6d4f8a6a2b80fe229b24fb3405101fcf8d472a3cec2f26d8600fc9708d65275a

Sharing

Copy URL Twitter E-mail

General

Target

6d4f8a6a2b80fe229b24fb3405101fcf8d472a3cec2f26d8600fc9708d65275a
Size

508KB
MD5

239fe3c1f88a9c4d1c53e58ccee6b8e6
SHA1

f17a3c43abee3407cffeffff12608d824934a21a
SHA256

6d4f8a6a2b80fe229b24fb3405101fcf8d472a3cec2f26d8600fc9708d65275a
SHA512

e39c028eeb0ca59a96f633ec59776245a75bf14cb9a03c1195a214cb30946857980aa4f7fa27ce9b5c4c7ac7733de333c95ca0582890b4785fad3ea8f74f2983
SSDEEP

12288:sDsw27cROVYsZjv3IHXoJ4b5V4bQQrPlFXqgUVNKC9vz+pb:sDstcCY+VEebRrtHUNKQz+pb

Score

N/A

Malware Config

Signatures

Files

6d4f8a6a2b80fe229b24fb3405101fcf8d472a3cec2f26d8600fc9708d65275a
.exe windows x86

6f10e4ac5e6df181366ace8c117580c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

WriteClassStm
OleUninitialize
CreateFileMoniker
OleDuplicateData
OleIsCurrentClipboard
SetConvertStg
OleDestroyMenuDescriptor
WriteFmtUserTypeStg
CreateDataAdviseHolder
StringFromGUID2
OleLoad
CoTaskMemFree
CoGetInterfaceAndReleaseStream
CoMarshalInterface
CoUnmarshalInterface
OleFlushClipboard
OleRegGetMiscStatus
RegisterDragDrop
OleTranslateAccelerator
CoTaskMemAlloc
CLSIDFromString
StgIsStorageFile
CoGetMalloc
CoGetClassObject
OleCreateMenuDescriptor
CLSIDFromProgID
StgCreateDocfile
ReadClassStg
StringFromCLSID
CoTreatAsClass
CreateItemMoniker
OleSaveToStream
GetClassFile
CoFreeUnusedLibraries
CoLockObjectExternal
CreateGenericComposite
CoRegisterClassObject
OleSetClipboard
CoRevokeClassObject
CoCreateInstance
CoReleaseMarshalData
CreateStreamOnHGlobal
CoUninitialize
CoLoadLibrary
CoRegisterMessageFilter
GetHGlobalFromILockBytes
IsAccelerator
GetRunningObjectTable
OleQueryCreateFromData
OleRun
ReadFmtUserTypeStg
OleQueryLinkFromData
CreateOleAdviseHolder
CoInitialize
CoDisconnectObject
OleIsRunning
StgOpenStorage
CoCreateGuid
OleInitialize
CreateBindCtx
ReleaseStgMedium
OleLockRunning
OleCreateFromData
CoInitializeEx
CoTaskMemRealloc
OleGetClipboard
StgOpenStorageOnILockBytes
WriteClassStg
OleSetContainedObject
StgIsStorageILockBytes
DoDragDrop
OleRegEnumVerbs

