32be5112e716610bfffa5c5c6c97bc406cb514131ec21c2c33084c1a980d0861

Sharing

Copy URL Twitter E-mail

General

Target

32be5112e716610bfffa5c5c6c97bc406cb514131ec21c2c33084c1a980d0861
Size

9.4MB
MD5

671cd4099a535e784a3889896ae9a758
SHA1

6a1e7b0df357dde4acc4b8c47118a136ff4f761c
SHA256

32be5112e716610bfffa5c5c6c97bc406cb514131ec21c2c33084c1a980d0861
SHA512

df142b3fdf1b7f6560185c436fa0a3cf18d549784b44406f468ca057f652f61a5ed0f531431b907656e704ece489ea5871bd625bff4e24d7782717fec7414a16
SSDEEP

98304:IdYzDYuhjZAsNLossLJygeEEtEE8EEUQEO2FYL+pFtFlO2yRkLqg:7hF7osYSEEtEE8EEAXqg

Score

N/A

Malware Config

Signatures

Files

32be5112e716610bfffa5c5c6c97bc406cb514131ec21c2c33084c1a980d0861
.exe windows x86

c2e0e4d3f12c21c41bf7e3b3c7d1d9dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersInfo
CreateIpNetEntry

psapi

EnumProcesses
EnumProcessModules
GetModuleFileNameExA

kernel32

RtlUnwind
RaiseException
HeapSize
GetACP
GetTimeZoneInformation
HeapDestroy
HeapCreate
GetConsoleCP
GetConsoleMode
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetDriveTypeA
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetExitCodeProcess
SetEnvironmentVariableA
InitializeCriticalSection
DeleteCriticalSection
Sleep
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceA
GetWindowsDirectoryA
OpenFile
WinExec
MulDiv
GlobalLock
GlobalAlloc
GlobalUnlock
GlobalHandle
GlobalFree
GetModuleFileNameA
GetTickCount
CreateThread
DeleteFileA
CreateFileA
CloseHandle
CopyFileA
MultiByteToWideChar
FindFirstFileA
FindClose
lstrlenA
WriteFile
lstrcpyA
WaitForSingleObject
GetFileSize
ReadFile
SetThreadPriority
ExitThread
OpenProcess
TerminateProcess
SetLastError
GetLastError
LoadLibraryA
GetModuleHandleA
GetProcAddress
LoadLibraryExA
FreeLibrary
GetComputerNameA
GetSystemDirectoryA
GetTempPathA
GetFileAttributesA
GetVersion
GetCurrentProcessId
GetCurrentProcess
CreateDirectoryA
CreateProcessA
FormatMessageA
LocalFree
RemoveDirectoryA
CreateEventA
ResumeThread
SetEvent
CreateMutexA
MoveFileA
CompareStringW
lstrlenW
InterlockedExchange
CompareStringA
ReleaseMutex
InterlockedIncrement
InterlockedDecrement
GetSystemInfo
VirtualFree
DuplicateHandle
VirtualAlloc
GetCurrentThread
GetVersionExA
SuspendThread
GlobalSize
FreeResource
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetModuleFileNameW
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetThreadLocale
GetVolumeInformationA
GetFullPathNameA
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
lstrcmpA
GetFileTime
GetProfileIntA
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
WritePrivateProfileStringA
LocalAlloc
TlsGetValue
GlobalReAlloc
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetCPInfo
GetOEMCP
SetErrorMode
GetCurrentDirectoryA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
HeapReAlloc
VirtualProtect
VirtualQuery
ExitProcess
GetCommandLineA
GetProcessHeap
GetStartupInfoA

