70012dc10db8598f7bd89fd8684f3268968ee3b3a649aa5fece16c20d3b2b3ad

Sharing

Copy URL Twitter E-mail

General

Target

70012dc10db8598f7bd89fd8684f3268968ee3b3a649aa5fece16c20d3b2b3ad
Size

552KB
MD5

285ae0c57af79dc3ddc71eedb0020839
SHA1

0bdf73d4aa152182b73b3c7e7460f4a9f315add6
SHA256

70012dc10db8598f7bd89fd8684f3268968ee3b3a649aa5fece16c20d3b2b3ad
SHA512

9297e04e01fab9dee4cc1b107361d8b736e6371eb1913b9ce6ce87995abd14c98b973b9c234153aef912147988aef60e3dbfa42ab013428ef6cde761012a2d32
SSDEEP

6144:9H0pOLBi3OWZ76gSV6JOGIC6Y6IEN+isNfJ+pwe:R0kS76tV6JOGICB6I9Qd

Score

N/A

Malware Config

Signatures

Files

70012dc10db8598f7bd89fd8684f3268968ee3b3a649aa5fece16c20d3b2b3ad
.exe windows x86

0c14fec53f3f2e3b0055a1f503c9875b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
SetFileAttributesA
GlobalFlags
GetPrivateProfileIntA
SetErrorMode
WritePrivateProfileStringA
GetCurrentDirectoryA
MulDiv
GetCPInfo
GetPrivateProfileStringA
FileTimeToSystemTime
FileTimeToLocalFileTime
GlobalSize
CopyFileA
RtlUnwind
GetProcessVersion
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
HeapReAlloc
GetOEMCP
GetCommandLineA
ExitThread
HeapSize
RaiseException
GetFileAttributesA
GetFileSize
GetLocalTime
FatalAppExitA
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
HeapCreate
VirtualFree
VirtualAlloc
GetStartupInfoA
CreateFileA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
TlsGetValue
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
SetStdHandle
SetConsoleCtrlHandler
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
TlsAlloc
LocalAlloc
GetTickCount
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
SuspendThread
SetThreadPriority
ResumeThread
GlobalDeleteAtom
GetCurrentThread
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetSystemTime
DuplicateHandle
GetProcAddress
CreateEventA
CreateThread
WaitForSingleObject
CloseHandle
InterlockedDecrement
SetEvent
FreeLibrary
LocalFree
FormatMessageA
lstrcmpiA
GetCurrentThreadId
GetSystemDefaultLCID
DeleteFileA
lstrlenW
WideCharToMultiByte
SleepEx
lstrlenA
MultiByteToWideChar
GetModuleFileNameA
SetLastError
GetCurrentProcess
FlushInstructionCache
lstrcmpA
lstrcatA
lstrcpyA
HeapDestroy
IsDBCSLeadByte
lstrcpynA
SizeofResource
GetShortPathNameA
DeleteCriticalSection
InitializeCriticalSection
GlobalLock
GlobalUnlock
EnterCriticalSection
LeaveCriticalSection
GlobalAlloc
FindResourceA
LoadResource
LockResource
GlobalHandle
GlobalFree
InterlockedIncrement
ReleaseMutex
Sleep
CreateMutexA
GetLastError
LoadLibraryExA
GetLocaleInfoA
LoadLibraryA
GetVersionExA
LoadLibraryW
IsBadWritePtr
UnhandledExceptionFilter
GetACP
GetTimeZoneInformation
IsValidLocale

