49196241909c4426a7694b26425955f1d1b7d07ea204cdcf673ca36b63becdd7

Sharing

Copy URL Twitter E-mail

General

Target

49196241909c4426a7694b26425955f1d1b7d07ea204cdcf673ca36b63becdd7
Size

540KB
MD5

1032418a9e15ee39aad6af7ae622a1a0
SHA1

0786fa5889e72644ac8b814744e72c00c73dbb51
SHA256

49196241909c4426a7694b26425955f1d1b7d07ea204cdcf673ca36b63becdd7
SHA512

9431b8576d33ea9c2efe9577f0b96c612081c73fada67b3572dbe67740d0545ca2856a8897ece32fe161e831189ad45916e8cd716d57d66f1dd33d4a7ddd4bae
SSDEEP

12288:e7u3OIEkmSBl7+rJpgm190H+yxyPPTkCW7WgkkDGm:Rxzl7+rJpgm190Hkk/xka

Score

N/A

Malware Config

Signatures

Files

49196241909c4426a7694b26425955f1d1b7d07ea204cdcf673ca36b63becdd7
.exe windows x86

5360fada4a2f1cdf818c8bd248c34981

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
HeapReAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
SetStdHandle
CreateFileA
TerminateProcess
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
ExitProcess
RtlUnwind
GetStartupInfoW
SetErrorMode
CreateFileW
GetCurrentProcess
SetEndOfFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GlobalFlags
InterlockedIncrement
lstrcmpiW
InterlockedDecrement
FormatMessageW
LocalFree
GetLastError
MulDiv
SetLastError
lstrcpynW
GlobalFindAtomW
lstrlenA
GetModuleHandleA
LoadLibraryA
lstrcatW
GetVersionExA
GlobalFree
FreeResource
CloseHandle
GlobalAddAtomW
lstrlenW
GetCurrentThread
GetCurrentThreadId
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
GetModuleFileNameW
GetModuleHandleW
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcpyW
GetLocaleInfoW
WideCharToMultiByte
GetCurrentDirectoryA
LoadLibraryW
GetProcAddress
FreeLibrary
WritePrivateProfileStructW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
DeleteFileW
GetSystemTime
CopyFileW
GlobalLock
GlobalUnlock
MultiByteToWideChar
LoadResource
LockResource
SizeofResource
FindResourceW
GetCurrentDirectoryW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVersionExW

user32

DestroyMenu
GetSysColorBrush
EndPaint
BeginPaint
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
RegisterWindowMessageW
WinHelpW
GetCapture
CreateWindowExW
GetClassInfoExW
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
UpdateWindow
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
AdjustWindowRectEx
ScreenToClient
GetClassInfoW
RegisterClassW
UnregisterClassW
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
PtInRect
GetWindow
wsprintfW
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
MessageBoxW
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
OpenClipboard
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
RedrawWindow
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetFocus
LoadImageW
LoadBitmapW
DrawFocusRect
LoadCursorW
GetWindowRect
SetWindowLongW
SetCursor
IsWindowVisible
ReleaseDC
GetDC
ClientToScreen
FrameRect
FillRect
CopyRect
GetParent
PostMessageW
IsWindow
GetSysColor
LoadIconW
EnableWindow
InvalidateRect
GetClientRect
IsIconic
SendMessageW
DrawIcon
GetSystemMetrics
PostQuitMessage

gdi32

GetDeviceCaps
MoveToEx
LineTo
SetMapMode
SetBkMode
RestoreDC
SaveDC
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetStockObject
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
Escape
ExtTextOutW
TextOutW
BitBlt
RectVisible
PtVisible
CreateCompatibleBitmap
RoundRect
CreateCompatibleDC
GetTextExtentPoint32W
SelectObject
GetObjectW
CreateFontIndirectW
GetPixel
Rectangle
CreateSolidBrush
ExtCreatePen
CreatePen
DeleteObject

msimg32

GradientFill
TransparentBlt

comdlg32

GetOpenFileNameW
GetSaveFileNameW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
RegQueryValueW
RegCreateKeyExW
RegSetValueExW
IsTextUnicode

shell32

ShellExecuteW
SHGetSpecialFolderPathW

comctl32

ord17
_TrackMouseEvent

shlwapi

StrStrIW
PathFindExtensionW
PathFindFileNameW
PathFileExistsW

oleaut32

VariantClear
VariantChangeType
VariantInit

Sections

.text
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5360fada4a2f1cdf818c8bd248c34981

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

Sections

.text Size: 244KB - Virtual size: 240KB

.rdata Size: 60KB - Virtual size: 57KB

.data Size: 16KB - Virtual size: 31KB

.rsrc Size: 156KB - Virtual size: 152KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 244KB - Virtual size: 240KB

.rdata
Size: 60KB - Virtual size: 57KB

.data
Size: 16KB - Virtual size: 31KB

.rsrc
Size: 156KB - Virtual size: 152KB

.rmnet
Size: 60KB - Virtual size: 60KB