eb676f95160bcdad9caa872ae1154d0c7552fc4d14aca62508e8ed5c5762305a

Sharing

Copy URL

Twitter E-mail

General

Target

eb676f95160bcdad9caa872ae1154d0c7552fc4d14aca62508e8ed5c5762305a
Size

348KB
MD5

218c392bcf9105dc63422afeabe1f880
SHA1

e83705586fa6fc102c517458b20d886ddcb2fa46
SHA256

eb676f95160bcdad9caa872ae1154d0c7552fc4d14aca62508e8ed5c5762305a
SHA512

67a9ecd1ebc04a8dae4b9c84901d5b95af49a6b88b485f0ef1217d2f2df61d74884bfb5d4667435aa39e4f6f7f8b8f41c83c8356ffd7f1781e458caebe48744f
SSDEEP

6144:sUPJ1iMLdGxGXGyH9klIbXg5phzJ4UdL+hj5JPgQd6IQUls9mKtgpR:DEwm+LJz6VU0mKi

Score

N/A

Malware Config

Signatures

Files

eb676f95160bcdad9caa872ae1154d0c7552fc4d14aca62508e8ed5c5762305a
.exe windows x86

93a1acf58cac7149bd29b377f427ff08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetOpenW
InternetAlgIdToStringA
CommitUrlCacheEntryW
FtpCommandW
UnlockUrlCacheEntryStream
InternetGetLastResponseInfoA
InternetCombineUrlW
InternetCheckConnectionA
InternetReadFile
InternetDialA
InternetAutodial
InternetConnectW
InternetQueryOptionA
HttpOpenRequestW
InternetSetOptionExW
GetUrlCacheConfigInfoW
CreateUrlCacheContainerW
GopherGetAttributeW
HttpAddRequestHeadersA
GopherFindFirstFileW
GetUrlCacheHeaderData
InternetSetFilePointer
GetUrlCacheEntryInfoExW
DeleteUrlCacheContainerA
FtpFindFirstFileW
RunOnceUrlCache
InternetTimeToSystemTime
FtpSetCurrentDirectoryW
SetUrlCacheEntryGroupW
FindNextUrlCacheGroup
GetUrlCacheConfigInfoA
SetUrlCacheEntryGroupA
UrlZonesDetach
FtpGetCurrentDirectoryW
InternetReadFileExA
FindNextUrlCacheEntryA
RetrieveUrlCacheEntryFileA
InternetOpenUrlW
InternetOpenUrlA
SetUrlCacheHeaderData
FtpDeleteFileA
FindFirstUrlCacheEntryW
InternetLockRequestFile

wsock32

__WSAFDIsSet

kernel32

ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
GetFileInformationByHandle
GlobalUnWire
RemoveDirectoryA
GlobalFlags
EnumDateFormatsExW
GetPrivateProfileIntW
CompareFileTime
GetThreadLocale
UnlockFileEx
FillConsoleOutputCharacterA
LoadLibraryExA
IsDebuggerPresent
GetNamedPipeHandleStateW
ReadProcessMemory
CreateWaitableTimerA
GetComputerNameA
WaitNamedPipeW
GetProfileStringA
ReadConsoleOutputA
SetFileTime
GetProfileSectionW
SuspendThread
GetMailslotInfo
ResumeThread
SetCurrentDirectoryW
GetNamedPipeHandleStateA
GlobalSize
FindFirstFileW
Thread32Next
SleepEx
GetPriorityClass
EnumDateFormatsW
lstrcmpA
PeekNamedPipe
GlobalHandle
GetVersion
SystemTimeToFileTime
GetAtomNameA
ReadDirectoryChangesW
WaitForDebugEvent
HeapCreate
lstrlenA
SetFileAttributesA
GetLocaleInfoW
HeapDestroy
GlobalDeleteAtom
WriteConsoleOutputW
WriteFileEx
UnlockFile
SetVolumeLabelW
Heap32ListFirst
ExpandEnvironmentStringsW
DeviceIoControl
lstrcat
ConnectNamedPipe
GetFullPathNameA
GetThreadSelectorEntry
SignalObjectAndWait
TlsAlloc
GetShortPathNameA
SetFileAttributesW
Process32Next
LocalReAlloc
SetConsoleCursorInfo
GetTimeFormatA
DisableThreadLibraryCalls
GetFileAttributesExW

