b3a676c7aa23886e743d59ae17264108595f88e60ccfe8315409ce6eaea57567

Sharing

Copy URL

Twitter E-mail

General

Target

b3a676c7aa23886e743d59ae17264108595f88e60ccfe8315409ce6eaea57567
Size

380KB
MD5

7905eb615dbffda2b7258f578ca0e9b1
SHA1

32b97dbe4580e4e0d9cd54a7558bbe07ca6b4cc0
SHA256

b3a676c7aa23886e743d59ae17264108595f88e60ccfe8315409ce6eaea57567
SHA512

be0e89d3db1db7d107364e01640acc7ffb6bb35a223f3ae6ba4868b828ac6a7736c153801e2f6753482b39ca71d3a3b91226178da7470c8b6234ffc59c77a137
SSDEEP

6144:P2u4sQzaV8aJJHwdq6Pr0zhMBCtN/yQ3XDr9agrFvDG3ztqf4Jldy:L4f3abQdqy0zhMBGN6gD8gxvCjt5Jb

Score

N/A

Malware Config

Signatures

Files

b3a676c7aa23886e743d59ae17264108595f88e60ccfe8315409ce6eaea57567
.exe windows x86

4cd4eef3ac1131b4f548a5bd0224fb68

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileA
CompareStringA
LCMapStringW
UnlockFile
MultiByteToWideChar
GlobalFree
IsDebuggerPresent
GetLastError
GetACP
UnhandledExceptionFilter
GetCurrentThreadId
GetCPInfo
lstrcatA
EnterCriticalSection
VirtualAlloc
GlobalLock
GetProcessVersion
GlobalAddAtomA
GetFileType
LocalAlloc
GetFileTime
GetConsoleCP
GetEnvironmentVariableW
GetTimeZoneInformation
CreateEventA
lstrlenA
VirtualFree
ReadFile
GetTickCount
UnmapViewOfFile
GetProcAddress
IsValidLocale
GetCommandLineA
SetHandleCount
TlsFree
MapViewOfFile
SetEndOfFile
GetVersionExA
GetDateFormatA
GetCurrentProcess
OutputDebugStringW
LockFile
SetEnvironmentVariableA
GetWindowsDirectoryW
IsBadCodePtr
GetModuleHandleA
IsValidCodePage
WritePrivateProfileStringW
LoadLibraryExA
TlsSetValue
OpenMutexA
RemoveDirectoryA
HeapDestroy
GetPrivateProfileStringA
DeleteCriticalSection
CreateMutexW
GlobalDeleteAtom
GlobalFindAtomA
lstrcmpiW
IsDBCSLeadByte
GlobalHandle
GetSystemDefaultLangID
CloseHandle
GetVolumeInformationA
HeapReAlloc
lstrcmpA
WaitForSingleObject
SetConsoleCtrlHandler
SetFilePointer
GetLocaleInfoW
InterlockedExchange
RtlUnwind
FreeLibrary
GlobalFlags
GetConsoleMode
WriteConsoleA
InterlockedDecrement
LocalLock
SetThreadPriority
CreatePipe
SetFileAttributesA
GetCurrentDirectoryA
GetThreadLocale
LeaveCriticalSection
GetUserDefaultLCID
GetSystemTimeAsFileTime
QueryPerformanceCounter
WinExec
GetFileAttributesA
GetDriveTypeA
FreeEnvironmentStringsA
CopyFileA
FindNextFileA
WaitNamedPipeA
SetCurrentDirectoryA
CreateThread
SetFileTime
LoadLibraryA
SetEvent
CreateFileW
GetTimeFormatA
DeleteFileW
lstrcpyA
GetFileInformationByHandle
GetVersion
WideCharToMultiByte
CreateProcessA
TerminateProcess
ExpandEnvironmentStringsA
GetExitCodeProcess
TlsGetValue
GetEnvironmentStrings
GetPrivateProfileStringW
ResumeThread
LocalReAlloc
LoadLibraryW
GetCurrentProcessId
HeapSize
GetConsoleOutputCP
HeapCreate
ExitThread
GetModuleFileNameA
GetSystemDirectoryA
GetStringTypeA
FileTimeToLocalFileTime
GetFullPathNameW
IsBadReadPtr
MoveFileA
MulDiv
RaiseException
HeapAlloc
lstrlenW
FindResourceW
ConvertDefaultLocale
WritePrivateProfileStringA
GlobalReAlloc
LocalFree
GetStartupInfoA
LockResource
GetWindowsDirectoryA
GetFileSize
LocalFileTimeToFileTime
FindResourceExA
CreateMutexA
ReleaseMutex
SetStdHandle
GetStdHandle
WriteFile
GetOEMCP
lstrcmpiA
VirtualProtect
GetSystemTime
FreeEnvironmentStringsW
FlushFileBuffers
InitializeCriticalSection
GetStringTypeW
SetUnhandledExceptionFilter
GetStringTypeExA
SleepEx
Process32First
EnumSystemLocalesA
GetFullPathNameA
SetErrorMode
FileTimeToSystemTime
WriteConsoleW
SetLastError
SuspendThread
GetProcessHeap
InterlockedIncrement
GetLocaleInfoA
IsBadWritePtr
GlobalGetAtomNameA
GlobalUnlock
FormatMessageA
FindResourceA
GetLocalTime
lstrcpyW
TlsAlloc
GetModuleFileNameW
ExitProcess
DeviceIoControl
SizeofResource
GetSystemInfo
GetEnvironmentStringsW
Sleep
GetEnvironmentVariableA
FatalAppExitA
DuplicateHandle
SystemTimeToFileTime
GetUserDefaultLangID
VirtualQuery
GlobalAlloc
CompareStringW
_lread
CreateFileMappingA
FindClose
GetShortPathNameA
LCMapStringA
CopyFileW
GetDateFormatW
GetCurrentThread
HeapFree
CreateFileA