kernel32

GetTimeZoneInformation
GetSystemDirectoryA
GetSystemTimeAsFileTime
CompareStringW
IsBadCodePtr
FileTimeToLocalFileTime
LoadLibraryExW
lstrcpyA
GetThreadLocale
LCMapStringA
GetModuleFileNameA
GetDateFormatA
Sleep
VirtualQuery
TerminateProcess
GetVersionExA
GetFileInformationByHandle
VirtualFree
GetTickCount
HeapSize
GetStdHandle
GlobalAddAtomA
GetExitCodeThread
CompareStringA
lstrcpynA
GetThreadTimes
GlobalDeleteAtom
WriteFile
GetLocalTime
GlobalFree
ReleaseMutex
HeapCreate
IsBadReadPtr
FatalAppExitA
SetEndOfFile
FlushInstructionCache
MoveFileA
GlobalFindAtomA
LockResource
GetOEMCP
LoadLibraryA
GetProcAddress
GetComputerNameA
DuplicateHandle
GetStringTypeW
SetHandleCount
CreateFileA
GetSystemTime
GetStartupInfoW
GetWindowsDirectoryW
GetCurrentThreadId
HeapAlloc
GetVersion
VirtualAlloc
lstrlenA
FindResourceA
LCMapStringW
OpenEventA
GetCommandLineA
DeleteFileA
GetUserDefaultLCID
FormatMessageA
SetStdHandle
GetModuleFileNameW
GetEnvironmentStrings
FreeLibrary
GetEnvironmentStringsW
SizeofResource
HeapFree
lstrlenW
GetCPInfo
WritePrivateProfileStringA
GetDriveTypeA
WideCharToMultiByte
GetACP
CreateDirectoryA
InitializeCriticalSection
SetFilePointer
ExitProcess
CreateProcessW
EnumSystemLocalesA
GetPrivateProfileSectionA
RtlUnwind
SetEvent
QueryPerformanceFrequency
InterlockedDecrement
lstrcatA
MoveFileW
FileTimeToSystemTime
DebugBreak
GetModuleHandleW
SetCurrentDirectoryW
CreateMutexA
DeleteFileW
GlobalGetAtomNameA
GetCommandLineW
_llseek
GetStartupInfoA
GetCurrentProcessId
WriteConsoleW
MapViewOfFile
FindResourceW
GetTimeFormatA
GetLongPathNameA
UnlockFile
QueryPerformanceCounter
InterlockedExchange
GetLocaleInfoW
InterlockedIncrement
ExpandEnvironmentStringsA
GlobalSize
GetTempPathA
SearchPathA
GetStringTypeA
GlobalMemoryStatus
GetShortPathNameA
GetTempFileNameA
GetFileAttributesW
FlushFileBuffers
GlobalHandle
GetFileType
GlobalLock
InterlockedExchangeAdd
SetUnhandledExceptionFilter
IsDebuggerPresent
OpenFile
IsValidCodePage
GetProcessHeap
FindClose
LeaveCriticalSection
LoadLibraryExA
GetLocaleInfoA
OpenMutexA
HeapReAlloc
FindNextFileW
CloseHandle
HeapDestroy
GetCurrentThread
GlobalFlags
GetModuleHandleA
GetFileTime
MoveFileExA
GetPrivateProfileSectionNamesA
_lwrite
lstrcpyW
GetPrivateProfileIntA
lstrcmpA
GetConsoleOutputCP
LockFile
TlsSetValue
CreateThread
lstrcatW
EnterCriticalSection
GetFileAttributesA
FreeResource
ReadFile
GetVolumeInformationA
SetConsoleCtrlHandler
GlobalAlloc
GetEnvironmentVariableA
WriteConsoleA
FindResourceExW
GetLastError
VirtualUnlock
GetSystemInfo
CreateEventA
GlobalUnlock
SetEnvironmentVariableA
TlsGetValue
LocalAlloc
TlsAlloc
WaitForSingleObject
GetProfileStringA
DeleteCriticalSection
InterlockedCompareExchange
SetLastError
GetCurrentDirectoryA
ExitThread
lstrcmpiW
MulDiv
GetTempPathW
FreeEnvironmentStringsW
SystemTimeToFileTime
GetFullPathNameA
MultiByteToWideChar
WritePrivateProfileSectionA
TlsFree
lstrcmpW
LocalFree
SetErrorMode
lstrcmpiA
CreateEventW
GetConsoleMode
RaiseException
FreeEnvironmentStringsA
GetConsoleCP
GetCurrentProcess
FindFirstFileW
RemoveDirectoryA
DeviceIoControl
UnhandledExceptionFilter
GetFileSize
IsValidLocale

