextA
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UpdateWindow
WindowFromPoint
InvalidateRect
InflateRect
IsWindowVisible
GetWindowTextW
GetWindowTextLengthW
GetWindowTextA
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetTopWindow
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetScrollInfo
GetPropA
GetParent
GetMessageW
GetMessagePos
GetMessageA
GetMenuStringA
GetMenuItemRect
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetKeyState
IsWindowEnabled
GetFocus
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassLongA
GetCapture
GetActiveWindow
FrameRect
FindWindowExA
FillRect
EnumWindows
EnumChildWindows
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextA
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageA
DestroyWindow
DestroyIcon
DefWindowProcA
CreateWindowExA
CreateIconIndirect
CopyRect
CopyImage
GetWindowDC
WindowFromDC
GetKeyboardType
IsRectEmpty
IsIconic
GetWindowThreadProcessId
IsDialogMessageA
FindWindowA
GetIconInfo

gdi32

ExcludeClipRect
GdiFlush
GetBitmapDimensionEx
EndPage
GetDeviceCaps
GetDIBits
GetNearestPaletteIndex
EndDoc
DeleteObject
DeleteDC
CreateSolidBrush
GetClipBox
CreateRectRgnIndirect
GetObjectA
GetPaletteEntries
GetPixel
GetStockObject
GetTextExtentPoint32A
GetTextFaceA
CreatePen
GetViewportOrgEx
IntersectClipRect
LineTo
MoveToEx
Polyline
RealizePalette
Rectangle
RectVisible
ResizePalette
RestoreDC
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetMapMode
SetPaletteEntries
SetPixelV
SetROP2
SetStretchBltMode
SetTextColor
SetViewportOrgEx
StartDocA
StartPage
StretchBlt
StretchDIBits
TextOutA
CreateHalftonePalette
CreateFontIndirectW
CreateFontIndirectA
CreateFontA
GetTextMetricsA
CreatePalette

comdlg32

GetSaveFileNameA
PrintDlgA
GetOpenFileNameA

advapi32

RegEnumKeyA
RegQueryInfoKeyA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
SetSecurityDescriptorDacl
RegOpenKeyExA

shell32

ShellExecuteA
Shell_NotifyIconA
ExtractIconExA
SHFileOperationA

ole32

OleInitialize
OleUninitialize
CoInitialize
CoUninitialize

oleaut32

SafeArrayCreate

ws2_32

socket
sendto
select
inet_addr
WSACleanup
WSAStartup
recvfrom

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls11
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 300KB - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zip72
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8790c523177deb839fb866d609e4bbb6

Headers

File Characteristics

Imports

urlmon

winmm

msvcrt

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

ws2_32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 14.0MB

.tls11 Size: 8KB - Virtual size: 4KB

.rsrc Size: 300KB - Virtual size: 299KB

.zip72 Size: 2.5MB - Virtual size: 2.5MB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 14.0MB

.tls11
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 300KB - Virtual size: 299KB

.zip72
Size: 2.5MB - Virtual size: 2.5MB