advapi32

CheckTokenMembership
DeregisterEventSource
AllocateAndInitializeSid
InitializeSecurityDescriptor
RegOpenKeyExA
ReportEventA
CloseServiceHandle
OpenSCManagerA
OpenThreadToken
CreateServiceW
EnumServicesStatusA
StartServiceW
SetSecurityDescriptorGroup
OpenServiceW
RegQueryInfoKeyA
RegOpenKeyExW
RegEnumKeyA
DeleteService
RegCloseKey
RegOpenKeyW
RegQueryValueA
OpenServiceA
GetAclInformation
RegCreateKeyExW
RegQueryValueExW
RegDeleteValueA
SetFileSecurityW
RegSetValueExW
RegEnumKeyExA
RegDeleteKeyW
RegOpenKeyA
GetSecurityDescriptorDacl
SetSecurityDescriptorOwner
AddAce
RegQueryValueW
GetTokenInformation
RegCreateKeyW
RegEnumKeyW
ControlService
StartServiceCtrlDispatcherW
LookupPrivilegeValueW
AdjustTokenPrivileges
RegisterEventSourceW
SetSecurityDescriptorDacl
InitializeAcl
RegEnumValueA
GetLengthSid
RegEnumKeyExW
SetServiceStatus
AddAccessAllowedAce
RegSetValueExA
ReportEventW
RegDeleteValueW
RegisterServiceCtrlHandlerW
RegQueryInfoKeyW
OpenSCManagerW
RegCreateKeyExA
GetUserNameW
LookupPrivilegeValueA
FreeSid
RegQueryValueExA
ImpersonateSelf
OpenProcessToken

