1c46908fd67b67054e1a0bf4d6a51a70b619cb010da866693b02aa11a6fa264d

Sharing

Copy URL Twitter E-mail

General

Target

1c46908fd67b67054e1a0bf4d6a51a70b619cb010da866693b02aa11a6fa264d
Size

876KB
MD5

9437f7e4d3bab9a06ee7ea641930b48e
SHA1

43e771e83096399d39e34468614361122260d65e
SHA256

1c46908fd67b67054e1a0bf4d6a51a70b619cb010da866693b02aa11a6fa264d
SHA512

af12f443e00649a088782ba7fb2ae06e3f28b373bebb09671d406ca71469c786ea6b2a77240574666114471f9d9fb46cd5d5bdc0a16f67a1562bb472d1aafdb8
SSDEEP

12288:J7sLu3myPO1y8Z2Dt75kV34LkZ5ii+kI7L9dg/+zoZzsbM6m:JQLunPi7mh5FL05isyazsbM6

Score

N/A

Malware Config

Signatures

Files

1c46908fd67b67054e1a0bf4d6a51a70b619cb010da866693b02aa11a6fa264d
.exe windows x86

05e17ebf200b4be08efdd42d0cd494b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
CompareStringW
CompareStringA
SetStdHandle
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
LCMapStringW
FindFirstFileA
LCMapStringA
UnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetLocalTime
GetSystemTime
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
TerminateProcess
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
ExitThread
CreateThread
HeapAlloc
HeapFree
RtlUnwind
SetErrorMode
GetStringTypeExA
GetVolumeInformationA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
GetThreadLocale
GetCurrentDirectoryA
FormatMessageA
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
GlobalFlags
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
InterlockedIncrement
lstrcmpA
GetCurrentThread
ResumeThread
CreateMutexA
ReleaseMutex
GetProfileStringA
FindNextFileA
GetProcessVersion
InterlockedDecrement
lstrcpynA
SetLastError
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
MulDiv
GetDriveTypeW
GetWindowsDirectoryW
FindNextFileW
MultiByteToWideChar
WideCharToMultiByte
GetTickCount
lstrlenA
GlobalSize
WriteFile
GlobalAlloc
GlobalReAlloc
GlobalLock
GlobalUnlock
GlobalFree
FindResourceA
SizeofResource
LoadResource
LockResource
RemoveDirectoryA
CreateEventA
LocalFileTimeToFileTime
SetEvent
Sleep
ResetEvent
GetSystemTimeAsFileTime
SystemTimeToFileTime
CreateProcessA
WaitForSingleObject
GetShortPathNameA
GetFileSize
CopyFileA
GetVersionExA
GetLastError
GetCurrentProcess
ReadFile
SetFilePointer
SetFileAttributesA
DeleteFileA
GetSystemDefaultLangID
GetModuleFileNameA
GetTempPathA
DeviceIoControl
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateDirectoryA
CreateFileA
GetFileTime
CloseHandle
SetFileTime
GetSystemDirectoryA
GetModuleHandleA
GetProcAddress
FindFirstFileW
FindClose

user32

GetClassNameA
DestroyCursor
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
TranslateMessage
ValidateRect
GetSystemMenu
DeleteMenu
AppendMenuA
SetParent
GetSysColorBrush
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
PostMessageA
SendDlgItemMessageA
PeekMessageA
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
UnregisterClassA
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetMessagePos
GetLastActivePopup
PostThreadMessageA
SetForegroundWindow
SetWindowPos
RegisterWindowMessageA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
LoadImageA
PostQuitMessage
GetCursor
SetClassLongA
HideCaret
ShowCaret
SetCaretPos
CreateCaret
DestroyCaret
LoadStringA
LockWindowUpdate
InsertMenuA
GetMenuStringA
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
MessageBeep
CharUpperA
FindWindowA
GetTabbedTextExtentA
RegisterClipboardFormatA
SetScrollInfo
SetFocus
GetAsyncKeyState
IntersectRect
SetRect
InvertRect
EmptyClipboard
SetClipboardData
OpenClipboard
GetClipboardData
CloseClipboard
GetDoubleClickTime
IsChild
mouse_event
IsRectEmpty
SystemParametersInfoA
GetKeyState
IsZoomed
ClipCursor
GetMessageA
DispatchMessageA
SetWindowLongA
GetDesktopWindow
WindowFromPoint
OffsetRect
InflateRect
GetDCEx
IsWindowEnabled
GetWindowTextA
GetFocus
IsWindow
IsWindowVisible
GetClassLongA
GetSystemMetrics
GetWindow
ShowWindow
ClientToScreen
ScreenToClient
FrameRect
DrawStateA
GetIconInfo
GetWindowLongA
FillRect
DestroyIcon
GetParent
PtInRect
GetCapture
SetCapture
ReleaseCapture
LoadCursorA
SetCursor
InvalidateRect
UpdateWindow
SetTimer
LoadIconA
DrawIconEx
LoadMenuA
GetSubMenu
GetCursorPos
TrackPopupMenu
DestroyMenu
DrawTextW
KillTimer
GetMenu
GetSysColor
GetClientRect
LoadBitmapA
SendMessageA
GetForegroundWindow
MessageBoxA
GetWindowRect
DrawTextA
GetDC
ReleaseDC
EnableWindow
MapWindowPoints

