f6dcb1ec2b077351cf9b73713479ef97c179b47df19a0d1153b0367f9b587bdd

Sharing

Copy URL Twitter E-mail

General

Target

f6dcb1ec2b077351cf9b73713479ef97c179b47df19a0d1153b0367f9b587bdd
Size

312KB
MD5

bf134ff050297f1c12e299b0528bda5c
SHA1

01a802d55af6aecad5f1f0ac5a71b0b649623107
SHA256

f6dcb1ec2b077351cf9b73713479ef97c179b47df19a0d1153b0367f9b587bdd
SHA512

733afc88a4e9cc4d1568f6097f7d370dae90f367febe8619c7fd5adedb7c64145a9f506c51ab3dbaa31ceec0a12466249d4b14b2bb7d201657ebc3417545e98d
SSDEEP

6144:idzYQ/pIIb+hxjjMb7x6/CqGWC4tChXGj:QzYQ/pIIwjjMbd6/vLC

Score

N/A

Malware Config

Signatures

Files

f6dcb1ec2b077351cf9b73713479ef97c179b47df19a0d1153b0367f9b587bdd
.exe windows x86

d148ff18744bd9b89f7f9517c2298fab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSectionAndSpinCount
GlobalAddAtomA
DeleteFileA
WinExec
GetVersionExA
GetTimeFormatA
GetPrivateProfileStringA
DeleteCriticalSection
CloseHandle
GlobalReAlloc
TerminateThread
Sleep
WaitForSingleObject
SetFilePointer
HeapReAlloc
GlobalGetAtomNameA
GetUserDefaultLCID
GetConsoleMode
LoadResource
GetOEMCP
GetFileSize
IsValidCodePage
WriteFile
CreateThread
WriteConsoleW
WriteConsoleA
SetEndOfFile
HeapCreate
ResetEvent
InterlockedDecrement
GetConsoleCP
IsBadWritePtr
LocalAlloc
SetErrorMode
GetWindowsDirectoryA
CompareStringW
GlobalAlloc
GetCPInfo
WritePrivateProfileStringA
GetVersion
FlushFileBuffers
LCMapStringW
VirtualProtect
FreeEnvironmentStringsA
HeapDestroy
GetEnvironmentStrings
LeaveCriticalSection
WideCharToMultiByte
InitializeCriticalSection
GlobalDeleteAtom
CreateDirectoryW
IsBadCodePtr
ExitProcess
CreateEventA
GetLocalTime
GetPrivateProfileIntA
GetStdHandle
VirtualQuery
GetStringTypeW
CreateMutexA
LocalFree
GetEnvironmentStringsW
RemoveDirectoryW
LCMapStringA
MoveFileW
GetShortPathNameA
LoadLibraryW
GetFileAttributesW
InterlockedExchange
GetTimeZoneInformation
GetCommandLineA
QueryPerformanceCounter
MulDiv
SetEnvironmentVariableA
GetTimeFormatW
GetCurrentThreadId
GetDiskFreeSpaceA
lstrcpyW
GetPrivateProfileStringW
GetSystemTime
CreateFileA
GetACP
GetThreadLocale
GetFileType
lstrcmpiW
lstrcpynA
MultiByteToWideChar
TlsFree
SetThreadPriority
IsBadReadPtr
GetFileTime
RaiseException
WritePrivateProfileSectionA
HeapAlloc
GetProcAddress
GlobalFindAtomA
SetFileAttributesW
FindClose
SetFileTime
VirtualFree
SetLastError
TerminateProcess
_lclose
FindResourceW
GetModuleHandleW
CompareFileTime
GetExitCodeThread
DuplicateHandle
ExitThread
GetCurrentDirectoryA
TlsGetValue
GetModuleFileNameA
GetTempPathA
FreeLibrary
CopyFileA
TlsSetValue
SetEnvironmentVariableW
IsDebuggerPresent
IsValidLocale
GetCurrentThread
GetFileAttributesA
GetLastError
TlsAlloc
SetHandleCount
lstrcmpW
EnterCriticalSection
GetStringTypeA
LockResource
lstrcatA
GetSystemTimeAsFileTime
lstrlenW
HeapSize
GlobalFlags
MoveFileA
lstrcmpA
GetDateFormatA
GlobalHandle
VirtualAlloc
LocalFileTimeToFileTime
HeapFree
DeviceIoControl
GetLocaleInfoW
InterlockedIncrement
GetCurrentProcess
GetModuleHandleA
GetCurrentProcessId
SetUnhandledExceptionFilter
RemoveDirectoryA
FreeEnvironmentStringsW
CopyFileW
CreateDirectoryA
GetWindowsDirectoryW
GetProcessVersion
GetComputerNameA
lstrcpyA
GlobalUnlock
GetSystemInfo
EnumSystemLocalesA
FormatMessageA
GetConsoleOutputCP
ResumeThread
GlobalSize
SetStdHandle
CreateProcessA
SizeofResource
FindFirstFileA
GlobalAddAtomW
ReleaseSemaphore
OpenMutexA
GlobalFree
SetFileAttributesA
FileTimeToLocalFileTime
GetProfileStringA
GetTickCount
SetEvent
WritePrivateProfileStringW
FileTimeToSystemTime
GetVolumeInformationA
FatalAppExitA
lstrcmpiA
lstrlenA
GetSystemDirectoryA
ConvertDefaultLocale
SystemTimeToFileTime
_lopen
OpenFile
GetStartupInfoA
LoadLibraryA
GetDriveTypeA
UnhandledExceptionFilter
InterlockedCompareExchange
GlobalLock
FindNextFileA
CompareStringA
SetConsoleCtrlHandler
RtlUnwind
GetProcessHeap
LocalReAlloc
ReadFile
UnmapViewOfFile
DeleteFileW
FreeResource
GetLocaleInfoA