user32

EndDialog
GetMenuItemID
GetMenuItemCount
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
GetMenuState
CheckMenuItem
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetKeyState
ValidateRect
RegisterWindowMessageA
GetActiveWindow
GetFocus
GetCapture
GetSysColor
ShowScrollBar
CharUpperA
SetClipboardData
EmptyClipboard
GetParent
EnableMenuItem
CreatePopupMenu
IsWindowVisible
GetForegroundWindow
GetWindowDC
IsWindow
DestroyIcon
FindWindowA
RedrawWindow
KillTimer
AppendMenuA
GetSystemMenu
ChangeDisplaySettingsA
SendInput
ExitWindowsEx
ShowCursor
GetWindowThreadProcessId
GetWindowTextA
GetWindow
GetNextDlgTabItem
SetLayeredWindowAttributes
GetWindowLongA
mouse_event
SetCursorPos
PostThreadMessageA
OffsetRect
ReleaseCapture
ClipCursor
SetCapture
LoadIconA
DestroyCursor
CreateIconIndirect
wsprintfA
EqualRect
ScreenToClient
AdjustWindowRectEx
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsRectEmpty
DestroyWindow
UpdateWindow
ShowWindow
CopyRect
DispatchMessageA
TranslateMessage
PeekMessageA
SetRect
GetSystemMetrics
PostMessageA
ReleaseDC
DrawIcon
GetIconInfo
GetDC
GetCursor
GetSubMenu
LoadMenuA
GetScrollPos
PtInRect
GetCursorPos
SetScrollRange
SetScrollPos
LoadCursorA
SetCursor
IsWindowEnabled
GetDlgItem
CreateDialogIndirectParamA
SetActiveWindow
GetWindowPlacement
IsIconic
SystemParametersInfoA
IntersectRect
SetWindowPos
CallWindowProcA
InvalidateRect
SetTimer
DefWindowProcA
GetDlgCtrlID
FindWindowExA
GetMenu
SetForegroundWindow
TrackPopupMenu
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
UnhookWindowsHookEx
GetTopWindow
GetLastActivePopup
GetWindowTextLengthA
SetFocus
RemovePropA
GetPropA
SetPropA
GetClassNameA
MessageBoxA
PostQuitMessage
SendMessageA
EnableWindow
OpenClipboard
GetClipboardData
CloseClipboard
GetClientRect
LoadBitmapA
BringWindowToTop
GetWindowRect
GetDesktopWindow
SetWindowRgn
GetClassLongA
IsChild
WinHelpA
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
MessageBeep
UnregisterClassA
GetSysColorBrush
WindowFromPoint
SetWindowContextHelpId
MapDialogRect
RegisterClipboardFormatA
IsClipboardFormatAvailable
CharNextA
DestroyMenu
InflateRect
EndPaint
BeginPaint
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
MoveWindow
SetWindowTextA
IsDialogMessageA
SetWindowLongA
SendDlgItemMessageA

gdi32

GetRgnBox
GetMapMode
GetTextColor
GetBkColor
CreatePatternBrush
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
MoveToEx
LineTo
SetMapMode
RestoreDC
SaveDC
CreateRectRgnIndirect
CopyMetaFileA
GetTextExtentPoint32A
CreatePolygonRgn
SetBrushOrgEx
GetPixel
GetDCOrgEx
GetClipBox
CreateDIBSection
CreateFontA
CreateDCA
SetDIBits
RealizePalette
SelectPalette
ExtTextOutA
RoundRect
SetBkMode
SetBkColor
SetTextColor
GetTextExtentPointA
CreateHatchBrush
PatBlt
OffsetRgn
CombineRgn
CreateRectRgn
Ellipse
GetStockObject
SelectObject
DeleteDC
GetDIBits
SetBitmapBits
CreateBitmap
GetBitmapBits
BitBlt
CreateCompatibleBitmap
Rectangle
CreatePen
CreateRoundRectRgn
CreateFontIndirectA
GetDeviceCaps
StretchBlt
GetObjectA
CreateCompatibleDC
DeleteObject
CreateSolidBrush

