adbf7a2512bb937f39df688d52600a1c1b4d46fb6555b563777d6cb4af7b3fd5

Sharing

Copy URL Twitter E-mail

General

Target

adbf7a2512bb937f39df688d52600a1c1b4d46fb6555b563777d6cb4af7b3fd5
Size

979KB
MD5

308a1f54ff1c7b27a0865778f675a261
SHA1

effd9a818f7af385953027864b7e350a4f4a84d3
SHA256

adbf7a2512bb937f39df688d52600a1c1b4d46fb6555b563777d6cb4af7b3fd5
SHA512

38b712cb82b3182dbc55c81f8fe427d064823c03f85582fead02e9baa89c90d649e12bda3e8b9d5e6930f016fa2b6ad492b811dcc146ee81cdab8e8069bc8e84
SSDEEP

12288:1ve+AsjtJm6wQ76ZdxUwDOiVdNYadlmNo:H9Jm6wnZTnqadlmS

Score

N/A

Malware Config

Signatures

Files

adbf7a2512bb937f39df688d52600a1c1b4d46fb6555b563777d6cb4af7b3fd5
.exe windows x86

067738818becbeca92b51feb26ee2b70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegEnumKeyExA
RegSetValueExA
RegCreateKeyExA

comctl32

ImageList_ReplaceIcon
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_Draw
InitCommonControls
ImageList_Destroy
ImageList_Create
ImageList_DrawIndirect

gdi32

GetStockObject
CreateCompatibleDC
BitBlt
CreateCompatibleBitmap
SetTextColor
SetBkColor
DeleteDC
SetPixel
GetPixel
CreateBitmap
CreateSolidBrush
GetCurrentObject
GetObjectA
CreateRectRgn
CreatePolygonRgn
CombineRgn
StrokeAndFillPath
EndPath
GetTextExtentPoint32A
PtVisible
DeleteObject
BeginPath
TextOutA
ExtTextOutA
RectVisible
CreateFontIndirectA
GetTextMetricsA
Escape
GetClipBox
RestoreDC
SaveDC
SetBkMode
SetMapMode
SetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SelectClipRgn
ExcludeClipRect
ScaleWindowExtEx
MoveToEx
IntersectClipRect
LineTo
GetDeviceCaps
CreatePen
CreatePatternBrush
PatBlt
SetRectRgn
CreateRectRgnIndirect
CreateDIBitmap
SelectObject
GetTextExtentPointA

kernel32

HeapSize
HeapReAlloc
TerminateProcess
HeapDestroy
GetACP
VirtualFree
HeapCreate
IsBadWritePtr
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
VirtualAlloc
GetEnvironmentStringsW
LockResource
GetEnvironmentStrings
GetLastError
LCMapStringA
LCMapStringW
Sleep
IsBadCodePtr
SetStdHandle
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetCommandLineA
SetEnvironmentVariableA
GetLocaleInfoW
GetFileSize
SetFilePointer
WideCharToMultiByte
CreateFileA
ReadFile
CloseHandle
GetModuleFileNameA
InterlockedDecrement
GetVersionExA
GetVersion
GetProcAddress
GetFileTime
FindFirstFileA
FindNextFileA
FindClose
lstrcat
lstrlen
WinExec
lstrcpy
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
lstrcmpi
MultiByteToWideChar
FormatMessageA
LocalFree
DeleteFileA
MoveFileA
InterlockedExchange
GetProfileStringA
GetTimeZoneInformation
GetStartupInfoA
GetSystemTimeAsFileTime
HeapFree
IsBadReadPtr
HeapAlloc
WritePrivateProfileStringA
RtlUnwind
SizeofResource
SetErrorMode
GetOEMCP
GlobalFlags
GetCPInfo
GetProcessVersion
TlsSetValue
TlsGetValue
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
EnterCriticalSection
TlsAlloc
LocalAlloc
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetCurrentThread
GetVolumeInformationA
GetFullPathNameA
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
FlushFileBuffers
WriteFile
lstrcmp
GlobalFree
lstrlenW
FileTimeToLocalFileTime
FileTimeToSystemTime
MulDiv
LockResource
FindResourceA
LoadResource
GlobalFindAtomA
GlobalGetAtomNameA
GlobalAddAtomA
InterlockedIncrement
GlobalDeleteAtom
GetModuleHandleA
GlobalLock
SetCurrentDirectoryA
GlobalAlloc
CreateThread
GlobalUnlock
WaitForSingleObject
GetCurrentProcessId
CreateMutexA
GetCurrentThreadId
VerLanguageNameA
GetCurrentProcess
SetUnhandledExceptionFilter
GetFileAttributesA
SetLastError
RaiseException
GetTickCount
ExitProcess
lstrcpyn
CompareStringA
CopyFileA
CompareStringW
GetStdHandle
GetFileType