user32

UnregisterClassW
IsDialogMessageA
BeginDeferWindowPos
SetDebugErrorLevel
SetProcessDefaultLayout
LoadCursorA
SendMessageA
CharToOemBuffW
MonitorFromWindow
RemovePropW
IsWindow
GrayStringW
DdeReconnect
SetCaretBlinkTime
IsRectEmpty
CreatePopupMenu
SetMessageExtraInfo
CheckDlgButton
SetCursor
SetUserObjectInformationA
CharUpperA
CloseClipboard
SystemParametersInfoW
IsClipboardFormatAvailable
MessageBoxA
GetWindow
EnumDesktopWindows
GetClassInfoExW
DestroyMenu
MoveWindow
GetAncestor
IsCharAlphaA
DdeQueryConvInfo
DispatchMessageA
CharPrevW
WINNLSGetIMEHotkey
DdeSetQualityOfService
GetWindowRect
ToAsciiEx
LoadMenuW
LoadMenuA
CreateDialogParamW
GetDlgItemTextA
PtInRect
IsCharUpperW
OemToCharA
GetSysColor
MapVirtualKeyW
BeginPaint
GetClassInfoW
DispatchMessageW
GetMenuItemRect
LoadStringW
EndDialog
OpenWindowStationA
SetWindowPos
GetCaretPos
ValidateRgn
GetKeyboardType
GetSysColorBrush
DrawFrame
LoadStringA
CheckMenuRadioItem
AppendMenuA
SwitchToThisWindow
IsCharLowerW
LoadImageA
SetCursorPos
GetComboBoxInfo
ReplyMessage
DdeCreateDataHandle
EditWndProc
GetSubMenu
ChildWindowFromPointEx
EnumDisplaySettingsExW
GetGUIThreadInfo
CloseWindow
SetWindowTextW
GetMenuItemInfoA
SetMessageQueue
EnumPropsA
CopyRect
IsMenu
GetMenuItemInfoW
SetWindowsHookW
GetClassInfoExA
DrawEdge
InsertMenuItemA
WINNLSEnableIME
MapVirtualKeyExW
GetDlgCtrlID
SetShellWindow
AdjustWindowRect
InsertMenuW
DrawTextW
GetWindowTextLengthW
DdeCreateStringHandleW
CreateDialogIndirectParamW
GetPropW
EnumPropsW
WaitForInputIdle
RegisterClipboardFormatA
InsertMenuItemW
GetMenuContextHelpId
SendNotifyMessageW
EndDeferWindowPos
CallMsgFilterA
WindowFromPoint
DefDlgProcW
GetUserObjectInformationA
CharLowerBuffA
GetWindowContextHelpId
OpenWindowStationW
ImpersonateDdeClientWindow
DdeUnaccessData
DdeFreeStringHandle
SubtractRect
FlashWindow
LoadBitmapW
DdeCreateStringHandleA
ShowCaret
GetAltTabInfo
EnumDisplayMonitors
CreateAcceleratorTableW
SetMenu
CreateWindowStationW
SetWindowPlacement
EnumClipboardFormats
CharLowerBuffW
EndTask
wsprintfA
SetDoubleClickTime
GetMenuStringA
EndPaint
MapVirtualKeyExA
ToUnicodeEx
ChangeClipboardChain
IsDlgButtonChecked
CreateCaret
GetMessagePos
RegisterClassExA
MessageBoxIndirectA
IsCharAlphaNumericW
EnumThreadWindows
CreateWindowExA
ReuseDDElParam
TranslateAccelerator
UnionRect
RemoveMenu
GetWindowTextW
GetMenuStringW
PackDDElParam
GetClassLongW
RemovePropA
FillRect
SendNotifyMessageA
CallNextHookEx
DdeConnect
IsWindowVisible
GetPropA
FlashWindowEx
CreateMDIWindowA
GetAsyncKeyState
SetKeyboardState
ShowScrollBar
DlgDirSelectComboBoxExA
RegisterDeviceNotificationA
ExitWindowsEx
GetKeyboardLayout
GetTitleBarInfo
EndMenu
RegisterDeviceNotificationW
BroadcastSystemMessageA
SetScrollRange
SetDlgItemTextA
PostQuitMessage
DrawTextA
GetWindowLongA
UnhookWindowsHookEx
IsCharAlphaW
MenuItemFromPoint
BlockInput
DdeDisconnect
ValidateRect
DrawFrameControl
DestroyCursor
LookupIconIdFromDirectoryEx
CharLowerA