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

OpenServiceA
CloseServiceHandle
StartServiceA
ControlService
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegDeleteValueA
GetUserNameA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyA
RegCreateKeyA
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
OpenSCManagerA

shell32

SHBrowseForFolderA
SHGetPathFromIDListA
DragQueryFileA
SHGetSpecialFolderPathA
ShellExecuteA
Shell_NotifyIconA

comctl32

InitCommonControlsEx

shlwapi

PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathFindFileNameA

oledlg

ord8

ole32

CoRegisterMessageFilter
CoRevokeClassObject
CreateStreamOnHGlobal
StgOpenStorageOnILockBytes
CoGetClassObject
OleRun
CLSIDFromString
OleUninitialize
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleDuplicateData
ReleaseStgMedium
CoTaskMemFree
CoTaskMemAlloc
CoFreeUnusedLibraries
CoUninitialize
CLSIDFromProgID
OleInitialize
OleCreateStaticFromData
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoInitialize
CoCreateInstance

oleaut32

OleCreateFontIndirect
SysAllocStringLen
VariantChangeType
SysAllocStringByteLen
SysStringLen
SysFreeString
SysAllocString
VariantInit
GetActiveObject
VariantTimeToSystemTime
SystemTimeToVariantTime
VariantCopy
SafeArrayDestroy
VariantClear

ws2_32

gethostbyname
WSAStartup
WSAGetLastError
WSARecvFrom
WSASendTo
WSAJoinLeaf
WSAStringToAddressA
WSAIoctl
WSASocketA
bind
inet_ntoa
inet_addr
WSACleanup
send
recv
connect
htons
setsockopt
closesocket
socket

winmm

mmioDescend
mmioCreateChunk
mmioOpenA
mmioRead
mmioWrite
mmioClose
mmioAscend
waveInGetDevCapsA
waveInGetErrorTextA
waveInGetNumDevs
waveInUnprepareHeader
waveInClose
waveInReset
waveInStop
waveInStart
waveInAddBuffer
waveInPrepareHeader
waveInOpen
timeGetTime
waveOutWrite
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutClose
waveOutReset
waveOutSetVolume
waveOutOpen

gdiplus

GdipDeleteGraphics
GdipSetSmoothingMode
GdipFillRectangleI
GdipCreateSolidFill
GdipDeleteBrush
GdipAlloc
GdipCloneBrush
GdipFree
GdipGetDC
GdipCreateFontFromLogfontA
GdipDrawCurve
GdipReleaseDC
GdipDrawString
GdipSetPenDashStyle
GdipDrawRectangleI
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipCloneImage
GdipDrawImagePointRectI
GdipDrawImageRectRect
GdiplusStartup
GdiplusShutdown
GdipSetPenLineJoin
GdipSetPenLineCap197819
GdipDeleteFont
GdipDrawLines
GdipCreatePen1
GdipDrawPolygon
GdipDrawLineI
GdipDrawEllipseI
GdipDeletePen
GdipCreateFromHDC

setupapi

SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList
SetupDiSetClassInstallParamsA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo

rpcrt4

UuidFromStringA

msacm32

acmFormatSuggest
acmFormatTagDetailsA
acmMetrics
acmFormatChooseA

msvfw32

ICSeqCompressFrameStart
DrawDibEnd
DrawDibBegin
DrawDibOpen
ICSeqCompressFrameEnd
ICCompressorFree
ICGetInfo
ICInfo
ICSeqCompressFrame
ICDecompress
ICClose
ICSendMessage
ICOpen
ord2
DrawDibClose

avifil32

AVIFileOpenA
AVIFileCreateStreamA
AVIMakeCompressedStream
AVIStreamSetFormat
AVIStreamWrite
AVISaveOptionsFree
AVIFileRelease
AVIFileInit
AVIFileExit
AVIFileGetStream
CreateEditableStream
AVIStreamOpenFromFileA
AVIStreamInfoA
AVIStreamReadFormat
AVIStreamStart
AVISaveVW
AVIStreamRelease

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 6.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7.8MB - Virtual size: 7.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2e0e4d3f12c21c41bf7e3b3c7d1d9dc

Headers

File Characteristics

Imports

iphlpapi

psapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

winmm

gdiplus

setupapi

rpcrt4

msacm32

msvfw32

avifil32

avicap32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 244KB - Virtual size: 240KB

.data Size: 40KB - Virtual size: 6.1MB

.rsrc Size: 7.8MB - Virtual size: 7.8MB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 244KB - Virtual size: 240KB

.data
Size: 40KB - Virtual size: 6.1MB

.rsrc
Size: 7.8MB - Virtual size: 7.8MB