ee3bfd7c338f18bd533d69bcc22cd3b90fc820329e801dbc69bca14b4d075e81

Sharing

Copy URL

Twitter E-mail

General

Target

ee3bfd7c338f18bd533d69bcc22cd3b90fc820329e801dbc69bca14b4d075e81
Size

320KB
MD5

b2b6a6af13e3a7a6c530a3cbc3da0cdf
SHA1

943f9711da207485b7e209d16cda1a39baa41a83
SHA256

ee3bfd7c338f18bd533d69bcc22cd3b90fc820329e801dbc69bca14b4d075e81
SHA512

f1cb771a99336ecb6d2b3938cabb3bff7a1c3c9b038a95ea9f77dbc07588418d951d6ebad117e09c8a6c7b6aa9592cafdba55d24ee0ebfa865dedba0bf84e07c
SSDEEP

6144:rsLQwbzjb4Q+Qe5IFVVGzfKByab9lwA9Z0fjo:2QwbXb4QE5uatarwA9Z08

Score

N/A

Malware Config

Signatures

Files

ee3bfd7c338f18bd533d69bcc22cd3b90fc820329e801dbc69bca14b4d075e81
.exe windows x86

5df935cd416e7999438dfda1a8981e8b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
HeapFree
HeapAlloc
GetProcessHeap
InitializeCriticalSection
DeleteCriticalSection
GetLastError
FreeLibrary
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
FileTimeToSystemTime
WaitForSingleObject
CopyFileW
InterlockedCompareExchange
LoadLibraryA
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
InterlockedExchange
GetACP
GetLocaleInfoA
RtlUnwind
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoW
HeapDestroy
HeapCreate
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetCPInfo
LCMapStringA
LCMapStringW
WriteFile
GetStdHandle
GetModuleFileNameA
ReadFile
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
HeapSize
ExitProcess
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
SetStdHandle
MulDiv
CreateDirectoryW
GetLocalTime
GetModuleFileNameW
CreateFileW
GetFileSize
CloseHandle
GlobalAlloc
GlobalLock
GlobalFree
GetConsoleCP
GetConsoleMode
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
GlobalUnlock
lstrcpyW
lstrcmpiW
GetFileAttributesW
Sleep
GetTickCount
GetVersionExA
FindFirstFileW
GetFullPathNameW
FindClose
FindNextFileW
CreateFileA
CreateThread
SetLastError
CompareStringW
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
OutputDebugStringW
DebugBreak
InterlockedIncrement
lstrlenA
lstrcmpW
GetThreadLocale
GetStringTypeExW
MultiByteToWideChar
InterlockedDecrement
GetVersionExW
GetModuleHandleA
GetProcAddress
GetCurrentThreadId
GetCurrentProcess
FlushInstructionCache
LeaveCriticalSection
EnterCriticalSection
RaiseException
GetOEMCP
lstrlenW

user32

UnregisterClassA
IsWindowEnabled
SetTimer
UpdateWindow
GetWindowDC
TrackPopupMenu
AdjustWindowRectEx
GetMenu
IsDialogMessageW
MonitorFromPoint
GetMonitorInfoW
InsertMenuW
LoadImageW
LoadBitmapW
TranslateMessage
FillRect
GetFocus
ClientToScreen
GetClassNameW
CreatePopupMenu
GetWindowTextW
PostMessageW
CreateDialogParamW
FindWindowExW
IsWindowVisible
GetCursorPos
SetCursor
IntersectRect
CharLowerW
GetWindowTextLengthW
DialogBoxParamW
GetClassInfoExW
IsWindow
KillTimer
CharUpperW
SetRect
SetDlgItemInt
GetDlgItemInt
ScreenToClient
GetSystemMenu
DestroyMenu
DeleteMenu
CharNextW
LoadStringW
GetWindow
MapWindowPoints
MessageBoxW
GetDlgItem
SetDlgItemTextW
GetDlgItemTextW
SetFocus
EnableWindow
SetWindowTextW
wvsprintfW
EndDialog
SystemParametersInfoW
LoadCursorW
RegisterClassExW
GetMessageW
DispatchMessageW
PeekMessageW
GetCapture
PostQuitMessage
GetActiveWindow
UnregisterClassW
GetSystemMetrics
RegisterWindowMessageW
ReleaseDC
GetDC
EndPaint
BeginPaint
DefWindowProcW
GetSysColor
SendMessageW
OffsetRect
InflateRect
PtInRect
CopyRect
SetWindowPos
GetDlgCtrlID
GetParent
SetCapture
ShowWindow
InvalidateRect
GetClientRect
GetWindowRect
MoveWindow
DestroyWindow
CreateWindowExW
GetWindowLongW
SetWindowLongW
CallWindowProcW
DrawEdge
DrawTextW
DrawFocusRect
FrameRect
ReleaseCapture
SetRectEmpty