gdi32

RectVisible
Escape
GetMapMode
SetRectRgn
CombineRgn
CreateRectRgnIndirect
StretchDIBits
GetCharWidthA
CreateFontA
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
PtVisible
SetAbortProc
GetBkColor
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
GetTextExtentPointA
GetWindowExtEx
GetViewportExtEx
GetDeviceCaps
CreateRectRgn
GetCurrentPositionEx
SetTextAlign
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetStretchBltMode
SetROP2
SetPolyFillMode
StartDocA
GetClipBox
SetViewportExtEx
SetWindowExtEx
DPtoLP
LPtoDP
TextOutA
Rectangle
SetPixel
CreateBitmap
GetPixel
StartPage
SetBkMode
StretchBlt
CreatePalette
SelectPalette
RealizePalette
CreateDIBitmap
SetBitmapDimensionEx
CreatePatternBrush
PatBlt
CreateCompatibleBitmap
MoveToEx
LineTo
GetTextColor
GetCurrentObject
CreateFontIndirectA
SetTextColor
GetTextExtentPoint32A
DeleteObject
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
GetObjectA
GetStockObject
CreatePen
RestoreDC
SetMapMode
SetWindowOrgEx
SetViewportOrgEx
SaveDC
FrameRgn
FillRgn
CreatePolygonRgn
CreateRoundRectRgn
CreateSolidBrush
IntersectClipRect
ExtTextOutA
GetTextMetricsA
SetBkColor
CreateDCA

comdlg32

GetSaveFileNameA
GetFileTitleA
PrintDlgA
CommDlgExtendedError
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

CloseServiceHandle
StartServiceA
OpenServiceA
OpenSCManagerA
RegQueryValueA
RegCloseKey
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
SetFileSecurityA
GetFileSecurityA
RegCreateKeyA
RegSetValueA
CreateServiceA

shell32

ExtractIconA
DragQueryFileA
DragFinish
DragAcceptFiles
SHGetFileInfoW
ShellExecuteExA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
SHGetFileInfoA

comctl32

ImageList_AddMasked
ImageList_GetImageCount
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
_TrackMouseEvent
ImageList_GetIcon
ImageList_Draw
ImageList_GetImageInfo
ord17

oledlg

ord8

ole32

OleInitialize
OleUninitialize
CoFreeUnusedLibraries
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleIsCurrentClipboard
CoRegisterMessageFilter
CoRevokeClassObject
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
OleFlushClipboard

olepro32

ord253

oleaut32

SysStringLen
SysAllocStringByteLen
SysAllocString
SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType

wsock32

recvfrom
WSAStartup
WSACleanup
closesocket
socket
ioctlsocket
htons
htonl
sendto
ntohl
gethostname
gethostbyname

netapi32

Netbios

Sections

.text
Size: 536KB - Virtual size: 533KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05e17ebf200b4be08efdd42d0cd494b9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

netapi32

Sections

.text Size: 536KB - Virtual size: 533KB

.rdata Size: 88KB - Virtual size: 87KB

.data Size: 52KB - Virtual size: 73KB

.rsrc Size: 196KB - Virtual size: 195KB

.text
Size: 536KB - Virtual size: 533KB

.rdata
Size: 88KB - Virtual size: 87KB

.data
Size: 52KB - Virtual size: 73KB

.rsrc
Size: 196KB - Virtual size: 195KB