51822b9ce118b54a127bb90f4ff3096e8498f7772322f18cb089ce7e621c3244

Sharing

Copy URL Twitter E-mail

General

Target

51822b9ce118b54a127bb90f4ff3096e8498f7772322f18cb089ce7e621c3244
Size

704KB
MD5

07449d457d82f90b04d2a96bcd16801f
SHA1

75f13111689bc6249285ec79e1bf6af61a6bd56c
SHA256

51822b9ce118b54a127bb90f4ff3096e8498f7772322f18cb089ce7e621c3244
SHA512

72f4056aa6cb2cade9e4ff2077d7b876efdaf893fac597bb308df75df0dbc7307ec2092941d41729ec510a3d29845398fd4f29b27c10a118de1df9f3ca6c1e40
SSDEEP

12288:CY5fBkf1xRS7/lLyp2IidLbv2XmGgYq7GIjvK4dxwNyhYvDk:hufc7da2I2Xv2907X+4d2NyuvDk

Score

N/A

Malware Config

Signatures

Files

51822b9ce118b54a127bb90f4ff3096e8498f7772322f18cb089ce7e621c3244
.exe windows x86

bb331322f4ae5d23e95def84d9544ccb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteMetaFile
RectInRegion
StrokeAndFillPath
ExtCreateRegion
GetPixel
GetRgnBox
StretchDIBits
CreateHatchBrush
SetRectRgn
FrameRgn
CombineRgn
GetTextExtentPoint32A
CreateSolidBrush
SetPolyFillMode
EqualRgn
StartDocA
SetROP2
CreatePatternBrush
CopyMetaFileA
CreateFontA
PlayMetaFile
FlattenPath
PlayMetaFileRecord
GetArcDirection
SetAbortProc
ExtTextOutA
CloseMetaFile
GetNearestColor
SetBitmapBits
Ellipse
EnumMetaFile
CreateDCA
CreateCompatibleDC
BeginPath
CreateHalftonePalette
InvertRgn
CloseEnhMetaFile
GetObjectType
SetViewportExtEx
SetTextColor
SetBitmapDimensionEx
SetArcDirection
GetTextColor
SelectPalette
Arc
MaskBlt
PolyPolyline
ScaleWindowExtEx
CreateCompatibleBitmap
Rectangle
PolyPolygon
CreateBitmapIndirect
GetTextCharacterExtra
PolylineTo
OffsetViewportOrgEx
LineTo
GetBitmapDimensionEx
PolyBezierTo
SetViewportOrgEx
GetOutlineTextMetricsA
Escape
CloseFigure
PolyDraw
CreateEnhMetaFileA
DeleteObject
OffsetClipRgn
SetColorAdjustment
CreateEllipticRgn
SetPixelV
PtInRegion
RealizePalette
BitBlt
SetWindowExtEx
SetBkMode
CreateDIBPatternBrushPt
CreateICA
GetStockObject
SelectObject
CreatePenIndirect
ExcludeClipRect
ScaleViewportExtEx
GetPath
SetMapperFlags
GetTextAlign
SetStretchBltMode
GetClipBox
CreateMetaFileA
Pie
GetFontData
FillRgn
FloodFill
GetTextMetricsA
PathToRegion
GetBkMode
PtVisible
EndPath
GetMapMode
CreatePolygonRgn
LPtoDP
MoveToEx
SetTextCharacterExtra
ArcTo
GetNearestPaletteIndex
GetTextExtentPointA
ExtCreatePen
DPtoLP
ExtSelectClipRgn
OffsetWindowOrgEx
CreatePen
CreateBrushIndirect
GetBkColor
CreatePalette

ole32

OleDuplicateData
CLSIDFromString
OleDestroyMenuDescriptor
CreateILockBytesOnHGlobal
StringFromCLSID
OleTranslateAccelerator
OleCreateMenuDescriptor
CreateDataAdviseHolder
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
IsAccelerator

