1c5433780b0f6574b4dae1042bdce8c640d0eb93c35c5169a8dc7b3b77bbf800

Sharing

Copy URL Twitter E-mail

General

Target

1c5433780b0f6574b4dae1042bdce8c640d0eb93c35c5169a8dc7b3b77bbf800
Size

854KB
MD5

a89b67c1b805ba81ae9a7e4bf9ee83ae
SHA1

68738027b4fc9f9087109f0d6bda99568561f56d
SHA256

1c5433780b0f6574b4dae1042bdce8c640d0eb93c35c5169a8dc7b3b77bbf800
SHA512

27bc588481d9acf5d60d6fdb17d898ffd3c4d0d53221c5c7034ab54fc7a82dc69316724f463877a5a8f506b9f8877fd9ce12a9f7122cf893281bafe90a52e26b
SSDEEP

24576:EPh7sWtSpj5Xiv66ejSYYOrca4qWGAOgrHCUGPSe:em0edr6cBUG

Score

N/A

Malware Config

Signatures

Files

1c5433780b0f6574b4dae1042bdce8c640d0eb93c35c5169a8dc7b3b77bbf800
.exe windows x86

7b9bdfe24a87181130ef64449022b9cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileIntW
GetComputerNameA
SetupComm
ResumeThread
CompareFileTime
GetUserDefaultUILanguage
SetCurrentDirectoryA
GetFileAttributesExA
FindAtomA
ReleaseSemaphore
SetDefaultCommConfigA
EnumDateFormatsExA
GlobalUnfix
Process32NextW
ExitProcess
SetTimeZoneInformation
GetCurrentDirectoryA
UpdateResourceW
DnsHostnameToComputerNameW
GetVersion
MultiByteToWideChar
OutputDebugStringW
ContinueDebugEvent
_lclose
IsSystemResumeAutomatic
DuplicateHandle
GetCurrentProcessId
SetLastError
FindFirstFileW
GetNumberFormatW
GetProfileStringW
GetWriteWatch
PeekNamedPipe
CreateNamedPipeA
ReadDirectoryChangesW
ResetEvent
ResetWriteWatch
OpenFileMappingW
GetLongPathNameA
IsBadCodePtr
CallNamedPipeW
lstrcmpiA
CreateJobObjectW
GetTempPathW
GetVolumeInformationW
lstrlenA
SetWaitableTimer
DeleteVolumeMountPointW
GetCommandLineW
GetCurrentThreadId

iphlpapi

GetAdaptersInfo

msimg32

AlphaBlend
TransparentBlt

cryptdll

MD5Update
MD5Init
MD5Final

shlwapi

StrChrA
StrCmpNIW
StrPBrkW
StrCmpNW
wnsprintfW
StrStrA
StrRChrW
StrTrimW
StrCmpNA
StrChrW
StrStrIA
StrCmpIW
wnsprintfA
StrTrimA
StrToIntExW
StrCpyNW
SHGetInverseCMAP
StrRChrA
StrCatBuffW
SHGetValueW
StrStrW
StrCatBuffA
StrStrIW

comdlg32

GetSaveFileNameW
ChooseFontW
GetOpenFileNameW

gdiplus

GdipCloneImage
GdiplusShutdown
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageI
GdipDisposeImage
GdipGetImagePaletteSize
GdipAlloc
GdipDeleteGraphics
GdiplusStartup
GdipBitmapLockBits
GdipFree
GdipGetImageGraphicsContext
GdipGetImagePixelFormat
GdipCreateBitmapFromFile
GdipGetImagePalette
GdipBitmapUnlockBits
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
GetFileVersionInfoA
VerQueryValueW
VerQueryValueA
GetFileVersionInfoSizeA

