9d3abcd3ce945a6bd601748ab220362973f69ae439158629911fd7adcb1652bf

Sharing

Copy URL Twitter E-mail

General

Target

9d3abcd3ce945a6bd601748ab220362973f69ae439158629911fd7adcb1652bf
Size

212KB
MD5

7cd5571c667c30fa5db2934cf4babcac
SHA1

d7880d1024cfe8fa6055634bd120859f6f462fd0
SHA256

9d3abcd3ce945a6bd601748ab220362973f69ae439158629911fd7adcb1652bf
SHA512

2f8f1771efaa64e04161021f5a7c4bf2ffc7b6d4a6e036311d12306a3af6dba38d4a8aa9b9c946a60c138d1908b072d7e009274ddf4ebf96e3962bb332560cde
SSDEEP

3072:+IdO7e3ZJ/R2ZLw0TtBRWioIR7cKT4+Z2hJIWAnnPi19Q6NLe:Y2L/R2hZoI3JZ2XwPS/e

Score

N/A

Malware Config

Signatures

Files

9d3abcd3ce945a6bd601748ab220362973f69ae439158629911fd7adcb1652bf
.exe windows x86

557b443293b8608d9e3810cb693a13ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipSetSmoothingMode
GdipFillRectangleI
GdipFillEllipseI
GdipDrawString
GdipDrawImageRectRectI
GdipCreateFont
GdipCloneBrush
GdipDisposeImage
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipSetTextRenderingHint
GdipCreateFromHDC
GdipSetStringFormatTrimming
GdipSetStringFormatLineAlign
GdipCreateSolidFill
GdipBitmapSetPixel
GdipBitmapGetPixel
GdipGetImageHeight
GdipGetImageWidth
GdipDeleteFont
GdipGetGenericFontFamilySansSerif
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipCloneStringFormat
GdipCreateTexture
GdipGetPenWidth
GdipSetPenMode
GdipGetImageGraphicsContext
GdipDrawBeziersI
GdipDrawRectangleI
GdipSetSolidFillColor
GdipMeasureString
GdipGraphicsClear
GdipFillPolygonI
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipCreateStringFormat
GdipDeletePen
GdipCreatePen1
GdipDeleteBrush
GdipAlloc
GdipSetStringFormatHotkeyPrefix
GdipCreateFromHWND
GdipFree

mfc71u

ord1899
ord5067
ord6271
ord4179
ord5210
ord3397
ord4716
ord4276
ord1591
ord5956
ord5231
ord5229
ord920
ord925
ord929
ord927
ord931
ord2384
ord2404
ord2388
ord2394
ord2392
ord2390
ord2407
ord2402
ord2386
ord2409
ord2397
ord2379
ord2381
ord2399
ord2169
ord2163
ord1513
ord6273
ord3796
ord6275
ord3339
ord4961
ord1353
ord5171
ord1955
ord1647
ord1646
ord1590
ord5196
ord2531
ord2725
ord2829
ord4301
ord2708
ord2856
ord2534
ord2640
ord2527
ord3712
ord3713
ord3703
ord2638
ord3943
ord4480
ord4255
ord3322
ord572
ord764
ord5148
ord5829
ord3985
ord2870
ord5727
ord4314
ord5053
ord3249
ord2340
ord1571
ord5327
ord6293
ord5316
ord6282
ord762
ord1110
ord3677
ord4032
ord4008
ord6272
ord3795
ord6274
ord4320
ord2054
ord2009
ord5579
ord3800
ord1007
ord5096
ord6215
ord5378
ord3826
ord1911
ord2925
ord5220
ord5222
ord2239
ord3942
ord4562
ord5226
ord5209
ord5562
ord2832
ord4475
ord3327
ord757
ord566
ord1064
ord2011
ord1049
ord3824
ord3435
ord3635
ord4388
ord3678
ord3417
ord2365
ord4119
ord1536
ord4226
ord2985
ord587
ord1922
ord1474
ord4092
ord2080
ord1538
ord4228
ord3165
ord591
ord1058
ord3877
ord1785
ord709
ord1198
ord4882
ord6086
ord1051
ord4206
ord5178
ord4729
ord4884
ord1662
ord1661
ord1542
ord5908
ord1392
ord5199
ord4256
ord354
ord605
ord2651
ord2155
ord5609
ord6063
ord4574
ord3331
ord760
ord1155
ord3755
ord577
ord3756
ord4026
ord293
ord1416
ord3176
ord3983
ord1021
ord2648
ord3596
ord2936
ord3163
ord590
ord2132
ord331
ord2809
ord776
ord4238
ord1393
ord3940
ord1608
ord1611
ord5911
ord1589
ord1645
ord1894
ord2366
ord1079
ord3674
ord754
ord501

