44b1ddbaad365dcd28357e0fc88c2e360d9a3f5a6d7010cd472afaf03777c3f2

Sharing

Copy URL Twitter E-mail

General

Target

44b1ddbaad365dcd28357e0fc88c2e360d9a3f5a6d7010cd472afaf03777c3f2
Size

2.4MB
MD5

fe1b4ae20ccd282d662931eceec941ba
SHA1

af1e00d87ad4a340fa5d361974d29f57ee26591e
SHA256

44b1ddbaad365dcd28357e0fc88c2e360d9a3f5a6d7010cd472afaf03777c3f2
SHA512

f9fe6bb714026e13c92fde2081262530463b381136f12f84b9b5d3f67d12c79b29c37b051d49e85520bf3dcc4b3bf5228874f7127bced59ab0b576b011601921
SSDEEP

24576:6T5bOyLVcbeyFEWYgQZqRTqjOe9t++LgUSa3vIAKQYxYJK:OdOyB0eyFE4gqReMUSagYJK

Score

N/A

Malware Config

Signatures

Files

44b1ddbaad365dcd28357e0fc88c2e360d9a3f5a6d7010cd472afaf03777c3f2
.exe windows x86

63e09eb20327ec7fa92b8fecf7ef9a5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

gdiplus

GdipCreateFromHDC
GdipLoadImageFromFileICM
GdipLoadImageFromFile
GdipGetImageHeight
GdipGetImageWidth
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipFree
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdipDrawImageRectI
GdiplusStartup
GdipDeleteGraphics
GdiplusShutdown

kernel32

TlsSetValue
LocalReAlloc
TlsFree
GetCPInfo
GetOEMCP
LocalFileTimeToFileTime
SetFileTime
GetFileTime
SetErrorMode
WritePrivateProfileStringA
GetTempFileNameA
GetDiskFreeSpaceA
lstrcpynW
ExitProcess
RtlUnwind
HeapFree
HeapAlloc
VirtualProtect
VirtualAlloc
TlsAlloc
VirtualQuery
GetStartupInfoA
GetCommandLineA
HeapReAlloc
SetStdHandle
GetFileType
ExitThread
CreateThread
TerminateProcess
HeapSize
QueryPerformanceCounter
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStringTypeA
GetStringTypeW
SetHandleCount
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
GlobalFlags
DeleteCriticalSection
InitializeCriticalSection
RaiseException
InterlockedIncrement
FindNextFileA
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
CreateEventA
SetEvent
SetThreadPriority
GetFullPathNameA
FindFirstFileA
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
MoveFileA
InterlockedDecrement
CopyFileA
GlobalSize
GlobalAlloc
FormatMessageA
LocalFree
MulDiv
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
lstrcpynA
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
lstrcatA
WinExec
lstrcpyA
GetWindowsDirectoryA
WriteFile
GlobalMemoryStatus
DosDateTimeToFileTime
FileTimeToLocalFileTime
GetVolumeInformationA
DeviceIoControl
SetFilePointer
ReadFile
GetLogicalDrives
GetDriveTypeA
CreateFileA
TerminateThread
FileTimeToSystemTime
SystemTimeToFileTime
GetTempPathA
lstrlenA
lstrcmpiA
GetStringTypeExA
lstrlenW
CompareStringA
CompareStringW
MultiByteToWideChar
GetVersion
OutputDebugStringA
ReadProcessMemory
SuspendThread
GetThreadContext
ResumeThread
GetFileAttributesA
LoadLibraryA
GetProcAddress
GetLastError
SetLastError
GetCurrentDirectoryA
GetEnvironmentVariableA
FreeLibrary
GetDiskFreeSpaceExA
GetCurrentThread
CreateProcessA
WaitForSingleObject
CloseHandle
GetCurrentProcess
GetCurrentProcessId
CreateDirectoryA
GetLocalTime
GetModuleFileNameA
GetTickCount
SetFileAttributesA
DeleteFileA
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVersionExA
GetSystemInfo