comdlg32

GetSaveFileNameA
PrintDlgA
GetOpenFileNameW
ChooseColorA
CommDlgExtendedError
ChooseFontA
PageSetupDlgA
GetOpenFileNameA
GetFileTitleA

comctl32

ImageList_Add
CreatePropertySheetPageA
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_SetImageCount
ImageList_Destroy
ImageList_GetBkColor
ImageList_DragShowNolock
ImageList_AddMasked
ImageList_DragLeave
ord17
ImageList_DragEnter
PropertySheetA
ImageList_Merge
ImageList_Draw
ImageList_GetDragImage
ImageList_Remove
ImageList_Replace
ImageList_SetDragCursorImage
ImageList_Create
ImageList_Read
ImageList_SetBkColor
ImageList_DragMove
ImageList_GetIcon
ImageList_BeginDrag
CreatePropertySheetPageW
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_Write
ImageList_LoadImageA

shell32

DragQueryFileA
ShellExecuteW
ExtractIconA
SHBrowseForFolderA
SHGetFileInfoA
ord155
ShellExecuteExA
SHFileOperationA
Shell_NotifyIconW
DragQueryFileW
DragAcceptFiles
DragFinish
ShellExecuteA
ExtractIconExW
SHChangeNotify
SHGetPathFromIDListW
SHBrowseForFolderW
ExtractIconExA
SHGetSpecialFolderLocation

