0f4ff9c1e01afea4fecb3ddff2f4eda46db7c83e42f4f58a715d8963e6ed14cc

Sharing

Copy URL Twitter E-mail

General

Target

0f4ff9c1e01afea4fecb3ddff2f4eda46db7c83e42f4f58a715d8963e6ed14cc
Size

1.0MB
MD5

0ff5a16a3581042c151198878c389f20
SHA1

6ce1654ff3c0704de35597854b17b283b648efff
SHA256

0f4ff9c1e01afea4fecb3ddff2f4eda46db7c83e42f4f58a715d8963e6ed14cc
SHA512

d327ea41dc4426cd70819f907959b5dd04d5fc2f8a1e3ee7ae30b2efe4451a666e8b63910687a5599cd5bbd49b2fa8292030330b4783997aca0e0b274a25d03c
SSDEEP

24576:Kdvh6bJfL1EN0SrAK97hvZ58akvCR12s/0T0pB8:1lKAK/LdkvF4pB8

Score

N/A

Malware Config

Signatures

Files

0f4ff9c1e01afea4fecb3ddff2f4eda46db7c83e42f4f58a715d8963e6ed14cc
.exe windows x86

1eeda222a8f9776043b91c539afd7903

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
SizeofResource
GetCurrentDirectoryA
lstrlenW
HeapFree
HeapAlloc
RtlUnwind
ExitProcess
TerminateProcess
GetLocalTime
GetCommandLineA
SetEnvironmentVariableA
GetTimeZoneInformation
GetSystemTime
RaiseException
GetACP
ExitThread
HeapSize
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
GetCPInfo
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
CompareStringA
CompareStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetProfileStringA
DefineDosDeviceA
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalFlags
SetErrorMode
GlobalAlloc
GetCurrentThread
SuspendThread
SetThreadPriority
SetEvent
GlobalFree
GlobalLock
GlobalUnlock
MulDiv
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
FindResourceA
LoadResource
LockResource
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetThreadLocale
GetFullPathNameA
lstrcpynA
MoveFileA
UnlockFile
LockFile
DuplicateHandle
UnmapViewOfFile
SetVolumeLabelA
GetDriveTypeA
GetWindowsDirectoryA
RemoveDirectoryA
GetVersion
GetVersionExA
GetSystemDefaultLangID
GetStartupInfoA
OpenFileMappingA
FlushFileBuffers
SetEndOfFile
CreateFileMappingA
MapViewOfFile
Process32First
Process32Next
CreateToolhelp32Snapshot
WritePrivateProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetVolumeInformationA
MultiByteToWideChar
GetCurrentProcess
VirtualAllocEx
WriteProcessMemory
CreateRemoteThread
GetEnvironmentVariableA
CopyFileA
GetLongPathNameA
GetCurrentThreadId
GetModuleHandleA
GetProcAddress
LoadLibraryA
FreeLibrary
CreateProcessA
OpenProcess
GetTickCount
lstrcmpiA
CreateMutexA
GetModuleFileNameA
CreateDirectoryA
GetTempPathA
GetShortPathNameA
CreateThread
CreateNamedPipeA
ConnectNamedPipe
CreateEventA
DisconnectNamedPipe
GetLogicalDrives
lstrcmpA
FormatMessageA
LocalFree
SetFileAttributesA
WaitForSingleObject
GetCurrentProcessId
GetFileAttributesA
Sleep
ResumeThread
lstrlenA
lstrcatA
SetCurrentDirectoryA
FindFirstFileA
FindNextFileA
FindClose
lstrcpyA
GetSystemDirectoryA
DeleteFileA
GetDiskFreeSpaceA
ReadFile
GetLastError
SetFilePointer
GetFileSize
DeviceIoControl
CreateFileA
CloseHandle
WriteFile
LCMapStringW

user32

GetWindowDC
ClientToScreen
LoadStringA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
CheckRadioButton
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetTopWindow
IsChild
GetParent
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
BeginPaint
GetWindowTextA
GetKeyState
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
GetDCEx
DefWindowProcA
GetMessageTime
GetMessagePos
SendMessageA
EnableWindow
IsWindow
SystemParametersInfoA
GetClientRect
MapDialogRect
wsprintfA
GetDesktopWindow
GetLastActivePopup
GetForegroundWindow
GetWindowLongA
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
GetWindowPlacement
CopyRect
GetDC
ReleaseDC
CharUpperA
CharToOemBuffA
OemToCharBuffA
GetSystemMenu
AppendMenuA
PostThreadMessageA
GetMessageA
TabbedTextOutA
DrawTextA
GrayStringA
InflateRect
CreateDialogIndirectParamA
GetActiveWindow
EndDialog
SetParent
RegisterClipboardFormatA
TranslateMessage
DispatchMessageA
MessageBoxA
GetWindowRect
IsIconic
GetSystemMetrics
SetForegroundWindow
LoadIconA
GetDlgItem
PostMessageA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
BroadcastSystemMessageA
GetDlgCtrlID
GetWindow
GetNextDlgGroupItem
LockWindowUpdate
CopyAcceleratorTableA
CharNextA
SetCapture
SetRect
WindowFromPoint
KillTimer
SetTimer
ReleaseCapture
GetSysColorBrush
LoadCursorA
GetClassNameA
RemovePropA
MessageBeep
DestroyMenu
SetWindowContextHelpId
SetCursor
PostQuitMessage
PtInRect
InvalidateRect
IsZoomed
SetRectEmpty
ValidateRect
GetWindowTextLengthA
GetCursorPos
EndPaint

gdi32

DeleteObject
CreateRectRgn
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
CombineRgn
DPtoLP
GetTextMetricsA
StretchDIBits
CreateCompatibleDC
CreateCompatibleBitmap
GetTextColor
GetBkColor
LPtoDP
BitBlt
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
GetObjectA
SetBkColor
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetRectRgn
GetTextExtentPointA
CreateDIBitmap
SetTextColor
GetClipBox
CreateRectRgnIndirect
PatBlt
CreateFontIndirectA
GetTextExtentPoint32A

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

ControlService
DeleteService
OpenSCManagerA
CreateServiceA
OpenServiceA
StartServiceA
CloseServiceHandle
RegCreateKeyExA
RegEnumKeyA
RegEnumValueA
RegDeleteKeyA
RegCreateKeyA
RegDeleteValueA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegEnumKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey
QueryServiceStatusEx

shell32

SHChangeNotify
FindExecutableA
SHGetSpecialFolderPathA
ord680
ShellExecuteExA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation
SHGetFileInfoA

comctl32

ImageList_Destroy
ord17

oledlg

ord8

ole32

OleUninitialize
OleInitialize
CoTaskMemAlloc
CoFreeUnusedLibraries
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoUninitialize
CoInitialize
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString
SysAllocStringByteLen
SysStringLen

shlwapi

StrStrIA

ntdll

NtClose
NtCreateFile
RtlNtStatusToDosError

Sections

.text
Size: 312KB - Virtual size: 311KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1eeda222a8f9776043b91c539afd7903

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

shlwapi

ntdll

Sections

.text Size: 312KB - Virtual size: 311KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 32KB - Virtual size: 50KB

.rsrc Size: 96KB - Virtual size: 94KB

.text
Size: 312KB - Virtual size: 311KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 32KB - Virtual size: 50KB

.rsrc
Size: 96KB - Virtual size: 94KB