gdi32

CreateCompatibleBitmap
EnumFontFamiliesExW
BitBlt
DPtoLP
CreateCompatibleDC
GetStockObject
DeleteDC
CreateFontIndirectW
GetDeviceCaps
SelectPalette
RealizePalette
SetBkColor
SetBkMode
SetPolyFillMode
SetTextColor
Rectangle
ExtTextOutW
GetTextExtentPoint32W
CreatePalette
DeleteObject
SelectObject
Polygon
GetObjectW
CreateSolidBrush
CreatePen

comdlg32

GetSaveFileNameW
GetOpenFileNameW
ChooseColorW

advapi32

RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW

shell32

DragFinish
DragAcceptFiles
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteW
DragQueryFileW

ole32

CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CoUninitialize
CreateStreamOnHGlobal
CoTaskMemRealloc
CoInitialize

oleaut32

SysAllocStringLen
VarUI4FromStr

comctl32

_TrackMouseEvent
ImageList_Create
ImageList_Add
ImageList_AddMasked
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_Destroy
ImageList_Draw
InitCommonControlsEx

gdiplus

GdipSetImageAttributesColorMatrix
GdipSetTextRenderingHint
GdipResetWorldTransform
GdipTranslateWorldTransform
GdipRotateWorldTransform
GdipDrawLine
GdipDrawImageRectRect
GdipMeasureString
GdipDrawLineI
GdipDrawEllipseI
GdipSetPropertyItem
GdipSaveImageToStream
GdiplusShutdown
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipSetImagePalette
GdipGetImagePixelFormat
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipSetClipRect
GdipDrawImageRect
GdipImageRotateFlip
GdipGetImageThumbnail
GdipDrawRectangle
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipBitmapSetResolution
GdipCreateHBITMAPFromBitmap
GdipSaveImageToFile
GdipCreateBitmapFromFile
GdipGetImageVerticalResolution
GdipGetImageHorizontalResolution
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDeletePen
GdipCreatePen1
GdipSetInterpolationMode
GdipDrawImageRectI
GdipFillRectangleI
GdipSetSmoothingMode
GdipGetImageHeight
GdipGetImageWidth
GdipLoadImageFromFileICM
GdipLoadImageFromFile
GdipCloneImage
GdipCloneBrush
GdipDrawImageI
GdipDrawString
GdipFillRectangle
GdipGraphicsClear
GdipGetImageGraphicsContext
GdipCreateFromHDC
GdipCreateSolidFill
GdipCreateBitmapFromScan0
GdipDisposeImage
GdipDeleteFont
GdipCreateFont
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipCreateFontFamilyFromName
GdipDeleteGraphics
GdipDeleteBrush
GdipAlloc
GdipFree
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipGetAllPropertyItems
GdipGetPropertySize
GdipCreateBitmapFromFileICM
GdiplusStartup

Sections

.text
Size: 208KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5df935cd416e7999438dfda1a8981e8b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

gdiplus

Sections

.text Size: 208KB - Virtual size: 206KB

.rdata Size: 52KB - Virtual size: 50KB

.data Size: 12KB - Virtual size: 16KB

.rsrc Size: 44KB - Virtual size: 40KB

.text
Size: 208KB - Virtual size: 206KB

.rdata
Size: 52KB - Virtual size: 50KB

.data
Size: 12KB - Virtual size: 16KB

.rsrc
Size: 44KB - Virtual size: 40KB