6f77ca30f6df296167712f7f6f26949124c38a926502dd7e06ad5aae6c0b5ba5

Sharing

Copy URL Twitter E-mail

General

Target

6f77ca30f6df296167712f7f6f26949124c38a926502dd7e06ad5aae6c0b5ba5
Size

880KB
MD5

e1b9ec27b6ecca1d4f8ba16e90e9a16b
SHA1

ab9eb9bc3f30a423ae79312d4a45ade845bf7fbf
SHA256

6f77ca30f6df296167712f7f6f26949124c38a926502dd7e06ad5aae6c0b5ba5
SHA512

05f017b14f71139502343b84692ce45c1a7276eab54bb5f9f8ec0928952e2f10ac821ea3f108dde82f2dd94271ab9eaca265f72ec3204b359f284712df2bac32
SSDEEP

24576:UBqCeUUdy1Ox5e2X7kMZVwt8foRUhk6SAcTt52mRBGOqUtZ:cqCPs4Uhk6zcjtDGM

Score

N/A

Malware Config

Signatures

Files

6f77ca30f6df296167712f7f6f26949124c38a926502dd7e06ad5aae6c0b5ba5
.exe windows x86

c1cdd8959cb1707dd22625362a9443d8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateIconIndirect
DdeCmpStringHandles
DefWindowProcA
GetClassInfoExW
RegisterDeviceNotificationA
GetLastActivePopup
DdeDisconnect
MenuItemFromPoint
SetClassLongA
DrawIcon
LoadStringA
DdeConnectList
RegisterClassExA
ReuseDDElParam
CreateWindowExW
EnumWindowStationsW
DestroyWindow
BlockInput
InsertMenuItemA
GetMenuStringW
DdeReconnect
GetKeyboardLayoutList
ShowWindow
ExcludeUpdateRgn
TranslateAcceleratorW
MessageBoxA
GetGuiResources
SetDeskWallpaper
LoadKeyboardLayoutW
SetDlgItemTextA
SetWindowPlacement
EndDeferWindowPos
GetClassInfoA
RegisterClassA
ReplyMessage
SetMenuItemInfoA

comctl32

CreatePropertySheetPage
DrawStatusText
ImageList_EndDrag
DrawInsert
ImageList_Copy
ImageList_SetFlags
CreateStatusWindow
ImageList_Merge
ImageList_SetFilter
ImageList_AddMasked
ImageList_Replace
DestroyPropertySheetPage
InitCommonControlsEx
MakeDragList
ImageList_SetOverlayImage
ImageList_SetBkColor
CreatePropertySheetPageW
CreateStatusWindowW
ImageList_GetBkColor
CreateToolbarEx
CreateMappedBitmap
ImageList_AddIcon
_TrackMouseEvent
ImageList_GetFlags
ImageList_Destroy