oleaut32

LoadTypeLi

user32

GetWindowTextLengthW
SetMenu
GetDlgItemTextA
BeginDeferWindowPos
DestroyCursor
GetClipboardData
IsChild
FillRect
SetParent
CallNextHookEx
WinHelpW
DestroyWindow
OffsetRect
LoadCursorA
GetClassInfoExA
RemoveMenu
GetMenuItemID
GetPropA
EnableMenuItem
CreateWindowExA
wsprintfA
GetWindow
SetPropA
GetMenuCheckMarkDimensions
WindowFromPoint
ChildWindowFromPoint
GetUpdateRect
BringWindowToTop
GetLastActivePopup
SetWindowLongA
GetNextDlgGroupItem
GetDlgItemInt
TabbedTextOutA
GetDCEx
GetDlgItem
GetProcessWindowStation
PtInRect
LoadBitmapA
SetFocus
GetWindowDC
DrawEdge
ShowOwnedPopups
EndPaint
CopyAcceleratorTableA
GetDlgCtrlID
InvertRect
ShowCaret
PostQuitMessage
SystemParametersInfoW
ReleaseDC
RemovePropA
ValidateRect
GetWindowLongW
LoadStringW
RemovePropW
AppendMenuA
GetMenu
CreateDialogIndirectParamW
CreateMenu
LoadImageA
IsIconic
GetMenuStringA
SetCapture
RedrawWindow
IsWindowEnabled
InvalidateRgn
DrawIconEx
ClientToScreen
SetClipboardViewer
OpenClipboard
GetSysColorBrush
GetKeyState
GetWindowTextLengthA
CallWindowProcA
EnableWindow
HideCaret
UpdateWindow
ScreenToClient
PostThreadMessageA
GetScrollRange
UnhookWindowsHookEx
GetMessageA
GetClassNameW
SetActiveWindow
SetScrollRange
DestroyMenu
LoadImageW
GetCursorPos
FindWindowA
MapVirtualKeyA
GetDesktopWindow
GetWindowTextW
IsWindowVisible
GetCapture
TranslateMessage
SetWindowsHookExW
CreatePopupMenu
EndDeferWindowPos
GetClassInfoExW
BeginPaint
CopyRect
GrayStringW
SetForegroundWindow
GetDoubleClickTime
GetMenuItemCount
SetMenuItemInfoA
GetMenuDefaultItem
InflateRect
LoadMenuW
KillTimer
AppendMenuW
DrawTextExW
PostMessageW
DispatchMessageW
DispatchMessageA
GetTopWindow
GetClassInfoA
GetMenuItemInfoA
EnumWindows
GetTabbedTextExtentA
WinHelpA
SetDlgItemTextA
DrawStateA
GetMenuItemInfoW
IsWindow
wsprintfW
SetDlgItemTextW
CreateDialogIndirectParamA
UnregisterClassW
RegisterClassExA
LoadAcceleratorsA
CloseClipboard
SystemParametersInfoA
wvsprintfA
ShowScrollBar
GetClientRect
FindWindowW
GetNextDlgTabItem
ShowWindow
UnregisterClassA
LoadCursorW
SendDlgItemMessageA
PostMessageA
GetWindowRect
SetRectEmpty
LoadStringA
ReleaseCapture
UnionRect
GetClassLongA
TrackPopupMenu
RegisterClipboardFormatA
GetMessageW
SetWindowLongW
MapWindowPoints
ModifyMenuW
DeferWindowPos
DefWindowProcA
MoveWindow
GetMenuState
LoadIconA
GetKeyboardState
DestroyAcceleratorTable
GetClassInfoW
SetWindowContextHelpId
DrawFocusRect
SetRect
SetWindowTextA
PeekMessageA
SetClassLongW
GetMessageTime
DefMDIChildProcA
CharUpperW
DrawFrameControl
IsClipboardFormatAvailable
MonitorFromWindow
EmptyClipboard
IsMenu
CharNextA
DefDlgProcA
GetParent
GetDC
SetCursor
CharLowerA
GetActiveWindow
GetMenuItemRect
GetScrollPos
DestroyIcon
GetForegroundWindow
GetFocus
GetMenuStringW
CharNextW
DefWindowProcW
SetWindowTextW
MessageBeep
VkKeyScanA
InvalidateRect
SetMenuItemBitmaps
SetTimer
CheckMenuItem
MapDialogRect
TabbedTextOutW
SetScrollPos
GetSystemMetrics
SetWindowRgn
DefFrameProcA
MessageBoxA
RegisterClassA
ModifyMenuA
GetScrollInfo
CheckDlgButton
GetSysColor
LoadIconW
AdjustWindowRectEx
GetSubMenu
EqualRect
SetScrollInfo
CharUpperA
CopyIcon
CreateIconIndirect
LoadMenuA
EndDialog
GetWindowPlacement
DeleteMenu
PeekMessageW
GetMessagePos
CopyAcceleratorTableW
LockWindowUpdate
InsertMenuA
GetClassNameA
GetSystemMenu
CallWindowProcW
GetWindowThreadProcessId
IsZoomed
IsDialogMessageA
SetWindowPos
TranslateAcceleratorA
InsertMenuItemA
GrayStringA
IsRectEmpty
GetWindowTextA
SetClipboardData
SendMessageW
DrawTextW
RegisterWindowMessageA