msvcr71

_wcmdln
_amsg_exit
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
__security_error_handler
__dllonexit
_onexit
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_controlfp
exit
_cexit
_XcptFilter
_exit
_c_exit
memset
swprintf
wcscmp
_wtoi
_CxxThrowException
wcsstr
free
_except_handler3
__CxxFrameHandler

kernel32

GetVersionExA
InterlockedExchange
LocalFree
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
ExitProcess
GetStartupInfoW
GetModuleHandleA
GetShortPathNameW
lstrcpynW
CreateEventW
GetTickCount
WinExec
Sleep
SetEvent
ResetEvent
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
CreateMutexW
GetUserDefaultUILanguage
ReleaseMutex
GetModuleFileNameW
lstrcatW
CreateProcessW
WaitForSingleObject
CreateFileMappingW
MapViewOfFile
CloseHandle
FindResourceW
SizeofResource
LoadResource
GetLocaleInfoA
GetThreadLocale
GetVersionExW
lstrlenW
lstrcpyW
IsBadReadPtr
lstrcmpW
GetLastError
GlobalUnlock
GlobalLock
GlobalAlloc
LockResource
GetACP

user32

LoadStringW
SystemParametersInfoW
MessageBoxW
FindWindowW
GetClassInfoW
GetSystemMetrics
LoadIconW
GetClientRect
SetWindowRgn
IsIconic
SendMessageW
PostMessageW
GetWindowRect
ClientToScreen
ScreenToClient
InvalidateRect
IsWindowVisible
SetTimer
KillTimer
GetFocus
GetParent
EnableWindow
SetCursor
LoadCursorW
GetCursorPos
SetCursorPos
PtInRect
GetSysColor
wsprintfW
keybd_event
BringWindowToTop
SetForegroundWindow
AttachThreadInput
GetWindowThreadProcessId
GetActiveWindow
GetForegroundWindow
GetDesktopWindow
RegisterWindowMessageW
DrawIcon
AppendMenuW
GetSystemMenu

gdi32

DeleteObject
CreateSolidBrush
CreatePolygonRgn

advapi32

RegSetValueExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
SetSecurityDescriptorDacl
RegCreateKeyExW
InitializeSecurityDescriptor

shell32

ShellExecuteW

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathRemoveFileSpecW
SHDeleteKeyW
ColorHLSToRGB
ColorRGBToHLS
PathIsFileSpecW
PathFileExistsW

ole32

CoInitialize
CreateStreamOnHGlobal
CoCreateInstance

oleaut32

GetErrorInfo
VariantClear
SysFreeString
SysAllocString

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.1rdata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

557b443293b8608d9e3810cb693a13ec

Headers

File Characteristics

Imports

gdiplus

mfc71u

msvcr71

kernel32

user32

gdi32

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 4KB - Virtual size: 924B

.rsrc Size: 52KB - Virtual size: 51KB

.1rdata Size: 80KB - Virtual size: 80KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 4KB - Virtual size: 924B

.rsrc
Size: 52KB - Virtual size: 51KB

.1rdata
Size: 80KB - Virtual size: 80KB