4badfd478caa6e0f8fe8a3dcd232dce1e6093dcd7f950b08df1b8ea85c4b841d

Sharing

Copy URL Twitter E-mail

General

Target

4badfd478caa6e0f8fe8a3dcd232dce1e6093dcd7f950b08df1b8ea85c4b841d
Size

2.4MB
MD5

374edcff3fdad7a0d53150645503e915
SHA1

4e03bf678cb1929b1084b82159a4913c4d1f9909
SHA256

4badfd478caa6e0f8fe8a3dcd232dce1e6093dcd7f950b08df1b8ea85c4b841d
SHA512

3eee1bf61367341bdf6c05d2a14110c47e11a9f9d28f7d2867c1e12c1d05d51f9ea9dadadc373ea9395bab549bcd3091b53e14f7af31d3f2e3a91ed24ad90ff0
SSDEEP

49152:cvgy1NVO0nZSqaID8xA6HZIQ+++AdDb1akM:by1rOiSqaID8tWef1vM

Score

N/A

Malware Config

Signatures

Files

4badfd478caa6e0f8fe8a3dcd232dce1e6093dcd7f950b08df1b8ea85c4b841d
.exe windows x86

61ab24f9ca77f9e7ede9c1875b932563

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCPInfo
GetOEMCP
SetErrorMode
GetTickCount
VirtualProtect
GetSystemInfo
VirtualQuery
HeapReAlloc
GetTimeFormatA
GetDateFormatA
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCommandLineA
GetStartupInfoA
GetFileType
ExitProcess
SetConsoleCtrlHandler
RtlUnwind
WriteConsoleW
GetStdHandle
GetConsoleCP
GlobalReAlloc
RaiseException
SetStdHandle
HeapDestroy
HeapCreate
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
LoadLibraryW
WriteConsoleA
GetConsoleOutputCP
SetEnvironmentVariableA
TlsGetValue
LocalAlloc
GetCurrentDirectoryA
GlobalFlags
GetFileTime
GetFileAttributesA
GetFullPathNameA
GetVolumeInformationA
DuplicateHandle
GetThreadLocale
SetEndOfFile
UnlockFile
LockFile
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetVersionExA
FormatMessageA
MulDiv
GetModuleFileNameW
FreeResource
GlobalFree
WritePrivateProfileStringA
GlobalAddAtomA
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
GlobalAlloc
GlobalDeleteAtom
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
VirtualAlloc
VirtualFree
SetFilePointer
InterlockedIncrement
CreateThread
WaitForSingleObject
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
FlushFileBuffers
GlobalUnlock
WriteFile
GlobalLock
LocalFree
InterlockedDecrement
lstrcpynA
GetModuleHandleA
SetLastError
LoadLibraryA
GetProcAddress
FreeLibrary
lstrcpyA
GetACP
CloseHandle
LockResource
HeapSize
GetLogicalDriveStringsA
ReadFile
SizeofResource
GetDriveTypeA
GetProcessHeap
HeapFree
HeapAlloc
LoadResource
FindResourceA
GetFileSize
CreateFileA
GetVersion
CompareStringA
IsDebuggerPresent
CreateMutexA
GetModuleFileNameA
GetLastError
InterlockedExchange
lstrlenW
MultiByteToWideChar
CompareStringW
Sleep
WideCharToMultiByte
GetPrivateProfileIntA
GetSystemDefaultLCID
GetCurrentProcess
lstrlenA
SetPriorityClass
GetConsoleMode

