d8d3616426f75d19f29b2e62830b8faf3d33ad99af7fa73573eb6e51e3e22674

Sharing

Copy URL Twitter E-mail

General

Target

d8d3616426f75d19f29b2e62830b8faf3d33ad99af7fa73573eb6e51e3e22674
Size

454KB
MD5

5ce5d035843d66af1cfd425972441f44
SHA1

3bac3fd8ec4ba364c29301678befcaed604a06ee
SHA256

d8d3616426f75d19f29b2e62830b8faf3d33ad99af7fa73573eb6e51e3e22674
SHA512

94a0c47a30de44d986ff28bcb637382d4c6b9df05633e0e3b41aa8a8d79dda909f34138c77204cce75f4394bacdf2625484ec5db65dee37a3207cc533135dfea
SSDEEP

6144:1qLadUrySPT/yw9b3/qx+0hiDWkJUySHoBFChTaWqIu8:ULPySPT35/qx+LDWkJUySoJg

Score

N/A

Malware Config

Signatures

Files

d8d3616426f75d19f29b2e62830b8faf3d33ad99af7fa73573eb6e51e3e22674
.exe windows x86

4719133df22babf6809480e3f9db1db2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

GetOEMCP
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
HeapFree
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
SetStdHandle
GetFileType
HeapReAlloc
HeapSize
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
CompareStringA
CompareStringW
SetEnvironmentVariableA
Process32Next
Process32First
CreateToolhelp32Snapshot
CloseHandle
ReadProcessMemory
OpenProcess
WriteProcessMemory
GetPrivateProfileStringA
WritePrivateProfileStringA
VirtualFreeEx
WaitForSingleObject
CreateRemoteThread
VirtualAllocEx
GetLastError
GetCurrentProcess
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleFileNameA
lstrlenA
GetCurrentDirectoryA
GetPrivateProfileSectionNamesA
CreateProcessA
GetTickCount
Sleep
GetFileAttributesA
TerminateProcess
GetVersion
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
MultiByteToWideChar
GetProcessVersion
SizeofResource
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalAlloc
GetCurrentThread
MulDiv
SetFileAttributesA
GetProfileStringA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSize
lstrcmpA
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
LocalFree
lstrcmpiA
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
DuplicateHandle
lstrcpynA
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
FormatMessageA

user32

CharNextA
CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
MessageBeep
InvalidateRect
RegisterClipboardFormatA
PostThreadMessageA
LoadCursorA
PtInRect
GetClassNameA
MapDialogRect
SetWindowContextHelpId
SetCursor
LoadStringA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GetMessageA
TranslateMessage
ValidateRect
DestroyMenu
wvsprintfA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
GetDC
ReleaseDC
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
InflateRect
GetMenu
GetMenuItemCount
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
DispatchMessageA
CharUpperA
wsprintfA
GetParent
GetLastActivePopup
IsWindowEnabled
MessageBoxA
PostQuitMessage
ModifyMenuA
IsIconic
DrawIcon
GetSystemMenu
AppendMenuA
GetClientRect
GetSystemMetrics
keybd_event
ClipCursor
mouse_event
SetForegroundWindow
TrackPopupMenu
GetMenuItemID
SetMenuDefaultItem
LoadIconA
GetAsyncKeyState
GetWindowLongA
SetWindowLongA
SetWindowPos
LoadMenuA
KillTimer
GetSubMenu
GetCursorPos
PostMessageA
GetWindowRect
SetCursorPos
SetTimer
UpdateWindow
EnableWindow
SendMessageA
ShowWindow
IsWindowVisible
GetDesktopWindow
GetWindow
GetWindowThreadProcessId
GetWindowTextA
RegisterClassA
GetSysColorBrush

gdi32

SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
OffsetViewportOrgEx
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
DPtoLP
GetTextColor
GetBkColor
LPtoDP
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
PatBlt
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateDIBitmap
CreateFontA

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
AdjustTokenPrivileges
RegSetValueExA

shell32

Shell_NotifyIconA
ShellExecuteA

comctl32

ord17
ImageList_Destroy
ImageList_Create

oledlg

ord8

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleFlushClipboard
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromString
CLSIDFromProgID
OleIsCurrentClipboard
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject

olepro32

ord253

oleaut32

SysStringLen
VariantTimeToSystemTime
SysAllocStringLen
SysFreeString
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
VariantClear

Sections

.text
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4719133df22babf6809480e3f9db1db2

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 335KB - Virtual size: 335KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 28KB - Virtual size: 69KB

.rsrc Size: 22KB - Virtual size: 21KB

.text
Size: 335KB - Virtual size: 335KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 28KB - Virtual size: 69KB

.rsrc
Size: 22KB - Virtual size: 21KB