user32

FlashWindow
MessageBoxW
CallWindowProcW
RegisterWindowMessageA
IntersectRect
GetMenu
OemToCharBuffW
CharNextW
CountClipboardFormats
RegisterClassExW
LoadImageW
GetClassNameW
GetDlgCtrlID
GetCursorPos
ReleaseCapture
FindWindowExA
ExitWindowsEx
GetSystemMetrics
EndDialog
LoadBitmapA
GetAsyncKeyState
SetWindowPos
ToAsciiEx
SetMenuDefaultItem
LoadImageA
GetUserObjectInformationW
KillTimer
GetWindowLongA
GetParent
ClientToScreen
MessageBeep
InflateRect
CreateAcceleratorTableW
IsChild
UpdateLayeredWindow
GetGUIThreadInfo
CreateCaret
CharPrevW
FindWindowW
PostThreadMessageW
IsMenu
InsertMenuItemW
LockSetForegroundWindow
DeferWindowPos
OpenClipboard
GetKeyState
RegisterClassW
LoadBitmapW
GetPropW
DdeQueryNextServer
EnableMenuItem
CreateWindowExA
DispatchMessageW
MessageBoxIndirectW
LoadKeyboardLayoutA
SetParent
LoadIconW
RegisterDeviceNotificationW
EnumPropsW
DdeUninitialize
DlgDirListW
IsWindowEnabled
SendMessageTimeoutW
InvalidateRgn
SetWindowLongW
DestroyAcceleratorTable
LoadIconA
GetDoubleClickTime
FindWindowExW
SetDeskWallpaper
DefWindowProcW
AdjustWindowRectEx
GetFocus
RemoveMenu
ReleaseDC
DestroyWindow
DrawAnimatedRects
GetWindowLongW
FillRect
LoadCursorA
IsCharAlphaA
RegisterWindowMessageW
RemovePropW
DestroyMenu
CreateIconFromResource
GetWindow
UpdateWindow
PostQuitMessage
GetDC
DdePostAdvise
SetTimer
UnregisterHotKey
SendMessageA
SetCursor
GetMenuItemInfoW
CloseDesktop
GetMenuItemCount
ShowWindow
UnregisterClassW
DrawTextW
PtInRect
IsDialogMessageA
IsIconic
OpenInputDesktop
GetDlgItem
TrackPopupMenu
UnhookWindowsHookEx
SetUserObjectSecurity
GetMenuState
SetWindowsHookExW
DrawFocusRect
SetForegroundWindow
SetWindowsHookW
SetRect
DestroyIcon
IsZoomed
EnableWindow
ValidateRect
EnumChildWindows
DrawMenuBar
GetUserObjectSecurity
CreateWindowExW
LoadCursorW
GetWindowTextLengthW
CloseClipboard
WindowFromDC
GetDlgItemInt
CallWindowProcA
PeekMessageW
DrawIconEx
GetDlgItemTextW
IsClipboardFormatAvailable
CharUpperA
SetDlgItemTextW
LoadStringA
SetDlgItemInt
DialogBoxParamW
GetDesktopWindow
GetDialogBaseUnits
CreatePopupMenu
PostMessageW
LoadStringW
DdeCreateDataHandle
ShowCursor
DdeCreateStringHandleW
CreateDialogParamW
DdeImpersonateClient
SendMessageW
LoadMenuW
IsWindowVisible
SendDlgItemMessageW
GetForegroundWindow
GetSystemMenu
RealChildWindowFromPoint
CopyRect
AdjustWindowRect
SetWindowPlacement
DeleteMenu
GetProcessDefaultLayout
GetClassInfoExA
SetFocus
InvalidateRect
DrawEdge
EndDeferWindowPos
SendMessageTimeoutA
SetCapture
GetMessagePos
MoveWindow
GetWindowTextW
GetMessageTime
RegisterDeviceNotificationA
GetClassWord
EqualRect
GetIconInfo
EndPaint
GetLastActivePopup
FrameRect
SetWindowRgn
HiliteMenuItem
BeginPaint
TrackPopupMenuEx
SystemParametersInfoW
SetCaretPos
SubtractRect
GetNextDlgTabItem
GetCaretBlinkTime
GetUpdateRect
ToUnicode
SetMenu
GetSysColorBrush
ScreenToClient
wsprintfW
GetSubMenu
BeginDeferWindowPos
SetMessageQueue
GetLastInputInfo
CheckMenuItem
GetMenuItemID
ValidateRgn
SetPropA
IsDlgButtonChecked
RemovePropA
DdeInitializeA
SetWindowsHookExA
GetMessageW
GetClientRect
GetMenuCheckMarkDimensions
IsWindow
MapWindowPoints
ModifyMenuW
IMPSetIMEW
GetKeyboardLayoutList
IsDialogMessageW
GetWindowPlacement
SetRectEmpty
GetScrollInfo
CheckMenuRadioItem
GetClassInfoExW
OffsetRect
SetWindowLongA
TranslateMessage
CharToOemW
SetCursorPos
MapVirtualKeyW
GetSysColor
CheckRadioButton
RegisterClassExA
PeekMessageA
RedrawWindow
CloseWindow
GetWindowModuleFileNameA
UnionRect
SetWindowTextW
CallNextHookEx
MapVirtualKeyExW
CheckDlgButton
SetMenuItemInfoW
DdeDisconnect
GetPropA
GetWindowDC
DdeFreeDataHandle
GetWindowRect
MsgWaitForMultipleObjects
GetCapture
SetScrollRange
LoadMenuA
LoadKeyboardLayoutW

comctl32

ImageList_Add
ImageList_DragLeave
ImageList_EndDrag
CreateToolbarEx
ImageList_DragEnter
CreateStatusWindowW
ImageList_GetIcon
ImageList_DragMove
ImageList_Create
ImageList_DrawEx
ImageList_Draw
ImageList_AddMasked
ImageList_BeginDrag
ImageList_Destroy
PropertySheetW
ImageList_Remove

wininet

HttpOpenRequestW
InternetCanonicalizeUrlW
InternetOpenA
InternetOpenUrlW
HttpSendRequestW
HttpQueryInfoW
InternetSetOptionW
ResumeSuspendedDownload
InternetSetOptionA
InternetOpenW
GetUrlCacheEntryInfoW
InternetConnectW
InternetSetStatusCallbackW
InternetCrackUrlW
InternetReadFile
InternetCloseHandle

Sections

.text
Size: 271KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 316KB - Virtual size: 612KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 247KB - Virtual size: 246KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b9bdfe24a87181130ef64449022b9cf

Headers

File Characteristics

Imports

kernel32

iphlpapi

msimg32

cryptdll

shlwapi

comdlg32

gdiplus

version

user32

comctl32

wininet

Sections

.text Size: 271KB - Virtual size: 270KB

.data Size: 316KB - Virtual size: 612KB

.rdata Size: 6KB - Virtual size: 6KB

.rdata Size: 10KB - Virtual size: 10KB

.rsrc Size: 247KB - Virtual size: 246KB

.reloc Size: 2KB - Virtual size: 4KB

.text
Size: 271KB - Virtual size: 270KB

.data
Size: 316KB - Virtual size: 612KB

.rdata
Size: 6KB - Virtual size: 6KB

.rdata
Size: 10KB - Virtual size: 10KB

.rsrc
Size: 247KB - Virtual size: 246KB

.reloc
Size: 2KB - Virtual size: 4KB