oleaut32

VariantChangeType
SysAllocStringLen
VariantInit
VariantCopy
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
SysFreeString
VariantClear
SysStringLen
GetErrorInfo

shell32

ShellExecuteA
ShellExecuteEx

user32

LockWindowUpdate
GetSysColorBrush
SetRect
IsZoomed
GetClassNameA
SetParent
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
GetDCEx
IsChild
WinHelpA
RegisterClassA
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
RegisterClipboardFormatA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetTopWindow
PostQuitMessage
DrawIcon
GetMenu
ModifyMenuA
IsRectEmpty
FindWindowA
CharUpperA
EndPaint
EmptyClipboard
SetClipboardData
CloseClipboard
GetWindow
SendNotifyMessageA
wsprintfA
MessageBoxA
LoadIconA
GetFocus
CopyIcon
GetMessagePos
SetTimer
MessageBeep
SetWindowLongA
KillTimer
GrayStringA
DrawTextA
TabbedTextOutA
PtInRect
SetCapture
GetCapture
ReleaseCapture
GetClipCursor
GetCursorPos
ClipCursor
GetSystemMetrics
ScreenToClient
InvertRect
SetRectEmpty
SetWindowRgn
GetClassInfoA
DefWindowProcA
LoadCursorA
IsWindow
SetWindowPos
LoadMenuA
LoadImageA
GetIconInfo
GetDC
CreateIconIndirect
LoadStringA
ReleaseDC
FillRect
DrawStateA
OffsetRect
GetClientRect
CopyRect
FrameRect
InflateRect
GetSysColor
DrawFocusRect
GetWindowRect
GetSubMenu
EndDialog
CreateDialogIndirectParamA
GetMenuStringA
IsIconic
BeginPaint
TrackPopupMenuEx
PostMessageA
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
SendMessageA
GetWindowLongA
DestroyCursor
DestroyCursor
DestroyMenu
EnableWindow
IsWindowVisible
GetWindowDC
GetMessageA
TranslateMessage
ValidateRect
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessage
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
EqualRect
DispatchMessageA
SetActiveWindow
SetFocus
AdjustWindowRectEx
GetDesktopWindow
OpenClipboard
GetKeyState
PeekMessageA
DefDlgProcA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
CharNextA
IsWindowUnicode

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

wininet

InternetErrorDlg
InternetCloseHandle
InternetOpenA
HttpSendRequestA
HttpOpenRequestA
HttpQueryInfoA
InternetReadFile
InternetConnectA

winmm

PlaySound

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

ole32

OleRun
StgIsStorageFile
CoCreateInstance
CoUninitialize
StgOpenStorage
StringFromGUID2
CoCreateGuid
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoTaskMemFree

Sections

.text
Size: 500KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 284KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

067738818becbeca92b51feb26ee2b70

Headers

File Characteristics

Imports

advapi32

comctl32

gdi32

kernel32

oleaut32

shell32

user32

version

wininet

winmm

winspool.drv

comdlg32

ole32

Sections

.text Size: 500KB - Virtual size: 500KB

.rdata Size: 100KB - Virtual size: 100KB

.data Size: 284KB - Virtual size: 372KB

.idata Size: 12KB - Virtual size: 12KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 500KB - Virtual size: 500KB

.rdata
Size: 100KB - Virtual size: 100KB

.data
Size: 284KB - Virtual size: 372KB

.idata
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 82KB - Virtual size: 84KB