oleaut32

LoadTypeLi

user32

GrayStringA
GetClassLongA
SetMenuItemInfoW
DefWindowProcA
GetWindowPlacement
CallNextHookEx
SetScrollPos
GetMessageA
CharNextA
DdeDisconnect
GetDlgItem
WindowFromPoint
RegisterClassA
GetWindowTextW
InSendMessage
BeginPaint
DestroyIcon
GetMenuItemInfoW
SetPropW
ShowCaret
EnumWindows
KillTimer
PtInRect
SetDlgItemInt
SetWindowPos
GetClassInfoA
DrawTextA
PostMessageA
GetClassInfoExA
SetForegroundWindow
GetScrollRange
DrawFocusRect
GetScrollPos
GetWindow
CloseWindow
DdeUninitialize
AttachThreadInput
CreateWindowExA
GetUpdateRect
GetClassNameW
RemovePropA
DestroyAcceleratorTable
EqualRect
EnableWindow
GetDC
IsDialogMessageW
InvertRect
GetWindowRgn
SetPropA
GetKeyState
wsprintfA
TabbedTextOutA
GetClipboardOwner
SetCaretPos
CheckMenuItem
DestroyMenu
InsertMenuW
GetPropA
InvalidateRect
WaitForInputIdle
ShowScrollBar
EnableMenuItem
GetLastActivePopup
CreateDialogIndirectParamA
GetClassInfoExW
BringWindowToTop
ScreenToClient
UnpackDDElParam
SetMenuContextHelpId
EndDialog
SendDlgItemMessageW
LoadMenuA
SendMessageA
GetMenuState
GetMenu
TrackPopupMenu
GetScrollInfo
CreateMenu
GetSysColor
ShowWindow
CreateDialogParamW
CheckRadioButton
LoadImageA
SetClassLongA
GetClassNameA
RedrawWindow
OpenClipboard
LoadBitmapA
IsWindowUnicode
SetActiveWindow
ChildWindowFromPoint
RegisterClipboardFormatA
CopyIcon
GetNextDlgGroupItem
EndPaint
CharUpperA
GetCapture
SetMenuItemBitmaps
SetMenu
SetRect
ReuseDDElParam
GetWindowRect
ValidateRect
SetWindowTextW
GetDialogBaseUnits
GetIconInfo
SetWindowLongA
OffsetRect
ReleaseDC
CheckDlgButton
IsZoomed
DrawEdge
MapVirtualKeyExW
MsgWaitForMultipleObjects
GetSysColorBrush
PostThreadMessageA
LoadCursorW
IsCharLowerW
SetCapture
FillRect
UpdateWindow
GetWindowThreadProcessId
LockWindowUpdate
GetMenuDefaultItem
SetCursorPos
CreateDialogParamA
CallWindowProcW
GetUpdateRgn
ScrollWindowEx
CopyRect
GetDesktopWindow
GetTopWindow
CreateDialogIndirectParamW
MessageBoxA
GetAsyncKeyState
EnableScrollBar
IsWindow
ReleaseCapture
SetRectEmpty
AdjustWindowRect
RegisterClassW
IsRectEmpty
DestroyCursor
wvsprintfA
TranslateAcceleratorA
GetClientRect
DrawStateW
GetDCEx
CloseClipboard
IsCharLowerA
SetTimer
DefWindowProcW
SetFocus
GetWindowLongA
SetClipboardData
CreatePopupMenu
ExitWindowsEx
GetWindowTextLengthA
CreateAcceleratorTableA
UnhookWindowsHookEx
SetMenuDefaultItem
GetMenuItemCount
SystemParametersInfoA
ModifyMenuA
GetParent
GetFocus
DrawFrameControl
SetParent
IsClipboardFormatAvailable
RegisterWindowMessageA
DrawIcon
ValidateRgn
CallWindowProcA
LoadIconW
DeferWindowPos
GetMessageTime
SetMenuItemInfoA
RemoveMenu
GetCursorPos
ShowOwnedPopups
AppendMenuA
ClientToScreen
GetSystemMenu
GetDlgCtrlID
DrawMenuBar
SetWindowsHookExA
EnumChildWindows
GetMenuCheckMarkDimensions
LoadIconA
SetWindowContextHelpId
LoadAcceleratorsA
SetCursor
UnregisterHotKey
EndDeferWindowPos
DeleteMenu
MapVirtualKeyExA
WaitMessage
BeginDeferWindowPos
DestroyWindow
InflateRect
GetForegroundWindow
AdjustWindowRectEx
IsDialogMessageA
GetMenuItemInfoA
GetSubMenu
LoadStringA
HideCaret
DefDlgProcA
SendDlgItemMessageA
GetMessagePos
PostQuitMessage
GetMenuItemID
RegisterHotKey
CreateWindowExW
GetSystemMetrics
DispatchMessageA
SetDlgItemTextA
GetWindowLongW
LoadImageW
GetClipboardData
UnregisterClassA
InvalidateRgn
RegisterClassExA
SendMessageW
LoadCursorA
CreateIconIndirect
MoveWindow
DdeClientTransaction
UnionRect
PeekMessageA
GetMenuStringA
IsIconic
IsMenu
SetWindowTextA
IntersectRect
GetNextDlgTabItem
GetWindowDC
IsWindowEnabled
GetActiveWindow
GetWindowTextA
WinHelpA
MapWindowPoints
DispatchMessageW
TranslateMessage

shlwapi

PathIsDirectoryA
PathStripToRootA
PathUnquoteSpacesA
PathRemoveFileSpecA
PathGetDriveNumberA
PathQuoteSpacesA
SHDeleteKeyA
PathIsUNCServerA
PathAddBackslashA
PathRenameExtensionA
PathBuildRootA
PathFileExistsA
PathIsRootA
PathSkipRootA
UrlUnescapeA
PathRemoveBackslashA
PathStripPathA
PathIsUNCA
PathAppendA
PathIsUNCServerShareA
PathFindExtensionA
PathFindFileNameA
PathRemoveExtensionA

