05e8e5801963ee7ad5752367f9666ea315804be741379c86cb40d81e8f9fb095

Sharing

Copy URL Twitter E-mail

General

Target

05e8e5801963ee7ad5752367f9666ea315804be741379c86cb40d81e8f9fb095
Size

812KB
MD5

45402491576615c3c7f8c2cca1bb7b50
SHA1

23f10f5129a997830f65cbdaa5723742d9598634
SHA256

05e8e5801963ee7ad5752367f9666ea315804be741379c86cb40d81e8f9fb095
SHA512

0b0f2efc4aa416964f5e7a9d5dcc5443522102ea7fd5520d752c330d597a1f721ff2b42d941737c047ddbc23dc69888eb3d4b3c8f75da7d814c3e2a412f85da5
SSDEEP

12288:I7QwH4j035IeK3djHR+kfJjdeQWhAzXKPDQyISkTvW2a8S45699uO:I0kyxjplWhAzaPD5kqp8S45aoO

Score

N/A

Malware Config

Signatures

Files

05e8e5801963ee7ad5752367f9666ea315804be741379c86cb40d81e8f9fb095
.exe windows x86

993ff9afa021271c439cbf3236715a0f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveInGetDevCapsA
waveOutGetNumDevs
waveOutClose
mmioAscend
waveOutPause
waveOutWrite
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutOpen
waveInClose
waveInReset
waveInStart
waveInStop
waveInAddBuffer
waveInPrepareHeader
waveInUnprepareHeader
waveInOpen
mmioDescend
mmioSeek
mmioWrite
mmioRead
waveOutReset
mmioCreateChunk
mmioOpenA
mmioClose
mmioStringToFOURCCA
mciSendCommandA
mixerGetDevCapsA
mixerOpen
mixerGetNumDevs
mixerGetLineControlsA
mixerGetLineInfoA
mixerClose
mixerGetControlDetailsA
waveOutGetDevCapsA
waveOutRestart
waveInGetNumDevs

msacm32

acmFormatTagEnumA
acmFormatDetailsA
acmFormatChooseA
acmStreamOpen
acmFormatTagDetailsA
acmFormatEnumA
acmStreamUnprepareHeader
acmStreamClose
acmStreamConvert
acmStreamSize
acmMetrics
acmFormatSuggest
acmStreamPrepareHeader

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

LocalFree
lstrcpynA
lstrcmpA
FormatMessageA
SetFileTime
GetFileTime
GetFullPathNameA
CreateFileA
ReadFile
lstrlenW
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
MoveFileA
WriteFile
FindFirstFileA
GetVolumeInformationA
GetStringTypeExA
GetProfileIntA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileSize
LocalFileTimeToFileTime
SystemTimeToFileTime
FindNextFileA
GetProcessVersion
LocalAlloc
TlsAlloc
TlsFree
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
GetCPInfo
GetOEMCP
SizeofResource
FindResourceExA
GlobalSize
CopyFileA
GetCurrentDirectoryA
RtlUnwind
SetEnvironmentVariableA
SuspendThread
HeapFree
GetDriveTypeA
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
ResumeThread
GetPrivateProfileIntA
TerminateProcess
HeapSize
HeapReAlloc
SetUnhandledExceptionFilter
GetEnvironmentVariableA
HeapDestroy
HeapCreate
IsBadWritePtr
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
MultiByteToWideChar
GetThreadLocale
Sleep
GetTickCount
lstrlenA
lstrcpyA
GetTempFileNameA
GetProcAddress
LoadLibraryA
FreeLibrary
GlobalFree
GlobalAlloc
GlobalLock
GlobalHandle
GlobalUnlock
GlobalReAlloc
GetProfileStringA
GlobalGetAtomNameA
SetLastError
GetVersion
GlobalFindAtomA
lstrcmpiA
GlobalAddAtomA
GlobalDeleteAtom
GetCurrentThread
WideCharToMultiByte
GetACP
InterlockedExchange
GetModuleHandleA
CreateThread
VirtualFree
VirtualAlloc
GetCurrentProcess
SetEvent
GetCurrentThreadId
CreateEventA
DuplicateHandle
ResetEvent
GetShortPathNameA
InterlockedDecrement
InterlockedIncrement
GetLastError
SetErrorMode
SetCurrentDirectoryA
GetWindowsDirectoryA
ReleaseSemaphore
WaitForSingleObject
CloseHandle
GetFileAttributesA
DeleteFileA
GetPrivateProfileStringA
CreateSemaphoreA
GetTimeFormatA
WritePrivateProfileStringA
GetDateFormatA
GetSystemInfo
GetNumberFormatA
GetDiskFreeSpaceA
MulDiv
GetVersionExA
GlobalMemoryStatus
lstrcatA
GetTempPathA
GetModuleFileNameA
LockResource
FindResourceA
LoadResource
ExitThread
FreeResource
GetTimeZoneInformation
FindClose
RaiseException