user32

GetScrollInfo
TrackPopupMenuEx
ChildWindowFromPoint
GetWindowRect
DestroyMenu
SetPropW
RegisterClassW
GetCursor
PostMessageW
LoadCursorA
SetTimer
CheckMenuItem
GetMenuItemCount
DrawTextA
CreateWindowExA
IsRectEmpty
SetWindowPos
ValidateRect
MonitorFromWindow
CloseClipboard
SendDlgItemMessageA
IsClipboardFormatAvailable
SetDlgItemTextA
LoadCursorW
LoadAcceleratorsA
GetSubMenu
LoadStringA
InsertMenuItemA
CopyImage
SetWindowContextHelpId
GetMessagePos
IsDlgButtonChecked
InvalidateRgn
DrawTextExW
DrawFocusRect
IsZoomed
DeferWindowPos
InflateRect
BringWindowToTop
GetMenuCheckMarkDimensions
CreateIconIndirect
SystemParametersInfoW
GetUpdateRect
DispatchMessageW
GetDlgCtrlID
MapVirtualKeyExA
SetClipboardViewer
SetMenuDefaultItem
RemoveMenu
BeginDeferWindowPos
GetIconInfo
RegisterClipboardFormatA
DrawFrameControl
IsWindowVisible
InvalidateRect
DefMDIChildProcA
GetWindowPlacement
GrayStringW
EmptyClipboard
MoveWindow
RegisterWindowMessageW
GetNextDlgTabItem
FindWindowW
SystemParametersInfoA
MessageBoxA
GetMenuStringA
PostQuitMessage
ShowScrollBar
AppendMenuW
LoadBitmapA
GrayStringA
SetMenuItemBitmaps
SetRectEmpty
EnableWindow
CharUpperBuffW
GetMessageA
WinHelpA
GetWindow
IsDialogMessageA
LoadImageW
GetClassNameW
GetWindowLongA
SetWindowTextW
ReleaseDC
IsWindowEnabled
FlashWindow
FillRect
GetSysColor
DestroyWindow
CreateIconFromResourceEx
GetDCEx
GetSystemMenu
IsDialogMessageW
DestroyCursor
CallWindowProcA
SetWindowsHookExA
CreateWindowExW
SetCapture
PeekMessageW
PtInRect
FrameRect
DefFrameProcW
LoadImageA
ModifyMenuW
GetMessageTime
OffsetRect
LoadBitmapW
ScrollWindowEx
AppendMenuA
GetDlgItemInt
SetWindowTextA
TabbedTextOutW
DefWindowProcA
ModifyMenuA
SetRect
UnregisterClassA
PostMessageA
EnumChildWindows
SetWindowLongA
GetCapture
DestroyIcon
IsMenu
UnpackDDElParam
ToAsciiEx
IsIconic
InvertRect
CreateMenu
IsWindow
SetScrollPos
CharNextA
AdjustWindowRectEx
CopyIcon
CreateDialogParamW
GetWindowTextLengthW
EndPaint
LockWindowUpdate
SendMessageA
RegisterClassA
GetMenuState
LoadMenuA
DrawMenuBar
DrawEdge
GetKeyNameTextA
ShowWindow
CharLowerW
MessageBoxW
GetDoubleClickTime
GetWindowDC
RegisterClassExA
GetDlgItem
ExcludeUpdateRgn
DeleteMenu
GetWindowTextLengthA
GetWindowThreadProcessId
SetScrollInfo
MapWindowPoints
GetCursorPos
GetClientRect
SetCaretPos
DdeGetLastError
TranslateMessage
GetQueueStatus
GetClassLongW
RemovePropA
MessageBeep
SetCursorPos
GetAsyncKeyState
GetPropA
GetClassInfoExA
SetActiveWindow
MonitorFromPoint
IntersectRect
FindWindowExW
RegisterWindowMessageA
TrackPopupMenu
GetKeyState
EqualRect
SetMenu
DrawIconEx
SetScrollRange
GetSysColorBrush
SetDlgItemTextW
CreatePopupMenu
GetSystemMetrics
EndDialog
GetMenu
WindowFromPoint
CheckMenuRadioItem
DrawIcon
SetMenuItemInfoA
GetMenuItemID
IsChild
GetClipboardData
GetParent
GetScrollRange
GetWindowRgn
ShowOwnedPopups
EnableMenuItem
KillTimer
GetForegroundWindow
SetFocus
LoadStringW
GetTopWindow
GetClassInfoW
SetWindowRgn
HideCaret
GetClassNameA
GetDC
OpenClipboard
ReleaseCapture
DefDlgProcA
GetWindowTextA
GetScrollPos
DrawStateA
GetFocus
ScreenToClient
BeginPaint
CreateAcceleratorTableA
GetLastActivePopup
WaitForInputIdle
SetPropA
GetClassInfoA
CreateDialogIndirectParamA
SetParent
SetCursor
InsertMenuA
GetDesktopWindow
CallNextHookEx
LoadIconW
PeekMessageA
GetWindowTextW
UpdateWindow
CopyRect
TranslateMDISysAccel
EndDeferWindowPos
GetNextDlgGroupItem
ClientToScreen
DefWindowProcW
wsprintfW
DispatchMessageA
TabbedTextOutA
SetWindowsHookExW
SetForegroundWindow
CheckDlgButton

