d078870493022685025e69eb247ebd07b8fdab09e15cd6b4ce38b022a9883d5c

Sharing

Copy URL

Twitter E-mail

General

Target

d078870493022685025e69eb247ebd07b8fdab09e15cd6b4ce38b022a9883d5c
Size

881KB
MD5

535bf92fc36d15e1efad72df8f841fa6
SHA1

a9d5a3fb2fbac952dce815eb1f11866092d82667
SHA256

d078870493022685025e69eb247ebd07b8fdab09e15cd6b4ce38b022a9883d5c
SHA512

32f345a47fe049902f9d6d759940d69983aafcdcc055cde9cf444fe35c9f74903840061b6eb1c4b9473e2138d5d299844372c2e52029f75179803e8d99fdd728
SSDEEP

12288:zaBStl2ur7lYLD4eR48zJCBxxWKqDEHQf/XRP9w9C2wg/dw3eVpTfmh6LcZx38:zaU3Jy34D8zJCBxxWzJw9T1tTQF4

Score

N/A

Malware Config

Signatures

Files

d078870493022685025e69eb247ebd07b8fdab09e15cd6b4ce38b022a9883d5c
.exe windows x86

1d79707b8b5aee7237899f27c9e0246e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

urlmon

URLDownloadToCacheFileW

wininet

InternetOpenW
InternetCloseHandle
InternetConnectW
InternetReadFile
HttpOpenRequestW
HttpSendRequestW
HttpQueryInfoW
InternetCrackUrlW

kernel32

FindResourceW
FindResourceExW
MultiByteToWideChar
GetProcAddress
GetModuleHandleW
WideCharToMultiByte
GetFileSize
GetFileSizeEx
WriteFile
ReadFile
FlushFileBuffers
SetEndOfFile
SetFilePointer
GetSystemTimeAsFileTime
CreateDirectoryW
CreateFileW
GetFileAttributesW
OpenProcess
WaitForSingleObject
FindClose
OpenMutexW
GetModuleFileNameW
FindFirstFileW
FindNextFileW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
LocalFree
GetCurrentProcess
GetVersion
FreeLibrary
LockFile
UnlockFile
LockFileEx
GetSystemTime
TlsAlloc
TlsGetValue
TlsSetValue
LoadLibraryA
LoadLibraryW
GetTempPathA
GetTempPathW
GetFullPathNameA
GetFullPathNameW
CreateFileA
GetFileAttributesA
DeleteFileA
DeleteFileW
AreFileApisANSI
GetVersionExW
InterlockedIncrement
InterlockedDecrement
GlobalAlloc
GlobalLock
GlobalUnlock
FlushInstructionCache
OutputDebugStringW
GetExitCodeThread
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
MulDiv
lstrcmpW
ReleaseMutex
FileTimeToSystemTime
DosDateTimeToFileTime
GlobalHandle
GlobalFree
lstrcmpiW
LoadLibraryExW
GetCommandLineW
ExitThread
CreateThread
GetModuleHandleExW
ExitProcess
IsDebuggerPresent
RtlUnwind
GetLocalTime
GetStringTypeW
EncodePointer
DecodePointer
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
InterlockedCompareExchange
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
CreateMutexW
CloseHandle
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetStdHandle
IsValidCodePage
GetACP
GetOEMCP
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SizeofResource
LoadResource
Sleep
InitializeCriticalSectionAndSpinCount
GetLastError
GetCurrentThreadId
GetCurrentProcessId
LockResource
GetFileType
SetFilePointerEx
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
WriteConsoleW
ReadConsoleW
SetEnvironmentVariableA
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
TlsFree
GetStartupInfoW
RaiseException

user32

InvalidateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
DestroyAcceleratorTable
CreateAcceleratorTableW
SetTimer
ReleaseCapture
SetCapture
SetWindowTextW
InvalidateRgn
GetClientRect
ClientToScreen
ScreenToClient
GetSysColor
FillRect
GetWindowLongW
SetWindowLongW
GetClassNameW
GetWindow
LoadCursorW
GetWindowTextLengthW
RedrawWindow
GetFocus
CharNextW
SetWindowContextHelpId
EndDialog
SetWindowPos
MoveWindow
DestroyWindow
IsChild
IsWindow
CreateWindowExW
GetClassInfoExW
RegisterClassExW
CallWindowProcW
DefWindowProcW
RegisterWindowMessageW
GetParent
GetDesktopWindow
GetWindowTextW
SetFocus
PostMessageW
SendMessageW
UnregisterClassW
MapDialogRect
DialogBoxIndirectParamW
GetActiveWindow
SendDlgItemMessageW
GetDlgItem

gdi32

CreateCompatibleDC
CreateSolidBrush
DeleteDC
CreateCompatibleBitmap
GetDeviceCaps
GetStockObject
SelectObject
GetObjectW
DeleteObject
BitBlt

advapi32

RegCloseKey
RegQueryInfoKeyW
RegDeleteValueW
RegEnumKeyExW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegEnumValueW
RegOpenKeyExW
RegQueryValueExW

shell32

SHFileOperationW
SHGetFolderPathW

ole32

CoGetClassObject
CoCreateInstance
CreateStreamOnHGlobal
CLSIDFromString
CLSIDFromProgID
StringFromGUID2
CoTaskMemAlloc
OleInitialize
OleUninitialize
OleLockRunning
CoInitialize
CoUninitialize
CoTaskMemRealloc
CoTaskMemFree

oleaut32

VarUI4FromStr
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
VariantClear
VariantInit
SysStringLen
SysAllocStringLen
SysAllocString
SysFreeString

shlwapi

UrlEscapeW

comctl32

InitCommonControlsEx

Sections

.text
Size: 661KB - Virtual size: 661KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 13KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1d79707b8b5aee7237899f27c9e0246e

Headers

DLL Characteristics

File Characteristics

Imports

version

urlmon

wininet

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

Sections

.text Size: 661KB - Virtual size: 661KB

.rdata Size: 131KB - Virtual size: 130KB

.data Size: 13KB - Virtual size: 22KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 74KB - Virtual size: 76KB

.text
Size: 661KB - Virtual size: 661KB

.rdata
Size: 131KB - Virtual size: 130KB

.data
Size: 13KB - Virtual size: 22KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 74KB - Virtual size: 76KB