advapi32

RegCreateKeyExA
RegQueryInfoKeyW
AllocateAndInitializeSid
MapGenericMask
EqualSid
AccessCheck
RegEnumKeyExW
RegisterEventSourceA
GetLengthSid
AdjustTokenPrivileges
OpenServiceW
ControlService
RegCreateKeyW
StartServiceA
AddAccessAllowedAce
GetUserNameW
LookupPrivilegeValueA
OpenServiceA
SetSecurityDescriptorGroup
GetSecurityDescriptorControl
CreateServiceA
RegOpenCurrentUser
CryptEncrypt
GetSecurityInfo
GetSecurityDescriptorDacl
RegOpenKeyW
RegQueryValueExA
RegEnumKeyA
RegDeleteKeyW
RegSetValueExA
SetSecurityDescriptorOwner
CryptAcquireContextA
RegDeleteKeyA
RegCloseKey
RegQueryValueExW
SetServiceStatus
OpenSCManagerW
RegDeleteValueW
RegCreateKeyExW
SetSecurityDescriptorDacl
FreeSid
RegOpenKeyExW
RegSetValueExW
OpenProcessToken
RegDeleteValueA
RegQueryValueW
OpenThreadToken
CloseServiceHandle
StartServiceW
DeleteService
RegOpenKeyExA
ImpersonateSelf
InitiateSystemShutdownA
DeregisterEventSource
InitializeAcl
GetSidSubAuthorityCount
RegQueryValueA
CryptReleaseContext
GetTokenInformation
SetEntriesInAclW
InitializeSecurityDescriptor
RegOpenKeyA

shlwapi

PathCompactPathW
PathAddBackslashW
SHDeleteValueW
PathIsDirectoryW
PathFileExistsW
PathMatchSpecW
PathIsUNCW
StrFormatByteSizeW
UrlCombineW
PathRemoveExtensionW
PathFindFileNameW
PathCombineW
StrTrimW
PathIsRootW
PathIsURLW
PathSetDlgItemPathW
PathRemoveFileSpecW
SHSetValueW
PathFindExtensionW
StrStrIW
StrCatW
PathMakePrettyW

comctl32

ImageList_Destroy
ImageList_SetOverlayImage
ImageList_DragEnter
ImageList_Read
ImageList_DragLeave
CreatePropertySheetPageA
ImageList_Remove
ImageList_GetIcon
ImageList_EndDrag
ImageList_GetIconSize
InitCommonControlsEx
ord17
ImageList_AddMasked
DestroyPropertySheetPage
ImageList_ReplaceIcon
ImageList_Replace
ImageList_DragShowNolock
ImageList_LoadImageA
ImageList_Draw
ImageList_DragMove
ImageList_GetImageCount
ImageList_Create
ImageList_SetDragCursorImage
ImageList_Add
ImageList_GetDragImage
ImageList_GetBkColor
_TrackMouseEvent
ImageList_SetBkColor
ImageList_Merge
ImageList_BeginDrag
ImageList_GetImageInfo
ImageList_Write
PropertySheetA

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 272KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f10e4ac5e6df181366ace8c117580c0

Headers

File Characteristics

Imports

ole32

kernel32

oleaut32

user32

advapi32

shlwapi

comctl32

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 272KB - Virtual size: 271KB

.data Size: 104KB - Virtual size: 124KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 272KB - Virtual size: 271KB

.data
Size: 104KB - Virtual size: 124KB

.rsrc
Size: 24KB - Virtual size: 23KB