af7ae6551da925ab0478be77249ec21d70f6cac169f75eb6501a8256c7fc3f52

Sharing

Copy URL Twitter E-mail

General

Target

af7ae6551da925ab0478be77249ec21d70f6cac169f75eb6501a8256c7fc3f52
Size

546KB
MD5

0db22c14a8cd62ed88c67be8f7736d06
SHA1

b45d5b957c1e9367b962f7b7a00e1b7245969bb4
SHA256

af7ae6551da925ab0478be77249ec21d70f6cac169f75eb6501a8256c7fc3f52
SHA512

50d99013ad4c0f334fcecc2e504763bdbafa74b4abf4abac5abb42d8b3a3a7c1127ff452edde1771c9609011c83e46cb39aea7573987b114251b91f3e5cc66ca
SSDEEP

12288:2LwQzMnw47S4+cQvSzYJZRFE1U6ULirdPGt7A5E9LRJEbOQc:QN47SP/0oFE1lKmNGt7A5i3Qc

Score

N/A

Malware Config

Signatures

Files

af7ae6551da925ab0478be77249ec21d70f6cac169f75eb6501a8256c7fc3f52
.exe windows x86

4dbfd8ea3a944ba750166641a3d11677

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameW
SetErrorMode
GetFileAttributesW
GetFileSize
GetFileTime
GetStartupInfoW
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
RaiseException
TerminateProcess
GetTimeZoneInformation
HeapReAlloc
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetFullPathNameW
GetStartupInfoA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetStringTypeW
CompareStringA
CompareStringW
GetACP
GetOEMCP
GetVolumeInformationW
FindFirstFileW
FindResourceA
GlobalAddAtomA
GetProfileStringA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
GetThreadLocale
SizeofResource
WritePrivateProfileStringW
FormatMessageW
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalFree
LocalAlloc
GetLastError
GlobalFlags
GetProcessVersion
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
MulDiv
SetLastError
GetModuleHandleA
LoadLibraryA
FreeLibrary
GetVersion
lstrcatW
GlobalAddAtomW
GlobalFindAtomW
lstrcpyW
GetModuleHandleW
GetProcAddress
GetTickCount
GlobalUnlock
GlobalFree
LockResource
FindResourceW
LoadResource
CloseHandle
GlobalLock
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
lstrcpynW
lstrlenA
lstrcmpiW
InterlockedIncrement
InterlockedDecrement
SetStdHandle
GetStringTypeA
SetCommBreak
GetFileType
ClearCommBreak
GlobalMemoryStatus
GetVersionExA
HeapSize
VirtualProtect
GetModuleFileNameW
LCMapStringW
CreateFileW
FreeEnvironmentStringsW
FindNextFileA
FindClose
SetEnvironmentVariableA
UnhandledExceptionFilter
GetEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
CreateFileA

user32

SetRect
GetNextDlgGroupItem
MessageBeep
CharUpperW
InvalidateRect
InflateRect
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
GetTopWindow
IsChild
GetCapture
WinHelpW
wsprintfW
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextW
GetDlgCtrlID
CreateWindowExW
SetPropW
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongW
RegisterWindowMessageW
OffsetRect
IntersectRect
CopyAcceleratorTableW
GetWindowPlacement
GetWindowRect
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
RegisterClipboardFormatW
EndDialog
SetActiveWindow
DestroyWindow
GetDlgItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetLastActivePopup
IsWindowEnabled
GetWindowLongW
MessageBoxW
SetCursor
PostQuitMessage
PostMessageW
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
IsWindow
UnregisterClassW
GetWindowTextLengthA
HideCaret
ExcludeUpdateRgn
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
IsIconic
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuW
SendMessageW
EnableWindow
DefDlgProcA
GetSystemMetrics
GetDlgItemTextW
InsertMenuW
CharNextW
PostThreadMessageW
SystemParametersInfoW
LoadIconW
DefWindowProcA
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
ShowCaret
DestroyIcon
GetDesktopWindow
PtInRect
GetClassNameW
GetSysColorBrush
LoadCursorW
GrayStringW
DrawTextW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ValidateRect
ClientToScreen
DestroyMenu
LoadStringW
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
UpdateWindow
GetSysColor
SendDlgItemMessageA
CreateDialogIndirectParamW
MapWindowPoints
SendDlgItemMessageW

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
SetBkMode
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
PatBlt
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
GetObjectW
SetTextColor
GetClipBox
CreateBitmap
SetTextAlign
SetBkColor
GetTextMetricsA
CreateDIBitmap
ExtTextOutA
GetTextExtentPointA
BitBlt
CreateCompatibleDC

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueW
RegSetValueW
RegOpenKeyW
RegCloseKey
CopySid

shell32

ExtractIconW

comctl32

ord17

oledlg

OleUIBusyW

ole32

CoRegisterMessageFilter
CoGetClassObject
CoTaskMemFree
CoTaskMemAlloc
CoDisconnectObject
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
CoRegisterClassObject
OleFlushClipboard
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
StringFromCLSID

olepro32

ord253

oleaut32

SysStringByteLen
SysAllocString
SysFreeString
SysAllocStringLen
VariantChangeType
VariantCopy
VariantClear
SysStringLen
LoadTypeLi
VariantTimeToSystemTime

Sections

.text
Size: 160KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4dbfd8ea3a944ba750166641a3d11677

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 160KB - Virtual size: 157KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 20KB - Virtual size: 36KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 160KB - Virtual size: 157KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 20KB - Virtual size: 36KB

.rsrc
Size: 8KB - Virtual size: 7KB