23df02d31cf11b1818a00957a9b640b4cfcd7ea1e0b901233db0fc1314a230f9

Sharing

Copy URL Twitter E-mail

General

Target

23df02d31cf11b1818a00957a9b640b4cfcd7ea1e0b901233db0fc1314a230f9
Size

1.4MB
MD5

21059f7c1c23740d5bb0d4061e4b83d1
SHA1

d12caaddeb833160739bc33075241de1b1f7ae81
SHA256

23df02d31cf11b1818a00957a9b640b4cfcd7ea1e0b901233db0fc1314a230f9
SHA512

19f3fa874c57290a5a8c28b623e2cbd472b5c414bee2a3a21fc9937c97ba9b6ff1d8a7d67a10da19309cac2c13fcfecf141201117562065366f14cb50312f899
SSDEEP

24576:IaiNVXSAtqhknCRtN6rKwmzGizXjggRgqR+CkCW:ylrfAXTRjW

Score

N/A

Malware Config

Signatures

Files

23df02d31cf11b1818a00957a9b640b4cfcd7ea1e0b901233db0fc1314a230f9
.exe windows x86

0aa883d250a5d2fe9109cb99c6b4c78e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteKeyW

winmm

waveOutWrite
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutClose
waveOutReset
waveOutOpen
waveOutGetDevCapsW
mixerGetDevCapsW
mixerOpen
mixerGetNumDevs
mixerClose
mixerGetLineControlsW
mixerGetLineInfoW
mixerGetControlDetailsW
mixerSetControlDetails

kernel32

HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
GetModuleFileNameA
LCMapStringA
VirtualAlloc
IsBadWritePtr
GetCurrentDirectoryA
SetUnhandledExceptionFilter
GetStringTypeA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetDriveTypeA
CompareStringA
GetACP
RaiseException
SetEnvironmentVariableA
GetWindowsDirectoryA
GetSystemDirectoryA
InterlockedExchange
QueryPerformanceCounter
FindResourceA
GlobalAddAtomA
GetProfileStringA
WaitForSingleObject
ExitProcess
LocalFileTimeToFileTime
SystemTimeToFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetLastError
FindClose
ReadFile
SetLastError
CloseHandle
Sleep
SetEvent
CreateThread
GetTickCount
GetLocalTime
ResumeThread
SuspendThread
LocalFree
LocalAlloc
GlobalUnlock
GlobalLock
GlobalFree
WriteFile
HeapFree
TerminateProcess
RtlUnwind
GetSystemTimeAsFileTime
HeapAlloc
GetSystemTime
GetTimeZoneInformation
SetErrorMode
GlobalSize
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
TlsAlloc
DeviceIoControl
GetFileSize
ResetEvent
GetOEMCP
FreeLibrary
SetFileTime
GlobalFlags
DeleteCriticalSection
lstrcmpiA
GetFileTime
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
lstrcmpA
GetModuleHandleA
GetCurrentThreadId
GlobalDeleteAtom
lstrlenA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
MulDiv
GetSystemDefaultLangID
SetEndOfFile
SetThreadExecutionState
CreateEventA
GetOverlappedResult
GetCurrentThread
GetExitCodeProcess
SetFilePointer
GetCurrentProcessId
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
SetThreadPriority
GlobalHandle
LoadResource
SizeofResource
LockResource
GlobalAlloc
GetCurrentProcess
GetVersion
DefineDosDeviceW
GetLogicalDrives

user32

GetDCEx
ValidateRect
ShowOwnedPopups
PostQuitMessage
DrawFocusRect
SetParent
SetRect
IsRectEmpty
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
SetRectEmpty
TranslateMessage
DestroyCursor
SetCursorPos
DestroyMenu
EndPaint
BeginPaint
GetWindowDC
MapDialogRect
GetAsyncKeyState
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
ShowWindow
MoveWindow
IsDlgButtonChecked
SendDlgItemMessageA
MapWindowPoints
AdjustWindowRectEx
DeferWindowPos
CopyRect
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
TrackPopupMenu
CallNextHookEx
UnhookWindowsHookEx
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowPos
IntersectRect
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
DestroyWindow
IsWindowEnabled
MessageBoxA
GetWindowTextLengthA
HideCaret
GetDlgCtrlID
EnumChildWindows
DrawMenuBar
GetSystemMetrics
GetDlgItem
SetFocus
IsWindow
ReleaseCapture
SetCapture
SetMenuDefaultItem
GetCursorPos
GetMenuItemCount
IsWindowVisible
FillRect
DestroyIcon
GetDesktopWindow
LockWindowUpdate
CheckMenuRadioItem
GetSysColorBrush
GetCapture
PtInRect
GetMessagePos
UpdateWindow
OffsetRect
IsZoomed
ScreenToClient
ClientToScreen
WindowFromPoint
SetClipboardData
OpenClipboard
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
SetWindowsHookExA
SendMessageA
GetClassNameA
KillTimer
SetTimer
InvalidateRect
GetParent
GetWindowRect
GetSubMenu
CheckMenuItem
EnableMenuItem
CreatePopupMenu
RemoveMenu
GetMenuItemID
BroadcastSystemMessage
GetMenu
GetCaretPos
GetClientRect
SetCursor
InflateRect
GetSysColor
RedrawWindow
ReleaseDC
GetDC
EndDeferWindowPos
BeginDeferWindowPos
EqualRect
GetFocus
EmptyClipboard
CloseClipboard
GetKeyState
CheckRadioButton

gdi32

GetClipBox
CreateRectRgnIndirect
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
CreatePen
CreateSolidBrush
CreatePatternBrush
SetRectRgn
CombineRgn
StretchDIBits
LPtoDP
GetDeviceCaps
SetBkColor
SetTextColor
Escape
RectVisible
PtVisible
CreateRectRgn
CreateBitmap
DeleteDC
CreateDIBSection
GetDIBits
SetDIBits
DeleteObject
CreateCompatibleBitmap
BitBlt
GetStockObject
PatBlt
StretchBlt
SetStretchBltMode
ExtTextOutA
GetTextExtentPointA
SelectObject
CreateDIBitmap
CreateCompatibleDC

winspool.drv

ClosePrinter

advapi32

RegCloseKey
OpenProcessToken
RegQueryValueExA
RegOpenKeyExA
GetTokenInformation

shell32

DragAcceptFiles
SHGetSpecialFolderPathW
SHGetDesktopFolder
DragFinish
SHGetMalloc

comctl32

ord17
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_AddMasked
PropertySheetW
DestroyPropertySheetPage
ImageList_Create
CreatePropertySheetPageW

ole32

OleDuplicateData
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
RevokeDragDrop
CoTaskMemAlloc
CoRevokeClassObject
CoLockObjectExternal
RegisterDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
DoDragDrop
OleGetClipboard
CoTaskMemFree
CreateStreamOnHGlobal
ReleaseStgMedium
CoInitialize
CoRegisterMessageFilter

olepro32

ord251

Sections

.text
Size: 912KB - Virtual size: 908KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 827KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 252KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0aa883d250a5d2fe9109cb99c6b4c78e

Headers

File Characteristics

Imports

shlwapi

winmm

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

ole32

olepro32

Sections

.text Size: 912KB - Virtual size: 908KB

.rdata Size: 116KB - Virtual size: 112KB

.data Size: 144KB - Virtual size: 827KB

.rsrc Size: 252KB - Virtual size: 268KB

.text
Size: 912KB - Virtual size: 908KB

.rdata
Size: 116KB - Virtual size: 112KB

.data
Size: 144KB - Virtual size: 827KB

.rsrc
Size: 252KB - Virtual size: 268KB