user32

DestroyMenu
DestroyIcon
AppendMenuA
RemoveMenu
GetSysColorBrush
GetDialogBaseUnits
wvsprintfA
DrawTextA
TabbedTextOutA
GetWindowDC
GetMenuStringA
DeleteMenu
InsertMenuA
ClientToScreen
PtInRect
RegisterClipboardFormatA
SendDlgItemMessageA
SetActiveWindow
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetDlgCtrlID
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetMessageTime
GetForegroundWindow
OffsetRect
ScrollWindowEx
IsDialogMessageA
GetWindowPlacement
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
ValidateRect
IsWindowVisible
GetCursorPos
CheckDlgButton
GrayStringA
SetCursor
PostMessageA
PostQuitMessage
GetSystemMetrics
CharUpperA
OemToCharA
CharToOemA
CreateDialogIndirectParamA
PeekMessageA
MoveWindow
SetForegroundWindow
UpdateWindow
LoadIconA
EnableWindow
ShowWindow
GetWindowRect
SystemParametersInfoA
MapWindowPoints
GetClassNameA
CreateWindowExA
GetDlgItem
SendMessageA
DestroyWindow
InvalidateRgn
InvalidateRect
SetCapture
ReleaseCapture
CreateAcceleratorTableA
GetParent
GetDC
GetDesktopWindow
ReleaseDC
RedrawWindow
IsWindow
SetWindowPos
BeginPaint
IsDlgButtonChecked
SetDlgItemInt
GetDlgItemInt
CheckRadioButton
IsIconic
IntersectRect
GetLastActivePopup
GetClientRect
FillRect
EndPaint
CallWindowProcA
GetFocus
IsChild
SetFocus
GetSysColor
EndDialog
GetWindowLongA
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
GetWindow
DefWindowProcA
RegisterWindowMessageA
GetClassInfoExA
LoadCursorA
RegisterClassExA
DialogBoxIndirectParamA
CharLowerA
GetKeyboardLayout
GetActiveWindow
CharNextA
PostThreadMessageA
LoadStringA
MessageBoxA
SetWindowLongA
CallNextHookEx
SetWindowsHookExA
FindWindowExA
UnhookWindowsHookEx
wsprintfA
GetDlgItemTextA
SetDlgItemTextA
IsWindowEnabled
ShowOwnedPopups
GetMessagePos
UnregisterClassA

gdi32

CreateCompatibleDC
SelectObject
BitBlt
SetColorAdjustment
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
PolyDraw
TextOutA
ExtTextOutA
Escape
CopyMetaFileA
CreateDCA
GetTextExtentPoint32A
GetTextMetricsA
CreateFontIndirectA
SetArcDirection
ArcTo
GetCurrentPositionEx
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
PolylineTo
MoveToEx
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
RestoreDC
SaveDC
StartDocA
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
CreateBitmap
GetStockObject
GetObjectA
GetDeviceCaps
CreateSolidBrush
DeleteObject
CreateCompatibleBitmap
DeleteDC
LineTo
PolyBezierTo

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteValueA
RegEnumKeyExA
RegCreateKeyExA
RegCreateKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyA
RegEnumKeyA
RegSetValueExA
RegQueryInfoKeyA
RegEnumValueA
RegOpenKeyA
RegSetValueA
RegQueryValueA

shell32

ExtractIconA
DragAcceptFiles
SHGetFileInfoA
ShellExecuteExA
SHGetDesktopFolder
SHGetPathFromIDListA

comctl32

ord17

oledlg

ord8

ole32

ReleaseStgMedium
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
CoGetClassObject
CoFreeUnusedLibraries
CoRevokeClassObject
CoRegisterClassObject
CoRegisterMessageFilter
CoDisconnectObject
OleRun
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoCreateInstance
OleDuplicateData
CreateBindCtx
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
OleRegGetUserType
StringFromCLSID
CoTreatAsClass
ReadFmtUserTypeStg
ReadClassStg
CoTaskMemRealloc
OleLockRunning
CoTaskMemAlloc

olepro32

ord250
ord253

oleaut32

SafeArrayGetUBound
SafeArrayDestroyDescriptor
GetErrorInfo
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
LoadTypeLi
SafeArrayAccessData
SafeArrayUnaccessData
SysReAllocStringLen
VariantCopy
VariantChangeType
SysAllocStringByteLen
SysStringByteLen
DispCallFunc
LoadRegTypeLi
RegisterTypeLi
RevokeActiveObject
VarUI4FromStr
SysStringLen
VariantClear
SysAllocStringLen
RegisterActiveObject
SysAllocString
SysFreeString
SetErrorInfo
CreateErrorInfo
VariantInit

Sections

.text
Size: 364KB - Virtual size: 363KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c14fec53f3f2e3b0055a1f503c9875b

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 364KB - Virtual size: 363KB

.rdata Size: 48KB - Virtual size: 46KB

.data Size: 20KB - Virtual size: 33KB

.idata Size: 16KB - Virtual size: 14KB

.rsrc Size: 72KB - Virtual size: 71KB

.reloc Size: 28KB - Virtual size: 26KB

.text
Size: 364KB - Virtual size: 363KB

.rdata
Size: 48KB - Virtual size: 46KB

.data
Size: 20KB - Virtual size: 33KB

.idata
Size: 16KB - Virtual size: 14KB

.rsrc
Size: 72KB - Virtual size: 71KB

.reloc
Size: 28KB - Virtual size: 26KB