shlwapi

PathStripToRootW
PathIsUNCW
UrlCanonicalizeW
PathRemoveBackslashW
PathCreateFromUrlW
UrlCreateFromPathW
PathCanonicalizeW
PathFindExtensionW
PathCombineW
StrStrIW
PathRemoveExtensionW
PathIsURLW
UrlIsW
PathIsFileSpecW
PathAddBackslashW
PathIsRootW
PathCompactPathW
PathIsDirectoryW
PathFileExistsW
PathRemoveFileSpecW

comctl32

ImageList_GetImageInfo
ImageList_DragEnter
ImageList_GetImageCount
ImageList_Read
ImageList_Destroy
ImageList_Write
ImageList_Draw
ImageList_GetIcon
ImageList_Replace
ImageList_SetDragCursorImage
ImageList_DrawEx
ImageList_Add
ImageList_GetIconSize
ImageList_AddMasked
ImageList_Create
CreatePropertySheetPageA
ImageList_DrawIndirect
ImageList_DragMove
ImageList_GetBkColor
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_SetOverlayImage
PropertySheetA
ImageList_Duplicate
CreatePropertySheetPageW
_TrackMouseEvent
PropertySheetW
ImageList_DragLeave
ImageList_Remove
ImageList_EndDrag
ord17
DestroyPropertySheetPage
ImageList_LoadImageA
ImageList_SetImageCount

wininet

InternetCloseHandle
HttpQueryInfoA
HttpSendRequestExA
InternetErrorDlg
InternetGetConnectedState
InternetConnectA
HttpOpenRequestA
HttpOpenRequestW
HttpQueryInfoW
InternetCrackUrlA
InternetAutodial
FtpSetCurrentDirectoryA
FtpOpenFileA
InternetReadFile
InternetAutodialHangup
HttpAddRequestHeadersA
HttpSendRequestA
HttpEndRequestA
InternetTimeToSystemTime
InternetOpenA
FtpPutFileA
InternetTimeFromSystemTime
InternetWriteFile
InternetGetLastResponseInfoA
InternetSetOptionA
InternetCanonicalizeUrlA

comdlg32

GetSaveFileNameW
ChooseFontW
GetOpenFileNameW
GetSaveFileNameA
GetFileTitleW
GetOpenFileNameA
PageSetupDlgA
CommDlgExtendedError
ChooseColorW

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4cd4eef3ac1131b4f548a5bd0224fb68

Headers

File Characteristics

Imports

kernel32

advapi32

user32

shlwapi

comctl32

wininet

comdlg32

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 140KB - Virtual size: 139KB

.data Size: 80KB - Virtual size: 96KB

.rsrc Size: 68KB - Virtual size: 66KB

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 140KB - Virtual size: 139KB

.data
Size: 80KB - Virtual size: 96KB

.rsrc
Size: 68KB - Virtual size: 66KB