ec1a02072a55469b5cedfefbadb86d89262bd7444eb706e67699fd52f4f671df

Sharing

Copy URL Twitter E-mail

General

Target

ec1a02072a55469b5cedfefbadb86d89262bd7444eb706e67699fd52f4f671df
Size

648KB
MD5

2069a65a5e5decd2f6939ed3b10a62c0
SHA1

b5f2275bff4ad21389889735e773128997bcf7c8
SHA256

ec1a02072a55469b5cedfefbadb86d89262bd7444eb706e67699fd52f4f671df
SHA512

2caba7b2b1302138b5a0f0c77e15ac4ab06687a793b60320082c0b4caa42629f1c7e4cc7d9f762393ceacf1d2082b4d4f04833a94c00bb72110705ab93c26a02
SSDEEP

12288:pGFWQ1PQQgoGMrOGzvPUep3vY1TTDr2j3o9G0VW2zAc:UvBp3vcTTDryo9G0wsAc

Score

N/A

Malware Config

Signatures

Files

ec1a02072a55469b5cedfefbadb86d89262bd7444eb706e67699fd52f4f671df
.exe windows x86

2d9318e52e8e0ca3b9ad9d581450cfc5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

GetOEMCP
SizeofResource
SetErrorMode
RtlUnwind
ExitProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RaiseException
GetDriveTypeA
ExitThread
CreateDirectoryA
GetStartupInfoA
GetCommandLineA
SetEnvironmentVariableA
SetCurrentDirectoryA
GetACP
SetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
SetHandleCount
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetCPInfo
CompareStringA
CompareStringW
GetLocaleInfoW
CloseHandle
WaitForSingleObject
TerminateProcess
OpenProcess
GetShortPathNameA
GetModuleFileNameA
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
GetCurrentProcessId
LockResource
LoadResource
FindResourceA
GetModuleHandleA
GetCurrentProcess
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
Sleep
FindClose
FindNextFileA
FindFirstFileA
CreateThread
GetExitCodeThread
GetTickCount
GetLastError
CreateProcessA
CopyFileA
MoveFileA
GetPrivateProfileStringA
DeleteFileA
WritePrivateProfileStringA
IsBadReadPtr
GetFileTime
GetProcessVersion
GetCurrentDirectoryA
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
ReleaseMutex
CreateMutexA
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcpynA
FormatMessageA
InterlockedExchange
GetProfileStringA
MulDiv
GlobalUnlock
GlobalFree
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
SetLastError
LocalFree
InterlockedDecrement
lstrlenA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
SetEndOfFile
GetFileSize
SetFilePointer
ReadFile
HeapReAlloc
HeapSize
HeapFree
HeapAlloc
InterlockedIncrement
CreateFileA
WriteFile
LeaveCriticalSection
EnterCriticalSection
WritePrivateProfileSectionA
GetPrivateProfileIntA
GetPrivateProfileSectionA
DeleteCriticalSection
InitializeCriticalSection
GetVersion
lstrcpyA
MoveFileExA
TerminateThread
GetFileAttributesA
GetSystemDefaultLangID
GetTempPathA
GetUserDefaultLCID

user32

GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
MessageBeep
SetRect
InvalidateRect
InflateRect
GetSysColorBrush
PtInRect
GetClassNameA
CharUpperA
DestroyMenu
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
MapDialogRect
SetWindowContextHelpId
EndDialog
CreateDialogIndirectParamA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
SetFocus
AdjustWindowRectEx
ScreenToClient
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
GetMessageTime
GetMessagePos
UnregisterClassA
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
LoadStringA
CopyRect
ReleaseDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
GetKeyState
CallNextHookEx
ValidateRect
SetWindowsHookExA
GetLastActivePopup
PostQuitMessage
GetClassInfoA
PostThreadMessageA
RegisterClipboardFormatA
DefWindowProcA
GetWindowLongA
FindWindowExA
RegisterWindowMessageA
PostMessageA
GetSysColor
DrawIconEx
LoadImageA
SetCapture
SetCursor
ReleaseCapture
GetDC
HideCaret
LoadCursorA
GetParent
PeekMessageA
TranslateMessage
DispatchMessageA
GetDesktopWindow
KillTimer
IsWindowEnabled
GetActiveWindow
LoadMenuA
GetSubMenu
EnableMenuItem
SetMenuDefaultItem
GetCursorPos
TrackPopupMenu
IsWindowVisible
GetWindowRect
MessageBoxA
SetActiveWindow
SetForegroundWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
SetTimer
LoadIconA
EnableWindow
LoadBitmapA
FindWindowA
GetWindowThreadProcessId
RemovePropA
IsWindow
GetDlgItem

gdi32

ExcludeClipRect
IntersectClipRect
DeleteObject
GetDeviceCaps
GetViewportExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
DPtoLP
GetTextColor
GetBkColor
LPtoDP
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
SetBkColor
SetTextColor
GetClipBox
PatBlt
CreateBitmap
CreateSolidBrush
GetTextMetricsA
GetTextExtentPointA
BitBlt
CreateCompatibleDC
GetWindowExtEx
CreateDIBitmap
GetObjectA

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA
GetUserNameA
CryptReleaseContext
CryptAcquireContextA
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash

shell32

Shell_NotifyIconA
SHFileOperationA
ShellExecuteA

comctl32

ImageList_AddMasked
ImageList_Destroy
ImageList_Create
ord17

oledlg

ord8

ole32

OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoTaskMemAlloc
CoRegisterMessageFilter
CoRevokeClassObject
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysStringLen
SysAllocStringByteLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysFreeString
SysAllocStringLen

wsock32

WSACleanup
WSASetLastError
accept
htonl
gethostbyname
recv
send
connect
htons
bind
sendto
inet_ntoa
recvfrom
ioctlsocket
setsockopt
socket
WSAGetLastError
WSAAsyncSelect
WSAStartup
closesocket

wininet

InternetSetFilePointer
InternetSetStatusCallback
InternetGetLastResponseInfoA
HttpSendRequestA
InternetErrorDlg
HttpOpenRequestA
InternetConnectA
InternetQueryDataAvailable
InternetReadFile
InternetSetOptionExA
InternetWriteFile
InternetCloseHandle
InternetOpenA
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
HttpQueryInfoA

Sections

.text
Size: 332KB - Virtual size: 328KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2d9318e52e8e0ca3b9ad9d581450cfc5

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

wininet

Sections

.text Size: 332KB - Virtual size: 328KB

.rdata Size: 84KB - Virtual size: 83KB

.data Size: 32KB - Virtual size: 54KB

.rsrc Size: 196KB - Virtual size: 196KB

.text
Size: 332KB - Virtual size: 328KB

.rdata
Size: 84KB - Virtual size: 83KB

.data
Size: 32KB - Virtual size: 54KB

.rsrc
Size: 196KB - Virtual size: 196KB