b6c103fc7fa28a5b34bb76966f030e194764d5bfedba4d05a265747ae4860746

Sharing

Copy URL

Twitter E-mail

General

Target

b6c103fc7fa28a5b34bb76966f030e194764d5bfedba4d05a265747ae4860746
Size

847KB
MD5

122818d2a6828767154fe6451cd532f0
SHA1

78f0a915a40e7f253df98b01c74985ed0b47b5a9
SHA256

b6c103fc7fa28a5b34bb76966f030e194764d5bfedba4d05a265747ae4860746
SHA512

0dbcef9532a4392cd0685e8ddb9a4a592039c2d2fde041bc4b00324488db1d6af965eb536497d76e6cc850408ae3fea02dd68f67b17f333e440fb6ab61f1d78b
SSDEEP

12288:ynkq1q9o3p3WIS6GBj99VzF6CUoX04ztGQ6Ek4XddqX9K5xVhsqfHRF:yK6G5/rUsftt6Ek4XdVAUHP

Score

N/A

Malware Config

Signatures

Files

b6c103fc7fa28a5b34bb76966f030e194764d5bfedba4d05a265747ae4860746
.exe windows x86

9e3c1c200df95625ac68a47955c614f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceLanguagesW
GetVersion
ConvertDefaultLocale
GlobalDeleteAtom
FreeResource
WritePrivateProfileStringW
GlobalAddAtomW
GetVersionExA
CompareStringW
GlobalFindAtomW
InterlockedDecrement
FileTimeToSystemTime
FileTimeToLocalFileTime
InterlockedIncrement
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetFileTime
GlobalFlags
GetStartupInfoW
UnhandledExceptionFilter
IsDebuggerPresent
ExitThread
RaiseException
RtlUnwind
HeapReAlloc
ExitProcess
HeapSize
VirtualProtect
VirtualAlloc
lstrcmpA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetCurrentDirectoryA
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
CreateFileA
GetDriveTypeA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetLocaleInfoW
LoadLibraryExW
CompareStringA
InterlockedExchange
lstrcmpW
GetFullPathNameW
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetThreadLocale
SetLastError
GlobalLock
GlobalUnlock
FormatMessageW
MulDiv
DeviceIoControl
SetThreadPriority
ResumeThread
CreateThread
GetSystemDirectoryW
GetVolumeInformationW
LocalFree
Process32FirstW
Process32NextW
lstrlenA
GetSystemInfo
GetVersionExW
lstrlenW
WideCharToMultiByte
CreateDirectoryW
GlobalAlloc
GlobalFree
GetCurrentThread
GetFileSize
TerminateThread
GetCommandLineW
CreateMutexW
OutputDebugStringW
FreeLibrary
LoadLibraryW
MultiByteToWideChar
GetFileAttributesW
GetModuleFileNameA
WriteFile
SetFilePointer
GetSystemTimeAsFileTime
GetProcessTimes
ReadFile
QueryPerformanceFrequency
LoadLibraryA
GetModuleHandleA
MoveFileW
FindResourceW
CreateFileW
LeaveCriticalSection
SetEvent
LoadResource
LockResource
DeleteCriticalSection
SizeofResource
DeleteFileW
WaitForSingleObject
Sleep
GetPrivateProfileIntW
QueryPerformanceCounter
GetTickCount
FindClose
FindNextFileW
GetLastError
CopyFileW
FindFirstFileW
GetProcessHeap
CloseHandle
HeapAlloc
WaitForMultipleObjects
CreateProcessW
SearchPathW
DuplicateHandle
CreateEventW
EnterCriticalSection
SuspendThread
OpenThread
Thread32Next
Thread32First
CreateToolhelp32Snapshot
HeapFree
GetCurrentProcess
SetUnhandledExceptionFilter
WriteProcessMemory
InitializeCriticalSection
GetProcAddress
SetErrorMode
GetModuleHandleW
GetCurrentThreadId
GetCurrentProcessId
GetModuleFileNameW
VirtualQuery
VirtualAllocEx
ReadProcessMemory
GetStdHandle
TerminateProcess

user32

MessageBeep
GetNextDlgGroupItem
ReleaseCapture
SetCapture
InvalidateRgn
InvalidateRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
CharNextW
LoadCursorW
GetSysColorBrush
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
DestroyMenu
MoveWindow
SetWindowTextW
IsDialogMessageW
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextW
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
UpdateWindow
GetMenu
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
CopyRect
PtInRect
GetDlgCtrlID
CallWindowProcW
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetLastActivePopup
MessageBoxW
SetCursor
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetWindow
SetWindowContextHelpId
GetParent
MapDialogRect
SetWindowPos
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
PostThreadMessageW
DispatchMessageW
GetActiveWindow
RegisterClipboardFormatW
MapWindowPoints
UnregisterClassW
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
CharUpperW
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetForegroundWindow
GetWindowThreadProcessId
SetForegroundWindow
GetClientRect
GetSystemMetrics
IsWindowVisible
IsIconic
KillTimer
PostMessageW
SetTimer
AppendMenuW
GetSystemMenu
EnableWindow
DrawIcon
LoadIconW
SendMessageW
ShowWindow
CreateWindowExW
RegisterClassExW
GetClassInfoExW
DefWindowProcW
SendMessageTimeoutW
IsWindow
FindWindowExW
PostQuitMessage
EqualRect
UnregisterClassA

gdi32

GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetMapMode
GetWindowExtEx
GetViewportExtEx
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutW
RectVisible
PtVisible
GetStockObject
DeleteObject
SetMapMode
RestoreDC
SaveDC
ExtTextOutW
GetObjectW
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetDeviceCaps

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegQueryValueW
RegEnumKeyW
RegOpenKeyW
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW
RegCloseKey
RegSetValueExW
RegCreateKeyExW

shell32

SHFileOperationW
ShellExecuteExW
SHGetFolderPathW
SHGetSpecialFolderPathW

comctl32

InitCommonControlsEx

shlwapi

PathFileExistsW
PathRemoveFileSpecW
PathAppendW
PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathFindExtensionW

oledlg

OleUIBusyW

ole32

CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
OleUninitialize
OleInitialize
CoTaskMemFree

oleaut32

SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

ws2_32

WSACleanup
htonl
getaddrinfo
inet_addr
WSAGetLastError
htons
sendto
setsockopt
recvfrom
WSAStartup
inet_ntoa
closesocket
ntohs
socket

iphlpapi

GetAdaptersInfo
GetAdaptersAddresses
GetIpForwardTable

netapi32

Netbios

Sections

.text
Size: 284KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 456KB - Virtual size: 456KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9e3c1c200df95625ac68a47955c614f0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

version

ws2_32

iphlpapi

netapi32

Sections

.text Size: 284KB - Virtual size: 281KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 20KB - Virtual size: 35KB

.rsrc Size: 456KB - Virtual size: 456KB

.text
Size: 284KB - Virtual size: 281KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 20KB - Virtual size: 35KB

.rsrc
Size: 456KB - Virtual size: 456KB