37e775d5ac8cf57e8184799cd866493d3e2d7d312f0eed15edb80c34ee17eb71

Sharing

Copy URL Twitter E-mail

General

Target

37e775d5ac8cf57e8184799cd866493d3e2d7d312f0eed15edb80c34ee17eb71
Size

552KB
MD5

7ee893f928180deb0352dd3f1792f0b7
SHA1

6515cb7810a7dd94475a0afe35468b4006b3229f
SHA256

37e775d5ac8cf57e8184799cd866493d3e2d7d312f0eed15edb80c34ee17eb71
SHA512

87ce83b7e1960e0d7f3577dfe34f751a6390b9cfd530551e99f51b468b39c1c1f384f968fe73e4940c71cc694bde393ccd00ff3048f86a90fd5bb11b73a933d7
SSDEEP

12288:wynfCmixP4fPn9Mb14URJsl7eZf31ak423J/X:w5Pqn9Mb14URi7o3ekZ

Score

N/A

Malware Config

Signatures

Files

37e775d5ac8cf57e8184799cd866493d3e2d7d312f0eed15edb80c34ee17eb71
.exe windows x86

ff0ebc9b4f2909482939feed37da5665

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
DuplicateHandle
WriteConsoleW
WriteProfileStringW
HeapLock
ReadFileEx
GetPrivateProfileSectionA
GetEnvironmentStringsW
LeaveCriticalSection
LoadLibraryExW
WriteConsoleInputW
GetSystemTimeAsFileTime
LCMapStringW
GetLocaleInfoA
InterlockedExchange
HeapCreate
ExitThread
GetACP
InterlockedDecrement
SetThreadContext
lstrlenA
EnumResourceTypesW
EnterCriticalSection
GetCurrentThread
WaitNamedPipeA
IsDebuggerPresent
SetStdHandle
SetLastError
MultiByteToWideChar
GetTimeZoneInformation
TlsGetValue
GetOEMCP
IsValidCodePage
EnumSystemCodePagesA
GetExitCodeProcess
OutputDebugStringA
GetNumberFormatA
GetCurrentProcess
FlushFileBuffers
GetCommandLineW
EnumDateFormatsExA
WritePrivateProfileSectionA
SetVolumeLabelA
EnumSystemLocalesA
GetUserDefaultLCID
GetLastError
GetCurrentProcessId
UnhandledExceptionFilter
WideCharToMultiByte
CreateMailslotA
LocalFree
OpenFileMappingW
ExitProcess
GetLocaleInfoW
DeleteAtom
FreeLibrary
GetStringTypeExA
CreateFileA
CompareStringA
FreeEnvironmentStringsW
FormatMessageW
LCMapStringA
GetModuleFileNameW
CreatePipe
GetModuleHandleA
SetConsoleCtrlHandler
GetModuleFileNameA
GetStdHandle
GetProcAddress
GetEnvironmentStrings
GetDateFormatA
WriteConsoleInputA
RaiseException
GetShortPathNameW
WriteConsoleA
lstrcmpiA
GetVersionExA
VirtualFreeEx
TlsSetValue
DebugBreak
GetFileType
RtlUnwind
GetCPInfo
CreateMutexA
HeapDestroy
GetStartupInfoA
GetPrivateProfileSectionW
CompareStringW
CloseHandle
GetConsoleOutputCP
GetStartupInfoW
HeapValidate
InitializeCriticalSection
lstrcat
SetFilePointer
GetEnvironmentStringsA
GlobalFlags
GetTimeFormatA
ResumeThread
SetUnhandledExceptionFilter
OpenMutexA
SetHandleCount
LocalFlags
GetCommandLineA
TlsAlloc
IsValidLocale
HeapAlloc
GetConsoleMode
HeapFree
HeapReAlloc
RtlFillMemory
InterlockedIncrement
QueryPerformanceCounter
GetConsoleCP
IsBadReadPtr
WriteFile
GetCurrentThreadId
SetEnvironmentVariableA
GetProcessHeap
CreateWaitableTimerA
LocalShrink
VirtualAlloc
GetStringTypeW
DeleteCriticalSection
SetLocaleInfoW
GetStringTypeA
LoadLibraryA
VirtualFree
VirtualQuery
CopyFileA
LoadLibraryW
ReleaseMutex
TlsFree
GetTickCount
OutputDebugStringW
TerminateProcess
FreeEnvironmentStringsA
ReadFile
WaitCommEvent

advapi32

LookupPrivilegeDisplayNameA
RegConnectRegistryA
LookupAccountSidW
LookupPrivilegeNameW
RegNotifyChangeKeyValue
RegReplaceKeyA

comctl32

ImageList_Duplicate
ImageList_Draw
ImageList_LoadImageW
ImageList_DragEnter
CreateToolbarEx
ImageList_GetFlags
GetEffectiveClientRect
ImageList_SetFilter
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Merge
CreateStatusWindow
_TrackMouseEvent
CreatePropertySheetPage
ImageList_Create
ImageList_Add
ImageList_Destroy
ImageList_DrawIndirect
InitMUILanguage
ImageList_SetFlags
MakeDragList
ImageList_Replace
InitCommonControlsEx
ImageList_Write
ImageList_SetIconSize

comdlg32

PageSetupDlgW

wininet

FtpGetCurrentDirectoryW
InternetCrackUrlW
SetUrlCacheEntryGroupW
InternetTimeToSystemTimeW
FindNextUrlCacheEntryW
InternetDialW
FindCloseUrlCache
FtpCommandW
GopherOpenFileA

shell32

SheChangeDirA
ExtractIconExW
SHGetSettings
DragAcceptFiles
ShellExecuteA

user32

GetMenuDefaultItem
SetPropW
GetTopWindow
GetClassInfoExW
LoadAcceleratorsW
SetWindowLongW
BroadcastSystemMessage
MessageBoxW
ActivateKeyboardLayout
GetUpdateRect
DispatchMessageW
EnumPropsW
UnregisterClassW
TabbedTextOutW
AppendMenuW
EndTask
DrawCaption
DrawEdge
CreateDesktopA
OpenInputDesktop
CharPrevW
DestroyWindow
UnregisterClassA
DdeQueryStringW
CreateIconIndirect
IsChild
IsMenu
SetSystemCursor
CreateWindowExA
MessageBoxA
ShowWindow
ChangeDisplaySettingsExA
DdeQueryNextServer
GetProcessWindowStation
SetMenuItemInfoW
DefWindowProcA
GetPropW
SetMessageQueue
LoadCursorFromFileW
DrawTextA
SendNotifyMessageW
SetDlgItemTextW
CharNextA
WaitMessage
RegisterClassExW
LoadBitmapW
MonitorFromPoint
UnhookWinEvent
GetAltTabInfo
DdeCreateDataHandle
IsCharUpperA
GetTabbedTextExtentA
SetMenuItemInfoA
RegisterClassExA
GetKeyNameTextW
GetMessageA
PeekMessageA
DdeAccessData
BroadcastSystemMessageW
RegisterClassA
EndPaint
TileChildWindows

Sections

.text
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff0ebc9b4f2909482939feed37da5665

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

comdlg32

wininet

shell32

user32

Sections

.text Size: 268KB - Virtual size: 267KB

.rdata Size: 132KB - Virtual size: 129KB

.data Size: 96KB - Virtual size: 125KB

.rsrc Size: 52KB - Virtual size: 49KB

.text
Size: 268KB - Virtual size: 267KB

.rdata
Size: 132KB - Virtual size: 129KB

.data
Size: 96KB - Virtual size: 125KB

.rsrc
Size: 52KB - Virtual size: 49KB