kernel32

GetLocaleInfoA
UnhandledExceptionFilter
GetLongPathNameW
AddAtomA
GetStringTypeA
GetNumberFormatA
IsDebuggerPresent
LeaveCriticalSection
VirtualFree
UnlockFile
IsBadWritePtr
lstrcmp
GetConsoleCursorInfo
GetOEMCP
GetSystemDirectoryW
GetConsoleScreenBufferInfo
GetEnvironmentStringsW
IsValidLocale
GetStdHandle
VirtualAlloc
TlsGetValue
GetCommandLineA
InterlockedExchange
LCMapStringA
GetLastError
FlushFileBuffers
GetTimeFormatA
GetStringTypeW
SetHandleCount
GetModuleFileNameA
CompareStringW
GetCurrentProcessId
GetProfileSectionW
QueryPerformanceCounter
DosDateTimeToFileTime
CreateMutexA
FreeEnvironmentStringsA
GetConsoleMode
WriteFile
OpenEventA
EnumResourceLanguagesW
FreeLibrary
LCMapStringW
FreeEnvironmentStringsW
GlobalSize
DeleteFileW
RtlUnwind
InitializeCriticalSection
GetProcAddress
GetCurrentThreadId
TlsAlloc
RemoveDirectoryW
ReadFile
TerminateProcess
WideCharToMultiByte
GetVersionExA
GetCPInfo
SetConsoleTitleA
WriteConsoleInputA
CloseHandle
FindResourceExW
RtlZeroMemory
GetShortPathNameA
GetTimeZoneInformation
HeapSize
TlsSetValue
GetModuleHandleA
GlobalLock
LoadLibraryA
GetPrivateProfileStructW
EnumSystemLocalesA
GetLocaleInfoW
SetEnvironmentVariableA
EnumDateFormatsA
HeapReAlloc
ExitProcess
HeapFree
LocalSize
TlsFree
GetCurrentThread
GetTickCount
SetFilePointer
SetLastError
EnterCriticalSection
CompareStringA
OpenSemaphoreW
GetEnvironmentStrings
GetSystemTimeAsFileTime
VirtualProtect
lstrcmpiA
OpenMutexA
HeapAlloc
GetSystemDefaultLCID
lstrcat
GetDateFormatA
FlushInstructionCache
SetFileAttributesA
EnumSystemCodePagesA
RemoveDirectoryA
GetCurrentProcess
GetDiskFreeSpaceW
GetACP
GetNamedPipeHandleStateW
GetFileType
GetExitCodeThread
IsValidCodePage
GlobalFix
SetFileTime
HeapCreate
ResetEvent
CreateDirectoryExW
DeleteCriticalSection
GetThreadContext
EnumCalendarInfoExA
VirtualQuery
GlobalFindAtomW
CreateMailslotA
HeapDestroy
CommConfigDialogW
LocalFileTimeToFileTime
EnumDateFormatsExA
AddAtomW
GetStartupInfoA
GetUserDefaultLCID
HeapValidate
CreateProcessA
GetSystemInfo
WriteConsoleOutputAttribute
TransmitCommChar
SetVolumeLabelW
FindAtomW
MultiByteToWideChar
VirtualLock
SetStdHandle
FindFirstFileA

shell32

SHBrowseForFolder
DragQueryPoint

gdi32

gdiPlaySpoolStream
CreateDCW
DeleteDC
SetTextAlign
GetDeviceCaps
GetEnhMetaFileDescriptionW
CancelDC
GetTextCharset
CreateDIBSection
CloseMetaFile
SetFontEnumeration
RemoveFontResourceW
SetWorldTransform
FixBrushOrgEx
GetRasterizerCaps
SetTextJustification
EndPath
GetROP2
ColorCorrectPalette
SetStretchBltMode
ExtFloodFill
SwapBuffers
GetBkColor
GetTextExtentPoint32A
GetObjectW
DeviceCapabilitiesExW
GetTextColor

advapi32

RegFlushKey
RegCreateKeyExA
InitiateSystemShutdownA
CryptGenRandom
AbortSystemShutdownW
LookupPrivilegeValueW
CryptSetHashParam
InitiateSystemShutdownW
CryptGetUserKey
RegDeleteKeyA
CryptEnumProviderTypesW
CryptReleaseContext
LookupPrivilegeValueA
CryptSetProviderW
CryptEnumProvidersW
CryptImportKey
CryptSetProvParam
RegQueryMultipleValuesA
DuplicateTokenEx
RegQueryValueExA

comdlg32

PrintDlgA
FindTextA
GetFileTitleA
GetFileTitleW

Sections

.text
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 404KB - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1cdd8959cb1707dd22625362a9443d8

Headers

File Characteristics

Imports

user32

comctl32

kernel32

shell32

gdi32

advapi32

comdlg32

Sections

.text Size: 232KB - Virtual size: 231KB

.rdata Size: 404KB - Virtual size: 400KB

.data Size: 140KB - Virtual size: 137KB

.rsrc Size: 100KB - Virtual size: 96KB

.text
Size: 232KB - Virtual size: 231KB

.rdata
Size: 404KB - Virtual size: 400KB

.data
Size: 140KB - Virtual size: 137KB

.rsrc
Size: 100KB - Virtual size: 96KB