user32

GetMenuItemInfoW
IsMenu
ShowWindow
MessageBeep
GetDC
IsWindowVisible
SetCapture
SendMessageW
IsDialogMessageW
BeginPaint
CheckMenuItem
EmptyClipboard
DestroyIcon
PostQuitMessage
GetWindowTextW
UnhookWindowsHookEx
GetMenu
DestroyWindow
ModifyMenuW
EnableMenuItem
SetWindowPos
KillTimer
GetMessageW
DefWindowProcW
wsprintfW
GetCursorPos
InvalidateRect
GetSystemMetrics
GetKeyState
MessageBoxW
DeleteMenu
GetParent
SetParent
InsertMenuItemW
RegisterClassW
EndPaint
TrackPopupMenu
RegisterClassExW
SetScrollInfo
IsRectEmpty
IsIconic
IsWindow
CopyIcon
IsZoomed
GetSysColor
ScreenToClient
OpenClipboard
SetForegroundWindow
RegisterWindowMessageW
UnregisterClassA
CreateWindowExW
GetDlgItem
EndDialog

winspool.drv

ClosePrinter
EnumJobsW
GetJobW
ord204

advapi32

CreateProcessAsUserA
RegDeleteKeyA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
GetSidLengthRequired
ConvertStringSidToSidA
RegEnumKeyExA
SetTokenInformation

wsock32

WSACleanup

kernel32

OpenMutexW
GetVersionExW
GetCurrentProcessId
CreateMutexW
WriteFile
GetCPInfo
TlsFree
FreeEnvironmentStringsW
CloseHandle
GlobalLock
GetStartupInfoW
GetLocaleInfoW
FindNextFileW
CreateDirectoryW
FindFirstFileW
HeapDestroy
FreeEnvironmentStringsA
HeapSize
GetStringTypeA
LoadLibraryA
GetTickCount
GetACP
GetModuleHandleA
TlsGetValue
RtlUnwind
UnhandledExceptionFilter
GetFileSize
InterlockedDecrement
SetEnvironmentVariableA
ReadFile
GetCommandLineA
GetVersionExA
GetModuleFileNameW
GlobalFree
FreeLibrary
IsBadCodePtr
VirtualQuery
HeapAlloc
GetStringTypeW
SetUnhandledExceptionFilter
CreateFileA
VirtualFree
GetLocalTime
CreateFileW
TlsAlloc
GetProcAddress
GetCommandLineW
WideCharToMultiByte
InitializeCriticalSection
GetStartupInfoA
SetEndOfFile
GetCurrentThreadId
WriteConsoleA
HeapFree
TlsSetValue
GetSystemTimeAsFileTime
WaitForSingleObject
LCMapStringA
CompareStringA
HeapCreate
InterlockedIncrement
TerminateProcess
IsBadReadPtr
FindClose
FlushFileBuffers
RaiseException
LCMapStringW
GetCurrentThread
GetFullPathNameW
VirtualAlloc
GetFileType
GetTimeZoneInformation
GetEnvironmentStringsW
InterlockedExchange
QueryPerformanceCounter
IsValidLocale
GetOEMCP
SetLastError
IsDebuggerPresent
SetConsoleCtrlHandler
GetStdHandle
GetSystemTime
GlobalAlloc
GetLastError
GetLocaleInfoA
GetCurrentProcess
SetStdHandle
GetUserDefaultLCID
GetProcessHeap
GetEnvironmentStrings
CreateProcessW
IsValidCodePage
FatalAppExitA
Sleep
CompareStringW
GetModuleFileNameA
GlobalUnlock
GetModuleHandleW
IsBadWritePtr
MultiByteToWideChar
GetVersion
ExitProcess
HeapReAlloc
DeleteCriticalSection
DeleteFileW
EnterCriticalSection
SetHandleCount
SetFilePointer
LeaveCriticalSection

comdlg32

ChooseColorA
CommDlgExtendedError

winmm

timeSetEvent
timeBeginPeriod
mciSendCommandA
timeKillEvent
timeGetDevCaps

shlwapi

PathFindFileNameA
PathFindExtensionA
UrlUnescapeA
PathIsUNCA

Sections

.text
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 456KB - Virtual size: 453KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb331322f4ae5d23e95def84d9544ccb

Headers

File Characteristics

Imports

gdi32

ole32

user32

winspool.drv

advapi32

wsock32

kernel32

comdlg32

winmm

shlwapi

Sections

.text Size: 68KB - Virtual size: 65KB

.rdata Size: 456KB - Virtual size: 453KB

.data Size: 96KB - Virtual size: 93KB

.rsrc Size: 80KB - Virtual size: 76KB

.text
Size: 68KB - Virtual size: 65KB

.rdata
Size: 456KB - Virtual size: 453KB

.data
Size: 96KB - Virtual size: 93KB

.rsrc
Size: 80KB - Virtual size: 76KB