8f49260175c9381ec02a30d5247edb64195fa9abb218d21ba21495d011cd7177

Sharing

Copy URL

Twitter E-mail

General

Target

8f49260175c9381ec02a30d5247edb64195fa9abb218d21ba21495d011cd7177
Size

974KB
MD5

9fa0616fab3b1f77c4691805ea4c9851
SHA1

c45c76eb56d6401e4be622eb44ddb40027eda4e2
SHA256

8f49260175c9381ec02a30d5247edb64195fa9abb218d21ba21495d011cd7177
SHA512

ed6f426170ab40888a27a1cebeb34a4ed08e2fa268ad06973812432d0dc75e6579295c14ef782310d72dd6277d7c5dbc2d2d47241da67749d626667ac8b39753
SSDEEP

24576:J6De7ZmJ8jWQFvF2u0jk6dUJ82MQPzB4OqPhtcFCcb60:wIMKj/FN2pjxd082ZOzZeFs0

Score

N/A

Malware Config

Signatures

Files

8f49260175c9381ec02a30d5247edb64195fa9abb218d21ba21495d011cd7177
.zip
QQ2.05.exe
.exe windows x86

d8aba9cf5a227c64eec024db7674d9ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
RtlUnwind
ExitThread
RaiseException
GetTimeZoneInformation
GetStartupInfoA
HeapReAlloc
HeapSize
SetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
IsBadWritePtr
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
WritePrivateProfileStringA
InterlockedExchange
SetErrorMode
GetFileTime
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
GlobalFlags
FindNextFileA
lstrcmpA
GetFullPathNameA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
GetThreadLocale
LocalAlloc
lstrcpynA
lstrlenA
InterlockedDecrement
InterlockedIncrement
GetVersion
lstrcatA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
MulDiv
GetModuleHandleA
SetLastError
OpenProcess
GetCommandLineA
ReadProcessMemory
Thread32First
Thread32Next
GetVersionExA
CreateToolhelp32Snapshot
Process32First
Process32Next
CreateProcessA
GetCurrentThreadId
CreateDirectoryA
SetFileAttributesA
FindClose
DeleteFileA
GetPrivateProfileIntA
GetSystemTime
GetPrivateProfileStringA
GetModuleFileNameA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
LocalFree
GetVolumeInformationA
GetComputerNameA
FormatMessageA
WideCharToMultiByte
MultiByteToWideChar
GetACP
GetLocalTime
GetCurrentProcess
SetPriorityClass
GlobalFree
LoadLibraryA
GetProcAddress
GlobalAlloc
GlobalLock
GlobalUnlock
GetFileAttributesA
RemoveDirectoryA
TerminateThread
InitializeCriticalSection
ReleaseSemaphore
CreateSemaphoreA
ResetEvent
SetEvent
CreateEventA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
GetFileSize
ReadFile
CreateFileW
GetLastError
FindResourceA
SizeofResource
LoadResource
LockResource
FreeLibrary
SetFilePointer
CreateMutexA
GetCurrentDirectoryA
CreateThread
WaitForSingleObject
GetCurrentThread
SetThreadPriority
GetThreadPriority
ReleaseMutex
Sleep
CloseHandle
CreateFileA
_llseek
SetHandleCount
WriteFile