RegisterClassExW
SetWindowLongA
EnumChildWindows
PostThreadMessageA
TrackMouseEvent
SetMenuItemInfoA
CharNextA
DdeNameService
CallMsgFilterW
SetClipboardData
NotifyWinEvent
EnumPropsExW
UnregisterClassA
GetKeyboardLayoutNameW
GetClipboardOwner
SetThreadDesktop
RegisterClassA
SystemParametersInfoA
GetCursorInfo
SetWindowsHookExW
CreateDialogParamA
GetProcessWindowStation
GetWindowThreadProcessId
SetDlgItemTextW
UnhookWindowsHook
DdeUninitialize
CreateMDIWindowW
SetPropW
ScrollDC
GetInputState
SetMenuContextHelpId
GetCaretBlinkTime
RegisterClipboardFormatW
DdeDisconnectList
DeferWindowPos
DdeClientTransaction
CallWindowProcA
PeekMessageA
GetTabbedTextExtentA
GetWindowTextA
UpdateWindow
DefDlgProcA
GetMessageA
GetKeyboardLayoutNameA
IsZoomed
RegisterWindowMessageA
GetClassNameA
DefMDIChildProcA
DialogBoxParamA
LookupIconIdFromDirectory
SetCapture
SetCaretPos
OpenDesktopA
OffsetRect
SetPropA
GetClassLongA
CreateWindowExW
GetProcessDefaultLayout
CallMsgFilter
CheckRadioButton
ScrollWindowEx
CreateIcon
VkKeyScanW
InvalidateRgn
WINNLSGetEnableStatus
VkKeyScanA
SetClassLongW
GetCursorPos
GetKeyboardState
DdeQueryStringW
GetDesktopWindow
SwapMouseButton
DrawStateW
GetUserObjectSecurity
DdeQueryStringA
GetShellWindow
SetForegroundWindow
DrawMenuBar
IsWindowEnabled
CharUpperBuffW
GetDC
UnregisterDeviceNotification
CopyIcon
OemToCharBuffA
DdeGetData
CheckMenuItem
LoadCursorFromFileA
DrawCaption
EnumPropsExA
SetMenuDefaultItem
DefWindowProcA
DestroyIcon
ChangeDisplaySettingsExW
DdePostAdvise
TabbedTextOutA
GetWindowRgn
CreateDialogIndirectParamA
EnumDisplaySettingsW
TrackPopupMenu
BringWindowToTop
ChangeDisplaySettingsExA
SetWindowWord
EnumDesktopsA
DragObject
FrameRect
DdeCmpStringHandles
LoadAcceleratorsW
OemToCharW
SetRectEmpty
CascadeWindows
GetDlgItemTextW
ChangeDisplaySettingsW
MonitorFromRect
SetMenuItemInfoW
InternalGetWindowText
SwitchDesktop
GetDlgItemInt
TrackPopupMenuEx
WinHelpA
FindWindowExA
OpenInputDesktop
EnableScrollBar
GetQueueStatus
GetFocus
IsIconic
ScreenToClient
GetMonitorInfoA
TranslateAcceleratorW
wsprintfW
wvsprintfA
DdeAddData
LoadCursorW
EnumDisplayDevicesW
GetKeyNameTextA
SendIMEMessageExW
LoadBitmapA
DialogBoxParamW
MapDialogRect
ToUnicode
GetGuiResources
EnableMenuItem
OpenClipboard
MessageBoxIndirectW
DrawStateA
SetUserObjectInformationW
FindWindowA
PeekMessageW
GetMonitorInfoW
DdeFreeDataHandle
SetClipboardViewer
GetMenuInfo
GetThreadDesktop
CountClipboardFormats
GetForegroundWindow
DlgDirListComboBoxA
GetMenu
DdeKeepStringHandle
CloseDesktop
DeleteMenu
DlgDirListW
GetWindowDC
MessageBeep
LoadCursorFromFileW
SetClassWord
EnableWindow
DdeInitializeA
GetSystemMenu
LoadKeyboardLayoutA
ShowWindow
GetLastActivePopup
SendInput
GetListBoxInfo
CallWindowProcW
IsChild
CharUpperW
ReleaseCapture
GetMenuState
GetClipCursor
GetWindowPlacement
MsgWaitForMultipleObjectsEx
GetWindowWord
EqualRect
GetClassWord
CreateDesktopA
GetUpdateRgn
GetWindowModuleFileNameA
LoadMenuIndirectA

