5a5706b07bfda32066f7bbd89b986ed6016635b52b04292756c4043ca8af65df

Sharing

Copy URL

Twitter E-mail

General

Target

5a5706b07bfda32066f7bbd89b986ed6016635b52b04292756c4043ca8af65df
Size

1.2MB
MD5

1687a6ed6bd0188373ed7cb01320addb
SHA1

334325beba93ab3270fb225b07dd6394dfa30056
SHA256

5a5706b07bfda32066f7bbd89b986ed6016635b52b04292756c4043ca8af65df
SHA512

26c9ad9ab9fe32bfebea061a3595cfb80824d854828f7d2ee00933c3028846f9d4b2e667133ccbb55b40a984a633772b03d5e2e25cbe48178a0797c656ef733e
SSDEEP

24576:Z/m5HfmQjwOFB+f6iMUfdFfE0YH8N4I0i7vXM3+63TXe25GFcA:ifmQjwcUfdFfEt3Y7vX/CTtGFJ

Score

N/A

Malware Config

Signatures

Files

5a5706b07bfda32066f7bbd89b986ed6016635b52b04292756c4043ca8af65df
.exe windows x86

372ea46f376a043352d40ddd6eac1248

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalReAlloc
TlsFree
GlobalFlags
GetCPInfo
GetOEMCP
SetErrorMode
GetCurrentDirectoryA
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
VirtualQuery
RtlUnwind
GetSystemTimeAsFileTime
TerminateProcess
GetTimeFormatA
GetDateFormatA
GetStartupInfoA
GetCommandLineA
ExitThread
CreateThread
SetEnvironmentVariableA
HeapReAlloc
HeapSize
TlsSetValue
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
IsBadReadPtr
IsBadCodePtr
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
SetStdHandle
GetLocaleInfoW
GetProcessHeap
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GetFileTime
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetUserDefaultLCID
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
UnlockFile
LockFile
FlushFileBuffers
lstrcpyA
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringA
InterlockedIncrement
InterlockedDecrement
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
FreeResource
SetLastError
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
SetVolumeLabelA
GetDiskFreeSpaceA
GetDriveTypeA
MoveFileA
SetEndOfFile
SetFileAttributesA
SetFilePointer
QueryPerformanceCounter
QueryPerformanceFrequency
CreateDirectoryA
GetFileAttributesA
GetModuleFileNameA
GetFullPathNameA
WaitForMultipleObjects
CreateEventA
SetEvent
WaitForSingleObject
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
CreateProcessA
GetSystemDirectoryA
LoadLibraryA
FreeLibrary
GetFileSize
CopyFileA
CreateMutexA
SetCurrentDirectoryA
ExitProcess
FindResourceExA
ReleaseMutex
OutputDebugStringA
GetSystemInfo
GlobalMemoryStatusEx
GlobalMemoryStatus
Sleep
GetCurrentProcessId
GetLocalTime
WriteFile
CreateFileA
ReadFile
CloseHandle
DeleteFileA
FindFirstFileA
FindNextFileA
FindClose
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleHandleA
GetProcAddress
MulDiv
GetTickCount
FindResourceA
LoadResource
LockResource
SizeofResource
CompareStringW
CompareStringA
lstrlenA
lstrlenW
lstrcmpiA
GetVersion
DeleteCriticalSection
InitializeCriticalSection
GetLastError
RaiseException
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetSystemTime

user32

PostThreadMessageA
CheckDlgButton
RegisterWindowMessageA
WinHelpA
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
MessageBoxA
GetKeyState
UpdateWindow
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
GetDlgCtrlID
CallWindowProcA
IntersectRect
GetWindowPlacement
GetWindow
GetActiveWindow
CreateDialogIndirectParamA
IsWindow
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
CharToOemBuffA
SetRectEmpty
LoadImageA
wsprintfA
wvsprintfA
MoveWindow
FrameRect
InflateRect
SetWindowRgn
CopyRect
SetWindowTextA
IsRectEmpty
LoadCursorA
GetSysColor
SetCapture
ReleaseCapture
SystemParametersInfoA
SetTimer
KillTimer
SetCursor
GetCursorPos
ScreenToClient
PtInRect
OffsetRect
EqualRect
GetDlgItem
ShowWindow
SetFocus
GetDC
GetDesktopWindow
GetWindowRect
ReleaseDC
SetActiveWindow
CharUpperA
MessageBeep
InvalidateRgn
CopyAcceleratorTableA
SetRect
DestroyMenu
DrawTextExA
GetSysColorBrush
SetWindowPos
OpenIcon
ClientToScreen
GetParent
CreateWindowExA
DefWindowProcA
PeekMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
SetForegroundWindow
LoadAcceleratorsA
GetSystemMetrics
GetWindowLongA
SetWindowLongA
LoadIconA
EnableWindow
IsWindowVisible
InvalidateRect
GetUpdateRect
GetClientRect
IsIconic
PostMessageA
SendMessageA
DrawIcon
UnregisterClassA
RegisterClipboardFormatA
GetNextDlgGroupItem
OemToCharBuffA
SetWindowContextHelpId
MapDialogRect
GetMessageA
ValidateRect
PostQuitMessage
CharNextA
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextA
TabbedTextOutA
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
IsDialogMessageA

gdi32

SaveDC
RestoreDC
SetBkMode
SetMapMode
GetViewportExtEx
GetWindowExtEx
PtVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
CreateBitmap
ScaleWindowExtEx
ExtSelectClipRgn
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetMapMode
GetRgnBox
SetBkColor
SetTextColor
GetClipBox
GetDIBits
FrameRgn
CreateRoundRectRgn
CreatePolygonRgn
GetStockObject
GetObjectA
RectVisible
SetDIBitsToDevice
StretchDIBits
CreateBrushIndirect
SelectClipRgn
CreateRectRgn
GetTextExtentPoint32A
CreateCompatibleDC
GetDeviceCaps
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
BitBlt
SetWindowExtEx
CreateSolidBrush
CreateFontA

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegDeleteValueA

shell32

ShellExecuteA

comctl32

ord17

shlwapi

PathIsUNCA
PathFindExtensionA
PathStripToRootA
PathFindFileNameA

oledlg

ord8

ole32

CoTaskMemAlloc
CLSIDFromString
CoDisconnectObject
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
CoRegisterMessageFilter
OleFlushClipboard
CoTaskMemFree
CoCreateInstance
CLSIDFromProgID
OleIsCurrentClipboard

oleaut32

SysAllocStringLen
VariantClear
VariantChangeType
OleCreateFontIndirect
SysFreeString
SysStringLen
SysAllocStringByteLen
VariantCopy
SysAllocString
SystemTimeToVariantTime
SafeArrayDestroy
LoadTypeLi
VariantInit

ws2_32

WSASocketA
gethostname
WSAEnumNetworkEvents
WSACreateEvent
WSAEventSelect
WSACloseEvent
ntohs
getservbyport
gethostbyaddr
getservbyname
accept
recv
shutdown
inet_addr
gethostbyname
inet_ntoa
sendto
connect
ioctlsocket
WSAAsyncSelect
setsockopt
send
WSAGetLastError
WSACleanup
closesocket
recvfrom
bind
htons
htonl
socket
WSAStartup

wininet

InternetCrackUrlA
InternetSetStatusCallback
HttpQueryInfoA
InternetSetOptionA
InternetOpenUrlA
InternetOpenA
InternetSetCookieA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
InternetReadFile
InternetCloseHandle

ddraw

DirectDrawCreate

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 672KB - Virtual size: 670KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.v-lizer
Size: 368KB - Virtual size: 368KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

372ea46f376a043352d40ddd6eac1248

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

wininet

ddraw

iphlpapi

Sections

.text Size: 672KB - Virtual size: 670KB

.rdata Size: 128KB - Virtual size: 125KB

.data Size: 20KB - Virtual size: 39KB

.v-lizer Size: 368KB - Virtual size: 368KB

.text
Size: 672KB - Virtual size: 670KB

.rdata
Size: 128KB - Virtual size: 125KB

.data
Size: 20KB - Virtual size: 39KB

.v-lizer
Size: 368KB - Virtual size: 368KB