42c7d86cd863ad2b9560a15368117933fb3611fe7180a9db834defc0e181517e

Sharing

Copy URL Twitter E-mail

General

Target

42c7d86cd863ad2b9560a15368117933fb3611fe7180a9db834defc0e181517e
Size

708KB
MD5

09c5d0a5ee91abd20d57fcf6c7af4bd1
SHA1

4fc6608cdcc0660e9153f91a5b61060956c15abd
SHA256

42c7d86cd863ad2b9560a15368117933fb3611fe7180a9db834defc0e181517e
SHA512

9572eaaf01a111617447b2ca2a30f0f3f50357a5dd3c0cf3873fa243faaf117f31faef845b8159a3d614fdbabf4664f79deba1652557ca9234de4c6ccca49c8a
SSDEEP

12288:XgclzQYM54dLb1rxFCGUD6Lcf/E4BYrt96Wk4zkI4zk:wclEYMmdL5v7Uh/vBYrf6WFkBk

Score

N/A

Malware Config

Signatures

Files

42c7d86cd863ad2b9560a15368117933fb3611fe7180a9db834defc0e181517e
.exe windows x86

21859856edd6c19ed47bf7558ab4da16

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

mpr

WNetGetConnectionW
WNetEnumResourceW
WNetOpenEnumW
WNetCloseEnum

ole32

CoUninitialize
CoCreateInstance
CoInitialize

kernel32

GlobalGetAtomNameW
GetStartupInfoW
RtlUnwind
GlobalAddAtomW
HeapFree
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RaiseException
GetModuleFileNameW
SetErrorMode
TerminateProcess
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
HeapAlloc
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
GetModuleFileNameA
VirtualAlloc
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetDriveTypeA
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
lstrcmpiW
GetVersionExW
GetPrivateProfileIntW
CreateFileMappingW
ExitProcess
GetTimeFormatW
LocalAlloc
LocalFree
lstrlenW
GetFileSize
GlobalAlloc
GlobalLock
ReadFile
GetACP
MultiByteToWideChar
GlobalUnlock
GlobalFree
GetTempPathW
GetWindowsDirectoryW
GetDateFormatW
DeleteFileW
SetCurrentDirectoryW
GetSystemDirectoryW
lstrcmpW
CreateFileW
CloseHandle
GetPrivateProfileStringW
CreateDirectoryExW
GetLastError
FindFirstFileW
FindClose
SetLastError
lstrcpyW
lstrcatW
GetModuleHandleA
FindResourceA
GetProfileStringA
GetFullPathNameW
GetVolumeInformationW
MoveFileW
FlushFileBuffers
GetProcessVersion
GetCurrentDirectoryW
WritePrivateProfileStringW
TlsGetValue
LoadLibraryA
FreeLibrary
EnterCriticalSection
LocalReAlloc
TlsSetValue
GlobalReAlloc
LeaveCriticalSection
TlsAlloc
GlobalHandle
DeleteCriticalSection
GlobalFlags
InitializeCriticalSection
SizeofResource
GetStringTypeW
lstrcpynW
GlobalAddAtomA
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
FindNextFileW
FormatMessageW
lstrlenA
InterlockedIncrement
InterlockedDecrement
MulDiv
GetVersion
GetCurrentThreadId
LockResource
FindResourceW
LoadResource
SetFilePointer
WideCharToMultiByte
WriteFile
GlobalMemoryStatus
GetModuleHandleW
GetProcAddress
GetDiskFreeSpaceW
GetCurrentProcess
SetHandleCount
GetStdHandle
HeapDestroy

