37f14be63f52a4f41de73192381048f8bdc2063dba7ac77a0b269bfa8692fd63

Sharing

Copy URL Twitter E-mail

General

Target

37f14be63f52a4f41de73192381048f8bdc2063dba7ac77a0b269bfa8692fd63
Size

3.7MB
MD5

8fb030039a3b92eeb89313aa36285a21
SHA1

f6248ff22e9b2631b414c12d5d88db2c5d07c625
SHA256

37f14be63f52a4f41de73192381048f8bdc2063dba7ac77a0b269bfa8692fd63
SHA512

4702d7d5bdd6d5f0b40cc44bbc3dd416d3067e6b634e91ea76ef512d3647a0d7cf515a5ec11f41611ecb892772cd20b01ed46617de2b5fbab8a538d66440e552
SSDEEP

98304:yTX5h2mCnWPJDmbNGWdKqAELJxKj8jIDR+f+S2klRErR8:yTX54mbR8VV9rjIN+qkk18

Score

N/A

Malware Config

Signatures

Files

37f14be63f52a4f41de73192381048f8bdc2063dba7ac77a0b269bfa8692fd63
.exe windows x86

8c7181fe4b54b4e5965bd54d74d2d634

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFileTimeToFileTime
GetCurrentDirectoryW
ReadFile
CreateFileW
GetFileAttributesW
SystemTimeToFileTime
SetFilePointer
WideCharToMultiByte
LoadResource
GetLastError
GetModuleHandleW
FindResourceW
MultiByteToWideChar
DeleteFileW
Sleep
WriteFile
SetFileTime
SizeofResource
GetLocalTime
GetModuleFileNameW
CloseHandle
CreateThread
CreateDirectoryW
GetTempPathW
SetEnvironmentVariableA
CompareStringW
CompareStringA
CreateFileA
SetEndOfFile
GetACP
GetProcAddress
LoadLibraryW
GetTickCount
LeaveCriticalSection
EnterCriticalSection
InterlockedExchange
GetVersionExW
ExitProcess
LockResource
FreeResource
GetFileType
DuplicateHandle
GetCurrentProcess
DosDateTimeToFileTime
GetFileSize
GlobalFree
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalAlloc
InitializeCriticalSection
DeleteCriticalSection
MulDiv
InterlockedIncrement
InterlockedDecrement
GetEnvironmentVariableW
OutputDebugStringW
HeapFree
GetProcessHeap
GetSystemTimeAsFileTime
HeapAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoW
HeapReAlloc
RtlUnwind
RaiseException
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapSize
GetStdHandle
GetModuleFileNameA
SetHandleCount
GetStartupInfoA
GetConsoleCP
GetConsoleMode
HeapCreate
VirtualFree
VirtualAlloc
GetCPInfo
GetOEMCP
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
QueryPerformanceCounter
GetCurrentProcessId
LCMapStringW
LCMapStringA
GetModuleHandleA
GetTimeZoneInformation
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
SetStdHandle
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeA
GetStringTypeW

user32

GetDC
GetClientRect
SetWindowPos
SetWindowLongW
GetWindowLongW
InvalidateRect
IsWindow
SetCapture
ReleaseCapture
EndPaint
BeginPaint
RedrawWindow
PtInRect
ReleaseDC
SetFocus
GetFocus
MapWindowPoints
IsWindowVisible
IsIconic
UpdateLayeredWindow
GetWindowRect
IsRectEmpty
GetUpdateRect
GetWindow
ScreenToClient
GetCursorPos
GetParent
DispatchMessageW
TranslateMessage
GetMessageW
DefWindowProcW
EnableWindow
MoveWindow
GetMonitorInfoW
MonitorFromWindow
GetKeyState
CallWindowProcW
GetPropW
SetPropW
ClientToScreen
RegisterClassW
RegisterClassExW
GetClassInfoExW
IsZoomed
SetWindowRgn
GetWindowTextW
GetWindowTextLengthW
SetWindowTextW
CharNextW
ShowCaret
CreateCaret
IntersectRect
SetRect
FillRect
DrawTextW
CharPrevW
HideCaret
SetCaretPos
GetSysColor
GetCaretPos
InvalidateRgn
CreateAcceleratorTableW
GetAsyncKeyState
CopyRect
wsprintfW
SetTimer
KillTimer
LoadCursorW
wvsprintfW
DestroyWindow
PostQuitMessage
ShowWindow
CreateWindowExW
SendMessageW
MessageBoxW
PostMessageW
SetCursor
InflateRect
OffsetRect
GetDesktopWindow

gdi32

GetObjectW
GetStockObject
CreateCompatibleDC
DeleteDC
SetDIBColorTable
GetSystemPaletteEntries
CreateFontIndirectW
CreateDIBSection
SetWindowOrgEx
Rectangle
RestoreDC
SaveDC
CreateCompatibleBitmap
CombineRgn
CreatePen
CreateRectRgnIndirect
ExtTextOutW
SetBkColor
GetObjectA
GetDeviceCaps
GetCharABCWidthsW
GetTextExtentPoint32W
TextOutW
RoundRect
CreatePenIndirect
MoveToEx
LineTo
SetStretchBltMode
StretchBlt
DeleteObject
CreateFontW
SelectObject
GetTextMetricsW
BitBlt
CreateRoundRectRgn
GetClipBox
ExtSelectClipRgn
SelectClipRgn
CreateRectRgn
ExtCreateRegion
PtInRegion
CreatePatternBrush
SetTextColor
SetBkMode
CreateSolidBrush
GdiFlush

advapi32

RegCloseKey
RegSetValueExW
RegOpenKeyW

shell32

SHGetSpecialFolderPathW
ShellExecuteW
SHGetPathFromIDListW
SHBrowseForFolderW

ole32

CLSIDFromProgID
CoInitialize
CoUninitialize
CoCreateInstance
CLSIDFromString
OleLockRunning

gdiplus

GdiplusStartup
GdipCreateLineBrushI
GdipSetStringFormatAlign
GdipDeleteFont
GdipCreateFromHDC
GdipSetTextRenderingHint
GdipDrawString
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCloneBrush
GdipDeleteGraphics
GdiplusShutdown
GdipDeleteBrush
GdipFree
GdipAlloc
GdipCreateStringFormat
GdipSetStringFormatLineAlign
GdipDeleteStringFormat

shlwapi

PathFileExistsW

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext

comctl32

_TrackMouseEvent
ord17

wininet

HttpQueryInfoA
InternetReadFile
InternetOpenW
HttpSendRequestW
HttpOpenRequestW
InternetConnectW
InternetCloseHandle

oleaut32

SysFreeString
VariantClear
VariantInit
SysAllocString

Sections

.text
Size: 365KB - Virtual size: 364KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c7181fe4b54b4e5965bd54d74d2d634

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

gdiplus

shlwapi

imm32

comctl32

wininet

oleaut32

Sections

.text Size: 365KB - Virtual size: 364KB

.rdata Size: 87KB - Virtual size: 87KB

.data Size: 9KB - Virtual size: 19KB

.rsrc Size: 49KB - Virtual size: 48KB

.reloc Size: 29KB - Virtual size: 29KB

.text
Size: 365KB - Virtual size: 364KB

.rdata
Size: 87KB - Virtual size: 87KB

.data
Size: 9KB - Virtual size: 19KB

.rsrc
Size: 49KB - Virtual size: 48KB

.reloc
Size: 29KB - Virtual size: 29KB