user32

ValidateRect
GrayStringA
GetActiveWindow
MapDialogRect
CreateDialogIndirectParamA
EndDialog
DestroyMenu
BringWindowToTop
DefFrameProcA
TranslateMDISysAccel
TranslateAcceleratorA
DrawMenuBar
DefMDIChildProcA
RedrawWindow
LoadAcceleratorsA
SetMenu
ReuseDDElParam
UnpackDDElParam
SetCursorPos
DestroyCursor
InSendMessage
WindowFromDC
IsRectEmpty
SetParent
CharUpperA
CopyAcceleratorTableA
CreateMenu
WaitMessage
GetWindowThreadProcessId
ClipCursor
DeleteMenu
GetSystemMenu
IsClipboardFormatAvailable
PostQuitMessage
ShowOwnedPopups
SetWindowContextHelpId
RegisterClipboardFormatA
GetSysColorBrush
GetDCEx
LockWindowUpdate
GetClassNameA
FindWindowA
DestroyIcon
GetTabbedTextExtentA
CharNextA
GetNextDlgGroupItem
SetMenuItemBitmaps
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
GetFocus
SetFocus
AdjustWindowRectEx
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
GetClassInfoA
RegisterClassA
TrackPopupMenu
BeginPaint
TabbedTextOutA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetMenuState
EndPaint
GetMessageTime
GetMessagePos
GetLastActivePopup
SetForegroundWindow
GetWindowLongA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
DeferWindowPos
DefWindowProcA
GetDlgCtrlID
WindowFromPoint
IsChild
IsZoomed
PostThreadMessageA
wvsprintfA
GetKeyState
DestroyWindow
LoadBitmapA
UnionRect
ScrollDC
InvertRect
GetAsyncKeyState
ChildWindowFromPoint
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
SetCursor
ReleaseCapture
GetCapture
SetCapture
GetDC
ReleaseDC
LoadCursorA
CallWindowProcA
CopyRect
DrawEdge
ClientToScreen
GetDesktopWindow
EnableMenuItem
CheckMenuItem
RemoveMenu
LoadMenuA
SetActiveWindow
IsIconic
GetWindow
RegisterWindowMessageA
LoadStringA
GetForegroundWindow
MessageBoxA
GetCursorPos
EqualRect
OffsetRect
GetDlgItem
ScreenToClient
SetWindowPos
GetWindowRect
GetSystemMetrics
GetParent
DrawFocusRect
GetMenuItemCount
GetSubMenu
GetMenuItemID
InvalidateRect
GetClientRect
IsWindow
SetRectEmpty
PostMessageA
CreatePopupMenu
InsertMenuA
AppendMenuA
GetMenu
GetMenuStringA
WinHelpA
wsprintfA
GetWindowTextLengthA
GetWindowTextA
GetWindowDC
MessageBeep
InflateRect
SetRect
FillRect
DrawTextA
PtInRect
KillTimer
DrawIcon
LoadIconA
UpdateWindow
IsWindowVisible
SetTimer
SendMessageA
GetSysColor
EnableWindow
GetMenuCheckMarkDimensions
GetPropA
ModifyMenuA
RemovePropA
SetWindowLongA
IsWindowUnicode
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA

gdi32

Polygon
SetBkColor
CreatePolygonRgn
LineTo
MoveToEx
CreatePen
GetObjectA
TextOutA
GetClipBox
CreateBitmap
StartDocA
SaveDC
RestoreDC
SetPolyFillMode
CreateFontIndirectA
FrameRgn
FillRgn
SetViewportOrgEx
StretchBlt
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
SetTextAlign
GetCurrentPositionEx
PatBlt
CreateFontA
SetMapMode
GetTextMetricsA
OffsetViewportOrgEx
GetStockObject
SetTextColor
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
SetBkMode
BitBlt
GetTextExtentPointA
CreateDIBitmap
GetTextExtentPoint32A
DeleteObject
DeleteDC
SetROP2
SetStretchBltMode
CreateRectRgn
GetDeviceCaps
GetWindowExtEx
GetViewportExtEx
CreatePatternBrush
RectVisible
ExtTextOutA
PtVisible
GetMapMode
SetRectRgn
Escape
CombineRgn
CreateRectRgnIndirect
SetBrushOrgEx
StretchDIBits
DPtoLP
DeleteMetaFile
CloseMetaFile
GetCharWidthA
Rectangle
GetViewportOrgEx
CreateMetaFileA
EndDoc
EndPage
AbortDoc
SetAbortProc
CreateDCA
StartPage
LPtoDP
GetWindowOrgEx
EnumFontFamiliesExA
UnrealizeObject
GetTextAlign
CopyMetaFileA
GetNearestColor
GetTextColor
GetBkColor
GetPolyFillMode
GetBkMode
GetStretchBltMode
GetTextFaceA
GetROP2
CreateSolidBrush

comdlg32

PrintDlgA
GetOpenFileNameA
ChooseColorA
GetSaveFileNameA
GetFileTitleA
CommDlgExtendedError

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegCreateKeyA
RegSetValueA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
SetFileSecurityA
RegDeleteKeyA
GetFileSecurityA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegDeleteValueA
RegSetValueExA

shell32

DragFinish
DragQueryFileA
SHBrowseForFolderA
SHGetPathFromIDListA
DragAcceptFiles
ExtractIconA
SHGetFileInfoA
SHGetMalloc

comctl32

ord8
ord17
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA

oledlg

ord8

ole32

OleFlushClipboard
CLSIDFromProgID
CoGetClassObject
CoRegisterMessageFilter
OleUninitialize
StringFromCLSID
OleLockRunning
CoRevokeClassObject
OleInitialize
CoRegisterClassObject
CreateOleAdviseHolder
CreateGenericComposite
CreateStreamOnHGlobal
OleSaveToStream
WriteClassStm
ReleaseStgMedium
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
RevokeDragDrop
RegisterDragDrop
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
OleIsRunning
OleRun
CreateItemMoniker
CoLockObjectExternal
WriteClassStg
GetRunningObjectTable
CreateFileMoniker
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoDisconnectObject
CoTaskMemAlloc
CoInitialize
CoFreeUnusedLibraries
CoUninitialize
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
CoTaskMemFree
CreateDataAdviseHolder
OleIsCurrentClipboard
CoCreateInstance
OleDuplicateData
CLSIDFromString
CreateBindCtx
StgOpenStorageOnILockBytes

olepro32

ord253

oleaut32

VariantChangeType
VariantClear
VariantCopy
SysAllocString
SysAllocStringLen
SysStringByteLen
SysStringLen
SysAllocStringByteLen
SysFreeString
LoadTypeLi
VariantTimeToSystemTime

Sections

.text
Size: 560KB - Virtual size: 558KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 24KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.2rdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

993ff9afa021271c439cbf3236715a0f

Headers

File Characteristics

Imports

winmm

msacm32

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 560KB - Virtual size: 558KB

.rdata Size: 124KB - Virtual size: 122KB

.data Size: 24KB - Virtual size: 40KB

.rsrc Size: 24KB - Virtual size: 22KB

.2rdata Size: 76KB - Virtual size: 76KB

.text
Size: 560KB - Virtual size: 558KB

.rdata
Size: 124KB - Virtual size: 122KB

.data
Size: 24KB - Virtual size: 40KB

.rsrc
Size: 24KB - Virtual size: 22KB

.2rdata
Size: 76KB - Virtual size: 76KB