user32

SetWindowRgn
GetMenuItemInfoA
InSendMessage
WindowFromPoint
CharNextA
SetRect
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
PostThreadMessageA
SendNotifyMessageA
BringWindowToTop
SetMenu
TranslateAcceleratorA
GetMessageA
ValidateRect
GetMenuStringA
AppendMenuA
InsertMenuA
RemoveMenu
EndPaint
BeginPaint
ClientToScreen
FillRect
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
WinHelpA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetFocus
SetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
MapWindowPoints
ScrollWindow
MessageBoxA
IsRectEmpty
GetKeyState
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
GetMenu
GetMenuItemID
GetMenuItemCount
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetClassInfoA
RegisterClassA
UnregisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetActiveWindow
SetActiveWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
KillTimer
GetDC
InflateRect
CopyIcon
GetSysColor
GetMessagePos
DestroyCursor
DrawFocusRect
DrawIcon
GetIconInfo
GetAsyncKeyState
wsprintfA
SetWindowLongA
ScreenToClient
SetCursor
SetClassLongA
GetSysColorBrush
LoadCursorA
GetWindow
GetDlgItem
GetDesktopWindow
ReleaseDC
GetWindowDC
LoadMenuA
GetSubMenu
GetCursorPos
LoadImageA
DrawIconEx
DestroyIcon
CharUpperA
FindWindowA
RegisterClipboardFormatA
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
PostQuitMessage
DestroyMenu
UnpackDDElParam
SetTimer
LoadIconA
IsWindowVisible
PeekMessageA
TranslateMessage
DispatchMessageA
IsWindow
GetParent
SetCapture
GetCapture
InvalidateRect
PostMessageA
PtInRect
ReleaseCapture
ReuseDDElParam
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
TrackPopupMenu
SetRectEmpty
CopyRect
UpdateWindow
GetWindowRect
LoadBitmapA
GetWindowLongA
SendMessageA
EnableWindow
GetClientRect
EqualRect
GetMenuState

gdi32

ExtSelectClipRgn
DeleteDC
CreatePatternBrush
GetDeviceCaps
CreateSolidBrush
CreateRectRgnIndirect
GetMapMode
CopyMetaFileA
CreateEllipticRgn
LPtoDP
ScaleWindowExtEx
GetWindowOrgEx
GetBkColor
GetTextColor
GetRgnBox
DeleteObject
SetMapMode
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetPixel
GetWindowExtEx
GetViewportExtEx
GetClipBox
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetTextExtentPoint32A
StretchBlt
CreateFontA
SetTextColor
GetStockObject
CreateCompatibleBitmap
CreateFontIndirectA
SelectObject
CreateCompatibleDC
GetObjectA
Ellipse
BitBlt
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor

comdlg32

GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

SetFileSecurityA
RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegSetValueA
RegOpenKeyA
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyExA
RegSetValueExA
GetFileSecurityA
GetUserNameA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
DragFinish
ShellExecuteA
DragQueryFileA

comctl32

ord17
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Draw
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_GetImageInfo

shlwapi

PathIsUNCA
PathFindExtensionA
PathStripToRootA
PathFindFileNameA

oledlg

ord8

ole32

CoGetClassObject
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
OleGetClipboard
OleSetMenuDescriptor
CreateBindCtx
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
StgIsStorageFile
StgOpenStorage
CoTaskMemFree
CreateFileMoniker
StgCreateDocfile
GetHGlobalFromILockBytes
StgOpenStorageOnILockBytes
CreateGenericComposite
CreateItemMoniker
OleGetIconOfClass
OleLoad
OleCreateFromFile
OleCreateStaticFromData
OleSetContainedObject
OleLockRunning
OleSaveToStream
WriteClassStm
OleSave
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoDisconnectObject
CreateStreamOnHGlobal
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CLSIDFromProgID
OleDuplicateData
ReleaseStgMedium
CoTaskMemAlloc

oleaut32

SysStringLen
VariantCopy
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SystemTimeToVariantTime
SysAllocStringByteLen
SafeArrayDestroy
SysFreeString
SysAllocString
OleCreateFontIndirect
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear

urlmon

URLDownloadToFileA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 696KB - Virtual size: 694KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 651KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.6MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63e09eb20327ec7fa92b8fecf7ef9a5f

Headers

File Characteristics

Imports

winmm

gdiplus

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

version

Sections

.text Size: 696KB - Virtual size: 694KB

.rdata Size: 140KB - Virtual size: 136KB

.data Size: 12KB - Virtual size: 651KB

.rsrc Size: 1.6MB - Virtual size: 1.5MB

.text
Size: 696KB - Virtual size: 694KB

.rdata
Size: 140KB - Virtual size: 136KB

.data
Size: 12KB - Virtual size: 651KB

.rsrc
Size: 1.6MB - Virtual size: 1.5MB