user32

GetNextDlgGroupItem
GetDCEx
LockWindowUpdate
RegisterClipboardFormatA
SetParent
PostThreadMessageA
PostQuitMessage
CharNextA
GetDesktopWindow
LoadStringA
SetRectEmpty
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
CheckMenuItem
IsDialogMessageA
SetDlgItemTextA
CheckDlgButton
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetFocus
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetTopWindow
IsChild
GetCapture
WinHelpA
RegisterClassA
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
UnhookWindowsHookEx
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetWindow
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GrayStringA
TabbedTextOutA
GetWindowDC
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindowEnabled
EnumChildWindows
CharUpperA
GetWindowThreadProcessId
CopyAcceleratorTableA
GetCursor
mouse_event
GetSystemMenu
RegisterWindowMessageA
AppendMenuA
CreatePopupMenu
wsprintfA
SetCapture
ReleaseCapture
DefWindowProcA
BeginPaint
DrawTextA
EndPaint
LoadCursorA
CallWindowProcA
RegisterHotKey
IsWindowVisible
PtInRect
OemKeyScan
MapVirtualKeyA
keybd_event
GetDlgItemTextA
InvalidateRect
GetSysColor
UnregisterClassA
EnableWindow
GetClassInfoA
FillRect
GetWindowRect
GetClientRect
SetWindowTextA
GetDlgItem
MessageBoxA
GetPropA
FindWindowExA
GetClassNameA
ScreenToClient
FindWindowA
SetCursorPos
BringWindowToTop
GetForegroundWindow
MoveWindow
GetCursorPos
KillTimer
IsWindow
SetWindowLongA
LoadMenuA
LoadImageA
GetIconInfo
GetDC
ValidateRect
SetRect
GetSysColorBrush
MapDialogRect
CreateIconIndirect
ReleaseDC
DrawStateA
DrawFocusRect
FrameRect
OffsetRect
InflateRect
CopyRect
TrackPopupMenuEx
WindowFromPoint
GetActiveWindow
EnableMenuItem
SendMessageA
DispatchMessageA
TranslateMessage
PeekMessageA
EndDialog
GetWindowTextA
LoadIconA
SetWindowPos
SetPropA
SetForegroundWindow
ShowWindow
EnumWindows
GetSubMenu
GetMenu
SetTimer
GetSystemMetrics
DrawIcon
IsIconic
DialogBoxParamA
MessageBeep
PostMessageA
DestroyMenu
DestroyCursor
DestroyIcon
GetWindowLongA
GetNextDlgTabItem
GetParent
SetCursor
ClientToScreen
SetWindowContextHelpId
GetMessageA
AttachThreadInput
SetMenuItemBitmaps

gdi32

GetWindowExtEx
CreatePatternBrush
PtVisible
RectVisible
ExtTextOutA
Escape
StretchDIBits
GetCharWidthA
CreateFontA
GetMapMode
PatBlt
GetViewportExtEx
CombineRgn
CreateRectRgnIndirect
DPtoLP
GetTextColor
GetBkColor
GetTextMetricsA
LPtoDP
CreateRectRgn
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
SetRectRgn
CreateSolidBrush
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
RestoreDC
SaveDC
SetBkMode
CreateFontIndirectA
StretchBlt
Rectangle
CreatePen
GetBitmapBits
CreateDIBitmap
GetDeviceCaps
GetObjectA
GetPixel
SetPixel
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
DeleteObject
TextOutA
BitBlt
Ellipse
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
GetClipBox

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegCloseKey
RegCreateKeyA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
GetUserNameA

shell32

SHGetSpecialFolderPathA
Shell_NotifyIconA
ShellExecuteA
ShellExecuteExA

comctl32

_TrackMouseEvent
ord17

oledlg

ord8

ole32

OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoInitialize
CreateStreamOnHGlobal
CoUninitialize

olepro32

ord253
ord251

oleaut32

VariantInit
VariantClear
SysAllocStringLen
VariantChangeType
SysAllocString
VariantTimeToSystemTime
VariantCopy
SysStringLen
SysAllocStringByteLen
SysFreeString

winmm

PlaySoundA

wininet

InternetGetLastResponseInfoA
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetSetOptionExA
InternetCloseHandle
InternetOpenA
InternetCanonicalizeUrlA
InternetCrackUrlA

ws2_32

WSAStartup
WSACleanup
closesocket
shutdown
recv
send
socket
connect
gethostbyname
htons

shlwapi

PathFileExistsA

Sections

.text
Size: 964KB - Virtual size: 963KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 30.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8aba9cf5a227c64eec024db7674d9ea

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

winmm

wininet

ws2_32

shlwapi

Sections

.text Size: 964KB - Virtual size: 963KB

.rdata Size: 92KB - Virtual size: 89KB

.data Size: 76KB - Virtual size: 30.5MB

.rsrc Size: 1.0MB - Virtual size: 1.0MB

.text
Size: 964KB - Virtual size: 963KB

.rdata
Size: 92KB - Virtual size: 89KB

.data
Size: 76KB - Virtual size: 30.5MB

.rsrc
Size: 1.0MB - Virtual size: 1.0MB