user32

UnregisterClassA
RegisterClipboardFormatA
PostThreadMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
GetMenu
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
GetScrollInfo
SetScrollInfo
CallWindowProcA
SetWindowLongA
GetWindowPlacement
IntersectRect
EndPaint
BeginPaint
GetWindowTextLengthA
GetWindowTextA
SetFocus
GetMenuItemID
UnhookWindowsHookEx
SetActiveWindow
MessageBeep
DestroyWindow
GetDlgItem
EndDialog
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
IsWindowVisible
GetKeyState
PeekMessageA
ValidateRect
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
GetWindowThreadProcessId
GetLastActivePopup
IsWindowEnabled
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
MessageBoxA
SetWindowRgn
GetWindowDC
GetSysColorBrush
IsRectEmpty
DrawTextA
GrayStringA
DrawTextExA
TabbedTextOutA
BringWindowToTop
IsWindow
RegisterWindowMessageA
SetRect
RedrawWindow
ShowScrollBar
SetCapture
ReleaseCapture
ChangeDisplaySettingsA
GetSystemMetrics
CharUpperA
SetForegroundWindow
ScreenToClient
KillTimer
GetFocus
PtInRect
DefWindowProcA
GetDesktopWindow
GetClassInfoA
SystemParametersInfoA
LoadCursorA
DrawFrameControl
GetNextDlgTabItem
ClientToScreen
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
CharNextA
ShowWindow
MoveWindow
SetCursor
FillRect
GetSubMenu
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
CreateDialogIndirectParamA
GetDlgCtrlID
EnableWindow
UpdateWindow
LoadImageA
GetMenuItemCount
AppendMenuA
CreatePopupMenu
GetCursorPos
ReleaseDC
LockWindowUpdate
GetDC
SendMessageA
GetClientRect
DrawIcon
LoadIconA
LoadBitmapA
DeleteMenu
IsIconic
GetWindowRect
SetTimer
CopyRect
DestroyIcon
DestroyMenu
PostMessageA
GetActiveWindow
FrameRect
GetSysColor
DestroyCursor
GetWindowLongA
InvalidateRect
TrackPopupMenuEx
OffsetRect
DrawStateA
InflateRect
DrawFocusRect
WindowFromPoint
GetParent

gdi32

GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
GetMapMode
DPtoLP
GetRgnBox
MoveToEx
LineTo
GetClipBox
SetMapMode
SetROP2
SetBkMode
RestoreDC
SaveDC
CreateRectRgnIndirect
GetBitmapBits
GetDIBits
CombineRgn
GetROP2
Polyline
CreateSolidBrush
CreateRectRgn
GetCurrentObject
PtVisible
Escape
RectVisible
ExtTextOutA
TextOutA
GetTextExtentPoint32A
CreateFontIndirectA
Rectangle
GetBkColor
GetTextColor
BitBlt
SetTextColor
SetBkColor
CreateBitmap
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectA
GetStockObject
CreateFontA
DeleteObject
CreatePen
CreateDCA
DeleteDC
GetDeviceCaps

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyA
RegOpenKeyA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegCloseKey

shell32

SHBrowseForFolderA
ShellExecuteExA
SHGetPathFromIDListA

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathFindFileNameA
PathStripToRootA
PathIsUNCA
PathFindExtensionA

ws2_32

WSACleanup
WSAStartup

oledlg

ord8

ole32

CLSIDFromProgID
CLSIDFromString
CoTaskMemFree
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
OleRun
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoTaskMemAlloc
CoCreateInstance
CoInitialize
CoUninitialize
CoRevokeClassObject

oleaut32

VariantCopy
SysAllocStringByteLen
SafeArrayDestroy
VariantInit
SysStringByteLen
SysFreeString
SafeArrayGetUBound
SysAllocString
VariantChangeType
SysStringLen
SysAllocStringLen
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
GetErrorInfo
VariantClear

winmm

waveOutPrepareHeader
waveOutOpen
waveOutClose
waveOutWrite
waveOutUnprepareHeader

d3d9

Direct3DCreate9

ddraw

DirectDrawCreateEx

dbghelp

MakeSureDirectoryPathExists

intf

ord46
ord1
ord9
ord4
ord2

Sections

.rodata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 744KB - Virtual size: 743KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 180KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 285KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

..
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

61ab24f9ca77f9e7ede9c1875b932563

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ws2_32

oledlg

ole32

oleaut32

winmm

d3d9

ddraw

dbghelp

intf

Sections

.rodata Size: 12KB - Virtual size: 9KB

.text Size: 744KB - Virtual size: 743KB

.rdata Size: 180KB - Virtual size: 177KB

.data Size: 20KB - Virtual size: 285KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.. Size: 24KB - Virtual size: 24KB

.rodata
Size: 12KB - Virtual size: 9KB

.text
Size: 744KB - Virtual size: 743KB

.rdata
Size: 180KB - Virtual size: 177KB

.data
Size: 20KB - Virtual size: 285KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

..
Size: 24KB - Virtual size: 24KB