advapi32

CryptReleaseContext
RegDeleteKeyA
CryptVerifySignatureA
GetUserNameW
RegEnumKeyW
CryptSetProviderExW
RegCreateKeyA
AbortSystemShutdownW
RegLoadKeyA
DuplicateTokenEx
RegLoadKeyW
RegFlushKey
CryptDecrypt
RegQueryInfoKeyW
CryptSetHashParam
CreateServiceW
CryptExportKey
CryptSetProviderW
LookupPrivilegeNameA
RegDeleteValueW
RegQueryValueExW
LogonUserA
RevertToSelf
CryptGenRandom
CryptGetDefaultProviderW
LookupPrivilegeValueA
LookupSecurityDescriptorPartsW
CryptHashData
RegRestoreKeyA
RegEnumValueW
RegRestoreKeyW
StartServiceW
CryptSetKeyParam
RegSetValueExW
CryptCreateHash
RegQueryValueW
LookupAccountSidA
GetUserNameA
RegQueryValueExA
StartServiceA
RegReplaceKeyW
CryptSignHashW
CryptContextAddRef
LookupAccountNameW
RegOpenKeyW
CryptEnumProvidersA
LookupSecurityDescriptorPartsA
RegDeleteValueA
RegSaveKeyA
LookupPrivilegeDisplayNameW
LookupPrivilegeDisplayNameA
CryptGetUserKey
CryptDuplicateKey
CryptDestroyKey
LogonUserW
RegOpenKeyExW
CryptDuplicateHash
RegConnectRegistryW
CryptSetProviderA
LookupAccountNameA
CryptSignHashA
RegEnumKeyExA
CryptEnumProviderTypesW
RegSetValueA
CryptGetProvParam
RegQueryMultipleValuesW
RegSetKeySecurity
CryptSetProvParam
RegQueryValueA
CryptEncrypt
RegNotifyChangeKeyValue
CryptGenKey
CryptAcquireContextW
RegCreateKeyExA
RegSetValueW
CryptAcquireContextA

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 123KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

93a1acf58cac7149bd29b377f427ff08

Headers

File Characteristics

Imports

wininet

wsock32

kernel32

user32

advapi32

Sections

.text Size: 77KB - Virtual size: 76KB

.sdata Size: 81KB - Virtual size: 80KB

.bss Size: 66KB - Virtual size: 65KB

.idata Size: 123KB - Virtual size: 122KB

.text
Size: 77KB - Virtual size: 76KB

.sdata
Size: 81KB - Virtual size: 80KB

.bss
Size: 66KB - Virtual size: 65KB

.idata
Size: 123KB - Virtual size: 122KB