user32

PtInRect
GetClassNameW
GetDesktopWindow
GetMessageW
ClientToScreen
GetSysColorBrush
LoadCursorW
InvalidateRect
OffsetRect
DestroyMenu
ReleaseCapture
CharUpperW
SetRectEmpty
LoadAcceleratorsW
TranslateAcceleratorW
LoadMenuW
SetMenu
ReuseDDElParam
UnpackDDElParam
WindowFromPoint
IntersectRect
InflateRect
PostQuitMessage
LoadStringW
BringWindowToTop
DrawTextW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
SetWindowTextW
IsDialogMessageW
GrayStringW
GetDlgItemTextW
PostMessageW
SendDlgItemMessageA
SystemParametersInfoW
MapWindowPoints
GetSysColor
PeekMessageW
DispatchMessageW
GetFocus
SetFocus
TranslateMessage
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
ScreenToClient
ScrollWindow
SetScrollInfo
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpW
GetClassInfoW
RegisterClassW
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetMenu
GetWindowTextW
GetDlgCtrlID
GetKeyState
DefWindowProcW
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
UnhookWindowsHookEx
GetLastActivePopup
GetForegroundWindow
GetPropW
CallWindowProcW
RemovePropW
GetMessageTime
GetMessagePos
GetWindow
GetWindowRect
SetWindowLongW
ValidateRect
SetWindowPos
RegisterWindowMessageW
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamW
DestroyWindow
GetParent
GetWindowLongW
GetDlgItem
IsWindowEnabled
ExitWindowsEx
MessageBoxW
UpdateWindow
wsprintfW
FindWindowW
SetForegroundWindow
IsIconic
GetSystemMetrics
GetClientRect
SendMessageW
CharNextW
EnableWindow
LoadIconW
DrawIcon
GetCursorPos
SetCursor
ShowOwnedPopups
AdjustWindowRectEx
EqualRect
CopyRect
GetWindowLongA
SetWindowLongA
GetClassNameA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoA
CharNextA
DefDlgProcA
RemovePropA
UnregisterClassW
GetWindowTextLengthA
GetPropA
SetPropA
SetWindowsHookExA
CallWindowProcA
IsWindowUnicode
SendMessageA
DefWindowProcA

gdi32

ExtTextOutA
GetTextExtentPointA
DeleteDC
CreateBitmap
GetObjectW
SetBkColor
BitBlt
CreateCompatibleDC
CreateDIBitmap
SelectObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
IntersectClipRect
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
ExtTextOutW
Escape
TextOutW
SaveDC
PatBlt
RestoreDC
GetStockObject
SetTextColor

comdlg32

GetSaveFileNameW

winspool.drv

DocumentPropertiesW
EnumPortsW
ClosePrinter
SetPrinterW
GetPrinterW
OpenPrinterW
GetPrinterDriverDirectoryW
EnumPrintersW

advapi32

RegOpenKeyExW
RegEnumValueW
RegDeleteKeyW
LockServiceDatabase
ChangeServiceConfigW
UnlockServiceDatabase
ControlService
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenServiceW
QueryServiceConfigW
QueryServiceStatus
OpenSCManagerW
RegCloseKey
RegQueryValueExW
EnumServicesStatusW
RegCreateKeyExW
RegQueryInfoKeyW
RegSetValueExW
CloseServiceHandle

shell32

DragFinish
DragQueryFileW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHChangeNotify

comctl32

ord17
ImageList_Destroy

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 139KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ftjvjmn
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

21859856edd6c19ed47bf7558ab4da16

Headers

File Characteristics

Imports

version

mpr

ole32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 177KB - Virtual size: 177KB

.rdata Size: 34KB - Virtual size: 34KB

.data Size: 18KB - Virtual size: 37KB

.idata Size: 9KB - Virtual size: 9KB

.rsrc Size: 36KB - Virtual size: 36KB

.text Size: 139KB - Virtual size: 140KB

ftjvjmn Size: - Virtual size: 4KB

.text Size: 108KB - Virtual size: 112KB

.text
Size: 177KB - Virtual size: 177KB

.rdata
Size: 34KB - Virtual size: 34KB

.data
Size: 18KB - Virtual size: 37KB

.idata
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 36KB - Virtual size: 36KB

.text
Size: 139KB - Virtual size: 140KB

ftjvjmn
Size: - Virtual size: 4KB

.text
Size: 108KB - Virtual size: 112KB