ole32

OleCreateMenuDescriptor
OleCreateStaticFromData
OleDuplicateData
CreateItemMoniker
CreateFileMoniker
OleRegGetMiscStatus
StgCreateDocfile
OleSetClipboard
GetHGlobalFromILockBytes
CoTaskMemRealloc
CLSIDFromString
CoRevokeClassObject
IsAccelerator
OleIsCurrentClipboard
OleUninitialize
StgCreateDocfileOnILockBytes
CoTaskMemFree
CoCreateInstance
GetRunningObjectTable
OleCreateLinkToFile
OleCreateFromData
ReleaseStgMedium
OleSave
OleDestroyMenuDescriptor
OleRegEnumVerbs
CoGetMalloc
CreateStreamOnHGlobal
RevokeDragDrop
StringFromCLSID
ReadFmtUserTypeStg
OleGetClipboard
OleInitialize
CreateDataAdviseHolder
OleSetContainedObject
OleSaveToStream
CoDisconnectObject
CoRegisterMessageFilter
CreateOleAdviseHolder
DoDragDrop
CoTreatAsClass
OleCreateLinkFromData
OleFlushClipboard
GetClassFile
CreateILockBytesOnHGlobal
RegisterDragDrop
StgOpenStorage
CreateGenericComposite
CoLockObjectExternal
WriteClassStg
OleTranslateAccelerator
ReadClassStg
CLSIDFromProgID
OleGetIconOfClass
CreateBindCtx
WriteClassStm
CoFreeUnusedLibraries
StgIsStorageFile
CoGetClassObject
CoInitialize
OleIsRunning
StgIsStorageILockBytes
OleLockRunning
OleCreateFromFile
CreateClassMoniker
WriteFmtUserTypeStg
OleCreate
StgOpenStorageOnILockBytes
OleSetMenuDescriptor
SetConvertStg
OleRun
CoTaskMemAlloc

advapi32

AllocateAndInitializeSid
RegisterServiceCtrlHandlerA
RegQueryValueExA
CopySid
ReportEventW
InitializeAcl
AdjustTokenPrivileges
RegCloseKey
CreateServiceA
StartServiceA
OpenServiceA
RegQueryInfoKeyW
RevertToSelf
RegOpenKeyExA
RegEnumKeyExA
InitializeSecurityDescriptor
StartServiceCtrlDispatcherA
OpenProcessToken
RegDeleteKeyW
CloseServiceHandle
RegEnumValueA
CryptDestroyHash
IsValidSecurityDescriptor
GetFileSecurityW
RegQueryValueExW
IsValidSid
RegOpenKeyExW
AccessCheck
RegEnumKeyA
RegOpenKeyA
SetSecurityDescriptorDacl
CryptHashData
RegCreateKeyA
DeleteService
RegOpenCurrentUser
EqualSid
ReportEventA
GetFileSecurityA
QueryServiceStatus
CryptReleaseContext
CryptCreateHash
RegSetValueA
RegDeleteKeyA
RegDeleteValueA
DeregisterEventSource
ControlService
OpenServiceW
CryptGenRandom
RegCreateKeyExW
RegCreateKeyExA
SetFileSecurityA
RegQueryInfoKeyA
GetSecurityDescriptorDacl
GetTokenInformation
CryptAcquireContextA
OpenSCManagerW
OpenThreadToken
RegSetValueExW
ConvertStringSecurityDescriptorToSecurityDescriptorW
LookupPrivilegeValueA
RegOpenKeyW
RegSetValueExA

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d148ff18744bd9b89f7f9517c2298fab

Headers

File Characteristics

Imports

kernel32

comdlg32

comctl32

shell32

oleaut32

user32

shlwapi

ole32

advapi32

Sections

.text Size: 84KB - Virtual size: 80KB

.rdata Size: 88KB - Virtual size: 85KB

.data Size: 72KB - Virtual size: 96KB

.rsrc Size: 64KB - Virtual size: 62KB

.text
Size: 84KB - Virtual size: 80KB

.rdata
Size: 88KB - Virtual size: 85KB

.data
Size: 72KB - Virtual size: 96KB

.rsrc
Size: 64KB - Virtual size: 62KB